Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C696E210A74911EF97A46B77762E951A.roa
File: C696E210A74911EF97A46B77762E951A.roa (raw, json)
Hash identifier: PhtN5HsdoC+h9A5q/a3KHfKetGtvhv6krXfTW9hHY7o=
Subject key identifier: 9C:43:EF:77:2D:57:19:BA:90:55:AC:86:CF:8B:C0:F1:70:A7:E5:96
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D69C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C696E210A74911EF97A46B77762E951A.roa
Signing time: Wed 20 Nov 2024 14:14:38 +0000
ROA not before: Wed 20 Nov 2024 14:14:34 +0000
ROA not after: Sat 30 Nov 2024 14:14:34 +0000
asID: 202656
IP address blocks: 45.199.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54940 (0xd69c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:14:34 2024 GMT
Not After : Nov 30 14:14:34 2024 GMT
Subject: CN=673deece-fe1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fc:c8:83:33:c7:48:af:bd:d5:db:d0:f2:40:
1d:f7:f3:a4:a7:71:18:88:7b:91:66:fe:f7:10:f3:
9f:ec:c1:75:3c:f6:40:72:e3:50:e9:39:d3:bb:b7:
47:95:38:46:47:c7:6e:bf:3a:fc:4e:7d:37:5a:ff:
8f:29:7c:d9:84:88:a2:5c:e5:ea:30:ec:58:df:c7:
eb:2f:3e:c4:4d:51:ea:c6:fe:b9:dd:d4:7d:94:96:
b1:87:33:75:cf:fb:04:fd:a9:93:84:b4:6d:27:5a:
c9:73:1c:a2:8f:65:a6:24:fc:df:40:84:51:fe:a6:
00:7e:04:c9:54:5a:17:8d:cd:9c:89:1e:57:83:e3:
04:8c:3c:2c:09:26:c8:36:a6:f6:71:ab:57:38:0a:
9e:b5:d0:fb:b4:5a:d3:40:6b:43:9e:d4:0d:80:60:
c3:ea:48:8a:15:ba:07:26:2c:20:a3:42:cc:a5:88:
2c:a5:4e:3c:0d:16:16:aa:07:25:f7:ba:95:13:ef:
cf:ac:12:67:8e:87:2b:5c:c3:b0:83:6d:4d:53:e3:
7d:24:c4:ab:4e:8c:d2:a7:2a:45:07:5b:e4:4e:4e:
87:aa:a0:0b:48:fe:0c:44:e4:87:e1:03:27:c2:b2:
63:35:e4:44:ab:b4:2a:df:22:ac:26:54:9d:2b:85:
00:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:43:EF:77:2D:57:19:BA:90:55:AC:86:CF:8B:C0:F1:70:A7:E5:96
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C696E210A74911EF97A46B77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.192.0/24
Signature Algorithm: sha256WithRSAEncryption
17:64:24:de:c5:98:77:eb:19:80:46:ad:b3:03:30:63:c0:55:
58:84:de:b8:31:b2:8c:4c:39:6a:84:c5:cf:b9:49:59:4d:e8:
75:e8:83:2a:d5:50:3a:b3:75:6b:51:77:0b:00:29:19:35:ea:
75:b1:56:e5:d0:e8:8a:27:c1:b7:35:7b:2b:eb:7f:c9:03:bb:
0f:3a:9b:d9:1d:b1:bb:dc:71:44:8f:44:ea:9b:3d:c9:29:bc:
42:b8:10:88:d3:34:30:dd:04:80:3f:d2:6c:2b:e8:92:db:0f:
71:9b:63:09:97:b1:ec:e9:22:dc:c2:ed:ca:62:a8:7b:f3:bd:
b8:8d:4a:5d:35:dc:15:7a:2c:33:93:9b:db:6c:d9:cd:31:ad:
24:66:0c:d6:f4:00:ad:84:92:a5:13:59:f4:08:2e:14:84:60:
66:18:d9:75:44:91:f8:cc:3d:86:45:6e:3a:36:8a:51:dd:58:
b5:0e:8e:35:a1:bd:cd:dc:24:75:71:f7:b2:ef:5e:d8:ac:a1:
da:f1:06:3a:8f:08:43:7c:2e:de:13:35:fd:25:90:c8:eb:09:
e5:54:2c:9c:e1:a6:78:8b:4b:66:0d:e8:a1:98:55:f4:dc:d5:
ab:a3:84:62:36:58:fb:ce:94:51:62:fb:b3:7c:87:02:f6:a5:
20:81:b0:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:47 2024 by rpki-client on console-fra.rpki-client.org