Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B31877B4976611EF81CCA147762E951A.roa
File: B31877B4976611EF81CCA147762E951A.roa (raw, json)
Hash identifier: Dq0XfPT8Gq5b8kGcc80Y/WwqDYc1noquzNrZb/3n0qU=
Subject key identifier: CD:AA:00:87:90:DF:BE:30:7A:0A:3B:0D:A3:5D:30:52:05:EE:02:A6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB02
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B31877B4976611EF81CCA147762E951A.roa
Signing time: Thu 31 Oct 2024 09:01:22 +0000
ROA not before: Thu 31 Oct 2024 09:01:18 +0000
ROA not after: Sun 01 Dec 2024 09:01:18 +0000
asID: 398823
IP address blocks: 45.205.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51970 (0xcb02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 09:01:18 2024 GMT
Not After : Dec 1 09:01:18 2024 GMT
Subject: CN=67234762-88eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fd:bf:e7:01:9d:58:bb:49:fd:4c:ef:fa:bc:
2c:29:70:22:4a:9a:c0:65:0d:3b:5b:58:6a:d6:73:
0e:e0:8f:6d:ff:be:d6:a0:02:08:8c:ac:85:51:48:
d9:b2:d9:c5:31:19:fb:08:7f:24:85:85:ee:73:c9:
fd:61:59:7f:d2:8c:2e:3d:ff:d2:bb:42:ff:7b:a1:
31:84:c9:39:09:15:91:7a:08:a5:f7:cb:26:21:59:
da:3f:6f:b4:39:1f:a0:eb:1d:7f:98:5d:a9:29:66:
4c:5e:33:05:f7:bd:0a:74:1d:df:e8:b6:b3:9c:9e:
4c:59:2e:11:1c:8f:37:4d:dd:b1:d0:9d:85:9b:26:
35:dd:52:92:28:ec:ed:fc:c9:52:5a:77:60:96:d2:
37:52:e5:1d:af:c6:06:a8:a2:38:3d:9e:e4:ff:5a:
27:30:16:42:6f:ee:7a:0c:ca:0a:9a:01:f4:81:81:
db:c4:da:ee:59:12:7d:e6:7a:68:f7:28:0d:74:13:
95:ab:9b:9e:de:5f:41:bf:73:ac:72:35:92:8c:49:
b9:f1:9b:9c:0e:b8:d5:48:a8:93:0f:fa:25:fd:c4:
e5:3d:a5:34:b1:12:48:d1:01:4b:31:9a:d8:e6:ed:
30:2c:ab:a9:d1:83:4d:81:bd:cd:fe:59:62:9c:49:
d5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:AA:00:87:90:DF:BE:30:7A:0A:3B:0D:A3:5D:30:52:05:EE:02:A6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B31877B4976611EF81CCA147762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.240.0/20
Signature Algorithm: sha256WithRSAEncryption
32:54:47:53:6a:01:0a:35:7b:1d:b8:92:77:8e:34:92:38:f7:
46:ac:66:15:b3:e6:48:cd:0c:c6:8a:6f:a8:d4:c5:d2:5e:84:
db:6a:3e:70:41:fb:a5:67:28:6d:90:e3:69:1a:ae:6f:a6:0a:
86:7c:12:3c:0d:f1:c6:e2:fa:7e:1f:f8:a6:1f:b7:88:d5:4d:
e7:d2:7f:35:f2:03:cb:7c:e9:16:73:1e:d8:f8:70:04:7d:b2:
a3:80:62:ff:c1:d9:c5:47:8e:ab:66:af:b0:29:fb:e7:98:35:
5e:e3:8c:1a:be:8f:8e:25:61:34:e5:23:68:01:a9:6e:0c:85:
b5:fa:8f:90:a8:57:db:ae:ff:a2:08:8f:f7:49:94:7f:00:32:
11:99:e2:22:64:74:b0:a5:a8:80:f0:31:11:5f:86:e8:92:65:
c0:72:9d:cb:12:e4:fd:47:71:61:77:67:12:d3:d6:5d:37:6c:
51:03:4a:58:c1:08:5f:9e:b9:69:85:2b:35:c6:1e:4c:cf:df:
73:52:6b:48:b2:2c:97:5a:78:2b:bb:46:ec:6c:94:b5:4b:fb:
d6:5b:cd:4c:dc:06:94:79:d7:ce:52:68:15:b4:f0:fa:df:8f:
58:e0:15:cf:6a:e6:05:e3:20:da:03:a6:85:66:46:fd:5b:fc:
20:bc:66:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:45 2024 by rpki-client on console-ams.rpki-client.org