Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8CDEAF2A73511EFBBCC787A762E951A.roa
File: B8CDEAF2A73511EFBBCC787A762E951A.roa (raw, json)
Hash identifier: 08QZUTi0WoDcFjq5FedqH7wH9AkflcJB2JllEh5KrIg=
Subject key identifier: 14:29:C2:91:50:3B:62:87:81:E7:D8:CE:31:DB:8B:45:81:6B:2D:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D5F1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8CDEAF2A73511EFBBCC787A762E951A.roa
Signing time: Wed 20 Nov 2024 11:51:05 +0000
ROA not before: Wed 20 Nov 2024 11:51:01 +0000
ROA not after: Mon 02 Dec 2024 11:51:01 +0000
asID: 21859
IP address blocks: 45.196.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54769 (0xd5f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 11:51:01 2024 GMT
Not After : Dec 2 11:51:01 2024 GMT
Subject: CN=673dcd29-cdb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c7:05:1a:c7:9d:d9:24:cf:39:b0:fe:a1:8e:
7c:ac:b3:d5:97:85:bd:75:50:d4:d6:54:69:27:83:
97:df:59:76:28:d8:e7:c9:5e:1d:fe:f1:6b:42:7d:
79:f9:da:c4:7d:51:ed:ca:a8:f2:df:f7:ca:e1:16:
ac:f6:9f:72:e5:02:4d:c1:a9:61:f9:cb:d3:0e:73:
19:b8:45:cd:98:91:f1:7f:cd:d6:a1:79:36:da:ac:
63:42:9f:fd:84:50:db:75:d4:50:12:fd:d2:f5:9c:
cb:dd:04:a3:b9:0b:ce:74:44:01:bf:11:08:b1:64:
2e:8d:aa:34:6a:3f:21:55:dd:c4:0b:fa:7e:c5:64:
d7:70:3e:24:c4:f5:e3:25:15:04:51:1f:9c:8d:91:
da:0e:3f:de:7b:80:13:b0:25:b8:93:04:99:9b:9b:
e1:96:a7:cc:6b:98:c9:81:aa:3b:c0:a2:2b:97:1f:
18:99:c9:88:3d:ea:cd:1f:6f:80:73:3d:e1:c8:66:
e0:93:6a:c7:ea:ea:cd:28:20:53:dc:d1:73:ae:96:
7e:af:b8:00:fe:00:89:2c:16:05:b3:56:a1:1c:13:
b4:8c:43:55:3b:9c:60:2f:9b:78:b2:ca:ef:35:a4:
3e:7a:82:e2:de:f9:ab:93:10:b8:bb:c1:f0:a0:a6:
de:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:29:C2:91:50:3B:62:87:81:E7:D8:CE:31:DB:8B:45:81:6B:2D:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8CDEAF2A73511EFBBCC787A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.138.0/24
Signature Algorithm: sha256WithRSAEncryption
01:27:a3:14:b3:e5:1b:44:e2:ff:24:b2:ba:4c:04:fa:8f:09:
a0:05:65:b2:d1:8e:35:04:fc:11:48:db:c5:86:39:bb:3c:64:
ac:7f:b7:b0:59:42:f0:84:b9:26:07:28:e5:b3:91:3c:00:43:
10:b9:5b:00:b0:36:97:b4:a5:51:ce:5f:ac:d2:dc:2b:38:99:
a7:14:63:1f:1e:ab:19:3a:37:d3:b8:2a:7f:1a:52:48:6a:61:
30:a4:57:a4:1a:ec:23:08:b2:e9:f6:65:9c:23:a1:e9:93:78:
37:df:07:8d:ec:46:35:59:1c:cb:04:b2:ea:29:e5:d5:97:76:
bc:63:ce:af:98:9d:5d:8c:32:94:7d:64:3e:7d:ae:dd:81:79:
b4:0f:93:9d:7a:dc:ac:4e:30:54:03:e7:6f:ed:09:a8:c3:ce:
4f:a3:20:88:43:34:c5:94:63:05:8b:3f:d3:59:58:dc:80:85:
5a:43:7e:ee:da:ed:95:48:58:0c:d8:85:5f:2b:79:44:01:69:
63:4c:27:e2:c6:b7:c8:fe:76:57:17:ce:14:8d:12:b9:8f:ca:
48:c9:54:a0:e0:34:c2:87:a1:9d:c5:bc:eb:31:33:0c:88:5c:
6e:e5:60:0e:cc:38:95:d3:2d:30:1c:a7:da:50:99:2b:7f:91:
ad:80:47:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:46 2024 by rpki-client on console-ams.rpki-client.org