Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B229B896A65111EF8D7FCB66762E951A.roa
File: B229B896A65111EF8D7FCB66762E951A.roa (raw, json)
Hash identifier: iYatbfcUbAEzw4WN0nU6NC50KE3m5PjwdkDE9zj3ib0=
Subject key identifier: 4E:A6:53:E1:6C:0B:FF:54:A3:F4:18:36:07:19:08:83:6B:76:3D:C4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D58A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B229B896A65111EF8D7FCB66762E951A.roa
Signing time: Tue 19 Nov 2024 08:38:48 +0000
ROA not before: Tue 19 Nov 2024 08:38:45 +0000
ROA not after: Sat 23 Nov 2024 08:38:45 +0000
asID: 149014
IP address blocks: 45.192.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54666 (0xd58a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 08:38:45 2024 GMT
Not After : Nov 23 08:38:45 2024 GMT
Subject: CN=673c4e98-2896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:29:eb:c3:92:d9:f8:ec:8d:3d:e5:55:f2:17:
14:e1:08:72:3f:b0:24:b3:fc:28:cf:db:33:30:a0:
2b:8a:17:aa:9c:2a:94:21:6e:7c:09:15:63:a0:21:
19:7b:a9:6a:46:2f:7d:01:3f:99:da:09:db:ac:21:
2d:54:04:99:c3:5d:56:37:a6:b9:8b:50:7b:62:94:
52:b2:2c:3f:89:c8:dd:6f:1d:df:bf:65:a1:85:59:
f6:24:bb:cd:22:c8:aa:0d:4b:1d:89:c1:77:0d:64:
42:40:d7:e2:73:6a:b7:f7:85:e3:58:b3:6a:d2:56:
b9:d7:0f:a0:07:8c:1f:e1:b8:cf:3c:ff:ce:d5:df:
dd:aa:5a:1c:3f:0f:a8:06:28:e2:aa:49:b3:43:3f:
67:0a:df:97:6f:b0:4f:c6:25:30:fb:3e:a4:ae:01:
0e:d2:c2:5d:37:95:18:57:f4:cc:63:29:33:23:77:
17:77:1c:b1:03:ec:7a:5f:01:ee:51:18:c4:d1:b7:
7b:16:33:98:9d:d4:78:ba:3d:05:72:42:36:a5:9b:
3b:fc:e6:92:fe:48:62:08:44:91:e1:74:b6:11:27:
8c:45:84:fd:a4:bd:ef:b4:e2:3e:1b:3c:28:2b:96:
94:36:b5:30:4a:18:e4:95:22:63:86:41:f4:74:67:
a0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A6:53:E1:6C:0B:FF:54:A3:F4:18:36:07:19:08:83:6B:76:3D:C4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B229B896A65111EF8D7FCB66762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.172.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:a0:15:ef:37:c8:3c:0a:af:d6:76:ec:09:b4:fa:ea:f3:be:
05:62:d8:87:33:c6:23:69:b6:0e:04:c6:f6:a2:d8:ee:05:35:
c9:6e:91:dd:c4:47:e5:2c:93:6f:46:fc:cd:6b:00:86:1d:76:
16:0f:b9:40:3c:f1:f0:6e:c8:57:23:49:af:65:24:cf:b4:a0:
8d:5b:da:6b:59:32:14:37:19:fc:3b:f8:8c:17:b1:75:a1:3b:
d7:0d:27:dd:3e:11:6f:f6:3e:54:9c:e3:7b:c8:fa:f1:ee:b5:
61:e0:3a:b2:17:eb:02:51:59:e3:1a:0d:4d:2a:54:10:d6:d5:
64:f9:8d:b3:9a:28:e2:50:dc:83:10:87:5e:33:0b:f3:11:74:
91:95:92:a6:00:18:30:66:a9:2f:17:11:cf:14:c9:a8:86:1e:
4f:2c:eb:59:1f:b8:80:87:38:e4:8b:1e:ee:84:91:72:5f:49:
76:76:00:c5:8c:06:02:7f:63:4c:f8:c2:8e:b6:21:ad:e4:27:
bc:f1:b0:66:72:29:a9:80:65:13:54:1e:41:00:65:31:d1:d9:
51:ab:3b:e8:52:2d:db:1b:fc:ef:c5:ee:29:a5:be:7f:78:68:
e5:07:17:32:09:68:47:11:f0:44:b9:ad:46:76:13:07:64:94:
8e:1a:94:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:44 2024 by rpki-client on console-fra.rpki-client.org