Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C51FA12AA72511EFA8E60098762E951A.roa
File: C51FA12AA72511EFA8E60098762E951A.roa (raw, json)
Hash identifier: xscfN1o6TPwmNlyY+RCLf3oihu7hD3Xd49r7jA2BAec=
Subject key identifier: B9:2F:DD:4C:DB:80:EE:F7:B5:C6:F9:0C:34:B6:AC:8B:F3:99:57:9B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D5DB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C51FA12AA72511EFA8E60098762E951A.roa
Signing time: Wed 20 Nov 2024 09:56:53 +0000
ROA not before: Wed 20 Nov 2024 09:56:50 +0000
ROA not after: Sun 15 Dec 2024 09:56:50 +0000
asID: 215208
IP address blocks: 45.202.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54747 (0xd5db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 09:56:50 2024 GMT
Not After : Dec 15 09:56:50 2024 GMT
Subject: CN=673db265-5da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f8:63:1f:16:f3:8b:b9:77:b2:1b:53:16:c3:
c4:b4:37:76:3f:27:8d:40:43:de:89:a3:c4:45:93:
ca:e9:fa:54:21:7b:66:df:7c:07:c2:88:2c:5c:5a:
13:1b:af:2d:70:7e:35:f5:36:7e:0d:c0:6c:44:d8:
fd:68:71:f4:72:37:73:0e:ac:f9:93:92:04:26:b0:
fa:e2:9d:fe:72:e7:3a:da:15:9c:05:65:ec:32:b6:
8e:15:2f:13:21:26:9a:c4:02:ea:ef:bc:5e:57:1a:
39:62:57:cf:60:d1:4a:7d:06:f8:e9:08:63:57:bc:
2c:63:ee:85:b6:c7:e9:5d:b1:c1:52:8a:98:63:12:
48:34:59:b9:b7:4d:b8:36:52:9b:b1:29:ef:04:34:
e6:e2:2f:48:bd:7b:7f:1e:4b:73:24:1c:a4:7a:24:
15:7f:f3:dc:a9:bb:2d:ed:15:6d:bc:bc:1f:fa:95:
e2:f3:dd:31:11:48:81:4e:8f:de:13:2d:57:fc:b9:
07:89:8e:73:42:a5:a5:b6:c4:e6:c7:7f:f7:ec:30:
d0:ee:81:6f:56:67:ea:47:b3:a5:2e:45:9d:74:5a:
f9:9a:f1:9c:72:96:2e:1f:7a:c5:4c:95:c2:13:5b:
5b:35:c3:71:a4:80:00:21:ba:b3:e9:4b:24:7d:99:
98:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2F:DD:4C:DB:80:EE:F7:B5:C6:F9:0C:34:B6:AC:8B:F3:99:57:9B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C51FA12AA72511EFA8E60098762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.32.0/22
Signature Algorithm: sha256WithRSAEncryption
22:8e:a7:5a:84:74:b2:d1:f0:86:9f:3b:00:1e:a6:65:8c:33:
6d:ca:b4:25:41:79:20:b9:7e:e7:c4:7a:d4:e2:d6:bd:7e:71:
60:39:1b:1d:5c:70:77:5d:ee:2b:19:67:76:20:18:02:9f:bf:
ad:0c:ee:41:91:19:a0:f5:52:ad:68:43:78:21:3c:97:d1:46:
d5:7d:5a:cb:42:a7:8d:26:75:d5:06:2b:da:db:16:62:57:35:
d4:c1:6e:0a:71:a7:4b:9e:ac:01:5e:45:12:82:2e:c2:3a:74:
7b:07:fd:6a:dd:e6:6e:96:7f:a9:a8:f4:dd:bb:7d:61:42:08:
dc:a6:bb:4d:14:ce:e6:2c:89:1c:f8:00:52:60:6d:c7:a1:b3:
de:11:b5:5e:bc:58:02:9a:aa:10:f2:e8:a7:ef:c6:76:94:ed:
cf:a2:58:5a:d1:d4:d0:7d:cb:6f:8e:2b:df:2a:87:c3:95:75:
97:a5:1c:ce:37:33:1a:fc:1a:47:8e:06:a9:ab:c5:0c:5b:2e:
0f:bb:1d:27:13:29:8f:fb:f7:d9:88:6f:f1:3e:70:9f:9b:4e:
dd:88:86:32:bc:25:f9:cd:a1:0e:76:f4:39:7f:5d:a0:4d:77:
1c:bc:e1:5d:1f:42:b3:96:b0:c1:d5:94:b5:0d:ea:c4:5e:65:
d5:1b:c6:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:49 2024 by rpki-client on console-ams.rpki-client.org