Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF6AF144A45A11EFAC86B485762E951A.roa
File: BF6AF144A45A11EFAC86B485762E951A.roa (raw, json)
Hash identifier: 0TNbsegi3+qoy9z7nU75ZD4IkuNMIr5B1HoNclU7HJQ=
Subject key identifier: 6B:5C:27:FB:56:34:78:46:28:DE:AA:A8:B8:AB:18:16:4C:37:F6:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D41C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF6AF144A45A11EFAC86B485762E951A.roa
Signing time: Sat 16 Nov 2024 20:38:34 +0000
ROA not before: Sat 16 Nov 2024 20:38:30 +0000
ROA not after: Wed 27 Nov 2024 20:38:30 +0000
asID: 39600
IP address blocks: 45.194.64.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54300 (0xd41c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 20:38:30 2024 GMT
Not After : Nov 27 20:38:30 2024 GMT
Subject: CN=673902ca-d34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4c:a3:f8:bf:9f:3f:9b:b6:a7:36:3d:91:3d:
c8:d1:e2:23:67:5f:81:eb:fe:0c:c2:25:56:1a:a7:
27:99:73:fd:5c:5f:46:3f:90:00:eb:bd:3f:4b:cd:
55:9d:df:08:19:37:ef:e8:81:3d:4b:54:0b:d9:28:
2a:ca:f7:91:e1:5d:bf:fe:df:fe:00:e4:8c:60:f2:
51:01:af:87:de:b0:13:3a:9e:5e:76:c8:2a:87:b0:
7f:38:9b:cf:e0:05:6a:57:1a:51:90:dc:f4:06:a7:
9d:04:2e:f2:ee:3e:a2:a3:78:20:32:1d:39:e4:bf:
f1:72:f8:9f:65:15:d1:d7:9f:5a:5b:85:31:61:70:
75:09:cf:97:cb:3b:af:24:0c:e2:e7:d6:c1:e6:70:
c6:a7:9d:20:55:ed:c6:9c:65:ac:94:02:2f:d6:42:
63:3f:18:20:57:b9:df:bf:7f:77:3c:23:f0:d2:c4:
b0:80:94:d5:7f:c4:a6:29:23:45:a7:65:64:d2:75:
5a:d2:08:28:04:36:f3:c7:5a:53:76:9b:df:29:cf:
55:f5:3a:a6:43:8c:3b:e7:0e:3a:ff:33:09:35:a0:
e9:99:d8:f3:41:53:23:9e:9e:bd:21:9d:d4:e0:3a:
23:2f:24:90:5d:c9:76:5e:be:b2:12:de:dd:45:dd:
5b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:5C:27:FB:56:34:78:46:28:DE:AA:A8:B8:AB:18:16:4C:37:F6:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF6AF144A45A11EFAC86B485762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.64.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:57:2e:e7:55:1b:7b:35:21:48:af:89:b3:e8:0b:bf:7a:bb:
48:23:f9:b8:9b:c9:b7:cf:fa:c8:5a:62:46:ae:07:79:45:f2:
c0:e2:ae:11:a4:d3:31:22:81:77:e6:9d:8c:6a:11:e7:39:7e:
9b:65:33:83:0d:db:74:02:e2:bf:7f:31:b9:1b:06:97:f1:50:
a5:3a:93:03:a9:97:69:c1:b8:dc:a9:2d:a1:c7:eb:fd:b5:0f:
06:8b:e6:f8:1c:45:38:78:ef:a1:ab:5f:3f:15:ef:ae:b6:eb:
b1:c2:19:8b:07:d7:cb:35:d9:9c:88:42:16:2d:56:67:2a:80:
82:08:c7:55:b9:94:40:1d:b8:f4:a2:be:a8:0a:1e:c5:cb:bb:
b9:ec:e0:2b:98:0d:33:b2:62:f8:c0:68:ad:db:51:f5:8e:aa:
03:76:52:1f:2f:6c:9b:2d:c1:b8:41:f7:54:b3:40:30:03:92:
cd:28:55:c4:dd:62:c1:e7:37:ca:18:62:1b:3a:1b:a4:1a:66:
c0:0f:5e:9e:f1:a1:d7:6f:38:62:89:c4:b6:3a:69:12:36:1f:
41:8a:cf:ac:37:f1:51:2a:90:f5:cb:d7:61:ef:08:fb:24:5a:
cb:52:cd:21:12:56:2a:0b:06:bd:03:ab:8f:6b:72:6c:cc:24:
23:fd:e9:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:47 2024 by rpki-client on console-ams.rpki-client.org