Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF11636E9F9111EF865FA1BC762E951A.roa
File: AF11636E9F9111EF865FA1BC762E951A.roa (raw, json)
Hash identifier: Nz4qnvilmy9tBJ0+klU53XU/xjhuL+WfmWr6GX9eUqc=
Subject key identifier: D3:69:E4:58:93:1B:3B:25:0F:82:67:3D:C7:75:9A:9E:DF:31:F6:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D13E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF11636E9F9111EF865FA1BC762E951A.roa
Signing time: Sun 10 Nov 2024 18:29:13 +0000
ROA not before: Sun 10 Nov 2024 18:29:09 +0000
ROA not after: Thu 21 Nov 2024 18:29:09 +0000
asID: 133847
IP address blocks: 45.200.84.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 21 Nov 2024 18:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53566 (0xd13e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 18:29:09 2024 GMT
Not After : Nov 21 18:29:09 2024 GMT
Subject: CN=6730fb79-b7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2a:01:17:a4:32:f2:22:8f:1c:18:b6:e2:d7:
0c:98:6e:6f:15:98:7e:96:a0:c2:76:97:28:5a:ca:
36:f4:47:be:f2:f2:74:c9:32:b3:17:28:a2:df:1d:
2b:11:2a:fa:47:88:c7:34:3e:43:e6:92:35:60:28:
16:7f:7c:82:06:c7:65:0b:95:4e:6a:11:09:5f:f6:
31:68:a4:a2:e5:80:8a:86:25:74:f5:df:27:3f:f7:
a9:f4:cd:4a:b5:a2:7e:10:df:e9:06:7f:2c:05:3a:
a0:2b:0d:a5:ef:cd:75:85:ac:b7:89:04:66:df:30:
12:65:07:53:15:06:8d:c2:89:4d:b3:56:47:67:a3:
e1:cb:bb:69:ef:4e:0f:9d:29:6b:ae:bb:6e:9a:f5:
d5:ae:41:f8:be:6a:62:2c:79:42:25:a0:42:5d:0a:
83:4b:55:7a:4b:12:dd:ea:f8:a3:02:04:9e:0c:2a:
cd:f1:24:cc:59:ad:9c:16:59:f8:57:dd:81:62:3c:
36:f0:b0:5e:30:55:a7:20:77:0e:1d:de:2d:24:bc:
0d:6f:0d:51:f7:bd:59:a4:11:6d:cb:b5:3f:03:5c:
65:90:24:44:3b:57:f7:9f:e6:7e:3a:41:1a:99:21:
bd:c3:d8:74:2f:79:5b:6b:a8:79:18:fe:a6:4e:d4:
e4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:69:E4:58:93:1B:3B:25:0F:82:67:3D:C7:75:9A:9E:DF:31:F6:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF11636E9F9111EF865FA1BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.84.0/23
Signature Algorithm: sha256WithRSAEncryption
84:4a:59:38:2e:de:85:af:ae:2a:5b:6e:e5:8a:74:84:12:b0:
fc:f7:c8:28:8d:62:06:ca:ec:f9:e2:6d:11:5b:49:3f:ff:03:
cb:ce:46:7c:ab:c4:7c:2a:b7:b3:db:e4:f6:5b:ce:5d:9e:97:
eb:dd:3b:d1:07:c2:9b:93:87:a5:74:17:74:31:3d:51:9a:f7:
bd:02:75:88:b5:22:a8:a6:57:8d:8a:27:cf:0f:21:6f:c9:cc:
77:7c:66:e3:34:ab:40:fd:f9:05:03:b0:e9:82:4d:3d:6c:dc:
4d:e9:05:37:15:7b:a0:2d:13:7d:5b:d4:e2:43:cf:cf:4d:5f:
3b:6d:09:b2:c5:c8:85:47:d5:8c:b3:a6:23:02:d9:df:c0:78:
35:fd:9c:a0:c6:df:28:6f:34:c4:b5:a8:15:5c:01:7f:1b:1a:
ac:69:99:96:67:e2:65:6c:3c:21:ef:5e:ce:5a:63:cf:84:b9:
68:c7:7d:d8:2c:24:1a:6e:9f:13:f0:2b:c8:11:49:1b:b3:d1:
88:57:44:10:e1:20:00:61:fe:63:8f:a0:32:78:97:13:1a:bb:
be:dd:52:e4:ad:fb:b3:70:27:62:4a:ea:aa:79:3b:64:30:65:
35:fe:a2:fa:89:19:f0:c2:aa:1b:bb:bf:a9:2c:b7:ff:25:97:
c6:7e:97:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:45 2024 by rpki-client on console-ams.rpki-client.org