Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8AA50C4A59111EFA8C3EAB0762E951A.roa
File: B8AA50C4A59111EFA8C3EAB0762E951A.roa (raw, json)
Hash identifier: Iz87Aa4yDyjgfSy0CJjhKRE3i5CH5aqzUrNxC/vKnOw=
Subject key identifier: 02:A0:1F:B2:00:3A:25:57:B3:FA:0F:0D:7C:D5:12:95:74:50:CA:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D532
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8AA50C4A59111EFA8C3EAB0762E951A.roa
Signing time: Mon 18 Nov 2024 09:44:36 +0000
ROA not before: Mon 18 Nov 2024 09:44:32 +0000
ROA not after: Sat 21 Dec 2024 09:44:32 +0000
asID: 395793
IP address blocks: 45.201.24.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54578 (0xd532)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 18 09:44:32 2024 GMT
Not After : Dec 21 09:44:32 2024 GMT
Subject: CN=673b0c84-c685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:86:36:74:f6:a7:81:13:86:fb:10:18:1c:88:
92:1e:0e:6c:f0:96:f8:4c:60:60:92:14:75:27:9e:
28:46:92:5d:6a:e2:a5:c9:d0:39:b7:12:51:ea:b4:
b1:64:a0:e6:0e:c2:72:7b:0e:fa:48:91:ac:92:68:
99:eb:60:0b:c2:e1:97:ab:e3:b6:34:25:c2:ea:97:
30:14:9f:64:d8:62:71:38:55:77:7b:af:5d:35:24:
3b:02:17:4d:34:56:a4:f7:a2:30:02:95:8d:8d:4c:
51:35:bd:94:e4:84:bf:79:cc:41:bf:18:e7:54:6f:
f6:93:1f:b7:6f:28:c1:9e:8a:0c:7a:52:40:bd:f7:
58:46:ff:46:1e:62:8d:02:a5:95:87:3b:ab:ec:ca:
db:4c:c2:da:32:56:dd:c6:e9:fe:2b:7c:3d:89:84:
ac:39:ca:ec:6c:8d:b3:f8:06:a2:47:b2:ce:52:97:
b4:b9:aa:8b:2f:10:cd:ef:2d:cd:1a:2f:ac:98:5a:
d0:92:3e:f4:0c:54:aa:03:c2:b8:d5:39:5b:ce:bf:
dd:83:16:bc:00:57:e5:16:4e:2d:b6:3d:da:7f:c0:
ff:f9:a3:4d:bc:70:77:59:1f:c7:e1:9c:0d:9c:f8:
6c:10:d7:8a:33:88:59:66:bf:8f:bf:2a:a7:a6:e3:
c5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A0:1F:B2:00:3A:25:57:B3:FA:0F:0D:7C:D5:12:95:74:50:CA:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8AA50C4A59111EFA8C3EAB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.24.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:ec:d7:21:c8:28:44:10:2e:3d:b6:c6:f7:57:20:36:47:5b:
61:87:a3:13:8c:4f:d4:fd:0a:d8:e5:e3:e3:8d:fb:74:75:1f:
7e:65:44:86:e0:35:3e:95:a3:10:45:9e:96:23:d1:b6:8d:17:
94:e9:6d:aa:ab:d8:96:a8:72:83:7a:c2:a8:76:74:74:35:7c:
f2:ba:c7:79:5b:0d:3e:99:d0:9f:f2:23:7f:29:5f:72:94:40:
2b:89:2a:ba:a3:1f:f0:f9:e7:fc:7d:2d:12:af:97:d3:6f:96:
f2:75:c4:13:7f:a1:e0:b0:71:66:8b:b0:84:92:d9:78:05:ff:
1a:38:9d:e3:1d:82:b5:f8:5f:0d:59:7a:f2:f7:9e:02:57:e6:
23:c2:c6:e9:42:27:47:e3:f0:b0:f2:1e:53:a8:88:f0:88:a0:
af:81:46:4b:20:bb:65:d4:0c:70:7d:fe:c0:47:eb:61:9a:d5:
91:54:7d:05:05:b9:17:50:ba:f1:f1:19:2c:5d:18:ba:eb:f6:
a0:9c:c3:cb:cf:0c:02:68:bb:48:0e:0c:0f:4a:1d:5d:c0:ec:
9c:b6:f5:f2:8b:60:f1:88:33:82:68:3b:7c:fc:90:7b:52:a0:
f9:71:5d:80:65:a5:3b:62:e9:30:3b:1d:4f:09:5a:26:b6:0d:
de:fe:1f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:45 2024 by rpki-client on console-fra.rpki-client.org