Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCE8E018A44911EFA3DA2D9A762E951A.roa
File: BCE8E018A44911EFA3DA2D9A762E951A.roa (raw, json)
Hash identifier: Z6VEjDcWkBipUiTzzLd8F7pXLdh3Hc3SGMCjfpRspcI=
Subject key identifier: 8A:4D:E7:A4:80:D5:DB:8C:58:53:2F:B6:47:F9:9D:E3:DF:01:93:6C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D39C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCE8E018A44911EFA3DA2D9A762E951A.roa
Signing time: Sat 16 Nov 2024 18:36:48 +0000
ROA not before: Sat 16 Nov 2024 18:36:44 +0000
ROA not after: Mon 25 Nov 2024 18:36:44 +0000
asID: 9009
IP address blocks: 45.192.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54172 (0xd39c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 18:36:44 2024 GMT
Not After : Nov 25 18:36:44 2024 GMT
Subject: CN=6738e640-78bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:66:bb:94:65:fe:7b:49:24:1f:8e:80:63:81:
06:57:9e:4c:d1:91:52:e1:f2:33:78:69:fb:a4:79:
5f:3c:aa:75:13:da:bf:82:81:a3:d2:4b:4e:ff:19:
3a:b9:7b:44:75:1c:83:23:4a:e0:c9:08:b0:9a:0c:
d3:19:bd:d5:b0:e8:6f:84:11:80:02:c5:4c:41:12:
cc:c9:84:8c:d3:bd:b0:3c:a1:12:33:b0:6b:ee:b3:
bb:89:c1:23:70:2e:55:c0:9c:ed:40:37:d0:a2:0c:
ff:d7:54:2f:75:63:ed:1f:54:da:70:94:32:ae:de:
4a:4f:f6:e5:bb:d6:a3:e3:9c:4f:a6:da:90:19:7f:
ff:29:37:4a:77:a8:42:2f:7a:34:47:71:e7:3a:2d:
ca:2c:4b:4c:c1:27:3b:17:ed:23:bd:22:22:58:7b:
a7:27:13:1b:66:f4:8a:ee:ee:bc:00:8d:fc:b1:15:
61:dd:04:90:44:5f:22:69:ad:28:0e:4e:8b:89:36:
e5:33:d7:1b:81:e9:45:db:61:24:7f:5d:c0:f1:21:
c1:4d:f5:4e:0a:09:2a:43:3a:26:17:8b:fa:35:d9:
26:6d:b5:88:9d:a8:90:2a:29:70:89:5a:09:94:8c:
48:e5:e2:ac:2f:12:32:87:b2:49:e5:c5:c6:78:19:
28:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:4D:E7:A4:80:D5:DB:8C:58:53:2F:B6:47:F9:9D:E3:DF:01:93:6C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCE8E018A44911EFA3DA2D9A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.142.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:9f:22:d0:c0:c9:7b:c8:5d:c5:58:e6:c6:e8:75:9e:3f:a7:
fa:9a:73:60:31:2d:cf:b7:bc:85:ed:21:6b:f6:95:1d:c4:2b:
89:68:9e:b9:62:4f:50:f7:1e:dd:1a:56:3e:ee:98:72:66:b4:
35:41:a0:c9:c6:8a:0e:37:8a:89:cc:9f:ae:c6:e0:2e:d7:9f:
ca:45:e7:ed:db:36:5f:57:3b:ff:1c:1d:ee:87:e0:87:5c:15:
19:04:85:9a:27:f1:f4:66:d9:20:74:4e:ee:7a:80:0e:5a:05:
67:87:97:5f:dc:90:fb:2c:d6:47:04:29:cf:8c:be:47:88:ff:
f3:1f:49:16:eb:8d:95:6d:cc:da:76:72:f7:c9:7d:02:9b:a6:
de:ae:2f:7f:b0:e9:46:7e:70:70:cc:9a:03:4a:e1:90:f1:cc:
51:57:35:ed:76:b5:5a:ef:7b:da:31:c0:3d:fb:0a:4c:b1:fd:
30:c5:4d:60:76:8d:0b:ef:ad:be:ba:ee:94:f6:fe:99:34:76:
03:90:49:c5:00:0e:c3:b0:10:09:2d:d9:b6:6c:7c:a7:d1:4a:
e2:88:7e:8f:ef:9b:5b:48:6f:84:ad:3a:85:7e:c9:4b:d2:ca:
a6:f8:2e:59:50:c4:80:1f:de:71:7b:83:57:35:4b:cf:ef:44:
b9:7e:90:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:45 2024 by rpki-client on console-fra.rpki-client.org