Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C61696D8A70711EF88EEF25D762E951A.roa
File: C61696D8A70711EF88EEF25D762E951A.roa (raw, json)
Hash identifier: 8TWfutsmQdTsLJHgLEZ8GdxHUURXzrpZktnIXdOtQCA=
Subject key identifier: 42:FB:72:34:11:C6:2D:97:13:23:9B:8A:1E:6B:B6:84:E2:A2:72:4E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D59D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C61696D8A70711EF88EEF25D762E951A.roa
Signing time: Wed 20 Nov 2024 06:22:10 +0000
ROA not before: Wed 20 Nov 2024 06:22:06 +0000
ROA not after: Sun 22 Dec 2024 06:22:06 +0000
asID: 395793
IP address blocks: 45.206.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54685 (0xd59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 06:22:06 2024 GMT
Not After : Dec 22 06:22:06 2024 GMT
Subject: CN=673d8012-f43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:31:da:39:58:f5:6e:c5:db:b5:7c:90:31:1e:
42:f1:37:01:48:60:4f:9c:bb:28:35:bb:d0:4a:32:
7a:b2:ff:90:f2:ed:f9:40:52:07:61:1d:2d:7d:ec:
35:36:65:ba:c5:6a:18:3f:8e:3b:2d:c7:a9:cb:30:
7f:bc:95:8c:b1:fb:d1:14:9f:33:0f:9f:e6:b8:f9:
bd:dd:0f:e2:de:fa:d3:a0:09:39:19:45:ef:c0:2a:
d3:68:ee:d5:04:02:59:8e:cf:92:ef:10:ee:fe:40:
5c:6e:1b:b5:48:5b:00:bc:9b:b2:77:13:57:2b:ec:
b4:e8:2a:55:90:c4:06:e0:5a:0f:a9:93:38:3b:80:
78:ab:9e:c6:5f:42:0f:9c:9f:72:d1:ef:71:82:c0:
68:9b:ed:15:f1:bd:03:b6:0e:e2:d7:94:c2:48:8b:
9a:b9:e6:2f:62:cd:f8:06:97:f0:35:e2:f8:6c:db:
20:2e:c6:0d:ad:80:6f:f3:e1:eb:8f:d6:33:92:55:
6d:1a:9a:c4:8a:ce:37:d9:34:c7:6a:f3:88:fc:91:
3e:53:5d:33:09:32:d1:17:89:50:9b:cf:4c:f2:d6:
73:67:01:d4:56:31:97:e9:2e:de:2b:ee:74:6a:b1:
3d:77:0b:95:9b:9b:85:37:67:7e:22:e1:d4:92:3a:
4e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FB:72:34:11:C6:2D:97:13:23:9B:8A:1E:6B:B6:84:E2:A2:72:4E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C61696D8A70711EF88EEF25D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.66.0/24
Signature Algorithm: sha256WithRSAEncryption
41:f4:c1:5d:62:02:bf:34:4a:ba:d0:41:b4:8c:16:5d:a3:76:
22:b8:4a:a7:2a:df:f1:b4:cc:df:d3:fd:48:40:be:8c:db:23:
a9:be:53:d5:3e:ac:c5:97:29:92:25:28:2e:de:e7:e0:81:8d:
01:4c:33:6d:24:01:e5:c7:ea:0b:76:2c:ef:e5:de:75:a7:68:
4f:4a:7b:44:ad:be:24:6e:75:e4:6b:2a:3d:70:dd:ea:2f:0f:
15:70:90:ff:de:bb:13:4b:8f:41:0c:f5:51:fc:ca:8f:06:e1:
b0:71:ba:ee:dc:8b:72:0f:78:74:7d:80:c0:ef:f3:ef:61:14:
02:86:09:32:c7:d1:f3:1a:95:92:ae:43:42:13:84:5e:2e:0f:
15:2e:d2:96:1e:24:c6:13:7e:9b:99:38:9d:0e:8d:3e:5c:b9:
b5:32:18:fe:da:c8:a1:4d:ea:2a:5a:04:64:cd:f8:a0:e8:70:
80:59:b0:24:0e:f2:b4:07:88:78:84:7c:48:a9:15:62:36:40:
7b:42:10:bf:9a:a9:a8:d4:bb:79:f9:e5:89:b3:e9:46:09:99:
85:eb:4e:52:43:c8:ff:f3:20:d8:cf:0d:04:97:90:65:42:f3:
4b:2c:03:28:a0:1d:77:88:ec:49:ce:e0:2e:82:3d:84:52:36:
3e:52:b6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:47 2024 by rpki-client on console-fra.rpki-client.org