Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2CE891CA44811EFB363B293762E951A.roa
File: B2CE891CA44811EFB363B293762E951A.roa (raw, json)
Hash identifier: FXiBeFZ4E64Ir7jj62hCVMBOo1IJTFU8i6BRyhu3BLU=
Subject key identifier: 3D:3A:55:CA:35:4B:F4:43:92:9C:C3:D2:F6:4C:94:67:A0:C3:0C:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D38E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2CE891CA44811EFB363B293762E951A.roa
Signing time: Sat 16 Nov 2024 18:29:22 +0000
ROA not before: Sat 16 Nov 2024 18:29:18 +0000
ROA not after: Mon 25 Nov 2024 18:29:18 +0000
asID: 5650
IP address blocks: 45.196.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54158 (0xd38e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 18:29:18 2024 GMT
Not After : Nov 25 18:29:18 2024 GMT
Subject: CN=6738e481-3d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:73:94:cd:82:70:46:23:cd:3c:42:56:58:53:
89:c4:d2:61:c8:75:12:1f:5e:2d:5f:8c:09:42:66:
17:84:47:6f:86:45:77:24:3e:43:c4:18:ec:7e:ad:
c3:8d:03:4b:38:30:11:75:38:cc:fa:5d:75:d4:91:
bd:e8:93:37:ff:3a:cc:38:c6:86:41:0c:82:d8:ff:
a7:c6:59:8b:0f:23:5f:3a:3d:fb:d4:53:12:28:f9:
cb:cf:35:ad:eb:6b:43:d6:a4:c9:9f:38:8d:f5:f5:
55:62:17:52:47:a5:ad:89:d7:16:9d:ed:40:3a:c5:
d4:29:a2:bb:70:a8:5b:6f:24:13:42:10:ac:78:b3:
bb:3a:d9:d8:16:31:f1:71:ab:21:91:3d:05:a1:3e:
8a:17:f2:f8:2b:ee:85:2b:0a:d6:4f:15:34:5c:47:
3f:1f:0a:70:19:f9:b2:45:e4:0c:c4:eb:da:99:65:
fa:17:8e:ad:c3:52:2c:53:ce:03:8a:15:fc:4e:79:
ae:15:70:5f:b9:81:52:90:ab:26:2e:ea:8f:a8:5b:
86:0d:2a:cf:db:c1:0a:07:09:75:44:0b:27:69:e0:
0c:d5:cc:81:09:ad:ce:cf:3b:23:39:5a:5b:dd:37:
11:40:dd:f6:e3:3c:7d:b0:b2:c9:d3:50:c1:eb:54:
02:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3A:55:CA:35:4B:F4:43:92:9C:C3:D2:F6:4C:94:67:A0:C3:0C:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2CE891CA44811EFB363B293762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.56.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:76:82:f0:e4:36:c6:dc:25:a3:a0:fa:37:cf:73:b6:b1:ed:
95:92:24:10:49:71:9a:a3:dc:59:44:f5:29:10:50:9e:80:bf:
6a:c9:da:4b:d4:7f:d2:cb:c1:5e:be:7c:ac:fb:a0:1e:76:31:
ca:fd:d5:f8:7b:2d:50:3d:c6:1e:1b:33:57:fb:af:0a:ad:12:
6f:6c:19:2d:d5:d4:b8:af:5c:5f:dd:ac:37:66:f2:55:60:86:
61:df:0c:95:b0:40:09:4f:9c:2f:96:2e:28:18:21:28:4e:1c:
71:e2:6a:91:e3:df:b9:6c:18:b6:f8:46:98:e4:29:99:3c:13:
ea:23:e2:07:7f:da:96:f1:68:60:f2:46:49:86:44:e2:20:91:
ba:6a:c6:c3:a3:7e:e1:6a:7a:e6:91:5b:a5:17:dc:77:56:65:
79:cc:3b:f2:48:cd:9d:4a:cb:19:8b:3d:51:3b:23:a6:24:84:
2a:c0:9d:02:67:13:a0:a9:3c:50:d9:aa:ae:98:a4:dd:1c:66:
56:f3:13:9a:0d:c4:60:58:9b:27:07:74:08:b5:d1:5c:2b:35:
0d:8a:9d:48:bd:11:c5:e0:9e:9a:3c:bb:50:a6:91:0a:49:b3:
c2:6d:5a:42:dd:2a:1c:a7:98:4a:91:82:b7:f1:6a:89:7b:cd:
f1:c4:fc:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:44 2024 by rpki-client on console-fra.rpki-client.org