Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2C4E886862811EFB23C1B82762E951A.roa
File: C2C4E886862811EFB23C1B82762E951A.roa (raw, json)
Hash identifier: Enhxw8gVUAOlCqpTyZVwLLGAjZMBVCvWkr3xNs8o4hY=
Subject key identifier: 44:6A:28:4F:61:48:D5:91:16:82:3F:B4:68:A2:0B:29:23:16:A4:89
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C1D2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2C4E886862811EFB23C1B82762E951A.roa
Signing time: Wed 09 Oct 2024 10:25:10 +0000
ROA not before: Wed 09 Oct 2024 10:25:06 +0000
ROA not after: Sat 21 Dec 2024 10:25:06 +0000
asID: 135097
IP address blocks: 45.207.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49618 (0xc1d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 9 10:25:06 2024 GMT
Not After : Dec 21 10:25:06 2024 GMT
Subject: CN=67065a06-a624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6d:ae:38:38:76:51:3c:0c:59:90:10:d4:be:
3d:b6:d9:5a:fb:a2:62:a8:e6:08:5e:80:9a:f0:30:
2c:a3:a0:56:19:4f:6d:8c:c0:5d:97:ef:e6:d2:1a:
46:ad:58:87:ea:b8:0f:1d:3b:f7:04:f3:65:d6:ca:
b8:40:a2:86:89:4a:9a:5b:3a:62:2f:5a:60:85:f2:
04:82:ea:02:4c:26:a8:5a:cc:19:5b:58:ff:1d:16:
1b:30:64:10:28:6c:c2:36:54:a0:19:09:7e:97:c0:
65:07:62:2c:59:f5:6f:8e:b4:9a:9e:a8:72:2c:1d:
99:fe:ff:2a:fe:18:cb:9f:cc:d1:6c:56:a7:de:c9:
5b:61:65:75:23:b8:b7:eb:78:f6:e6:e4:d8:f3:72:
45:96:c7:46:0d:67:06:44:de:58:14:13:86:7f:1b:
51:cc:b8:52:f7:ce:9b:da:e1:b3:83:91:fc:ae:a3:
06:c5:c2:81:fd:0b:5c:46:f8:d0:82:60:5b:5b:37:
62:d4:ed:41:90:74:48:3e:87:b6:05:a3:97:85:37:
73:b0:d8:55:a2:ea:2b:44:71:50:c6:b8:3f:1a:f4:
fa:50:c9:fa:52:d3:ed:04:1e:cd:dc:07:50:a3:63:
11:37:9b:cd:1a:05:35:06:9f:f7:7c:f4:7f:12:10:
9e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:6A:28:4F:61:48:D5:91:16:82:3F:B4:68:A2:0B:29:23:16:A4:89
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2C4E886862811EFB23C1B82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3d:e8:f8:2d:be:20:d2:7a:7d:fb:59:1d:be:a0:df:7d:0b:c1:
4a:2c:c8:47:26:e6:62:1d:27:c0:b7:ef:67:ed:d1:6b:70:54:
0e:a7:12:47:e5:42:38:ac:76:dd:0f:88:ce:83:d3:c7:2b:1d:
05:08:5d:09:3f:fb:50:1e:43:d1:cf:62:39:43:0c:d8:ab:bf:
b2:8e:b1:3b:ad:7a:b7:7f:9b:23:44:d2:1e:be:fe:59:3f:50:
37:41:5e:92:da:15:76:84:da:6d:5c:36:4e:d1:15:33:f9:f2:
3a:52:1b:b3:7c:7b:8e:e9:3b:66:a3:76:3f:3e:83:88:fd:98:
8c:d5:66:db:55:dc:2d:66:d5:87:1d:85:66:66:9d:72:93:3c:
65:75:f4:79:cf:70:bd:43:8e:06:a9:cb:3c:ef:76:eb:55:32:
cd:75:04:7c:47:15:8d:78:d7:a9:b9:8c:37:29:0b:b7:92:3d:
6b:15:08:20:d8:1c:84:ec:26:14:bf:9d:e1:ed:14:8a:f7:2f:
bc:56:ea:da:56:a8:00:c1:bc:82:b4:88:a8:55:9f:85:61:0d:
e8:d3:4b:7f:70:54:e7:b5:3f:47:a1:08:bc:28:ae:ea:f3:ad:
8f:10:3d:c8:18:d2:40:72:62:cb:f5:f8:b1:5b:a2:a4:9b:8d:
1c:50:bb:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:48 2024 by rpki-client on console-ams.rpki-client.org