Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D203820C8D2C11EF9428D855762E951A.roa
File: D203820C8D2C11EF9428D855762E951A.roa (raw, json)
Hash identifier: WRTDvQO7Je5rZu42e0UScFcwNnIwORBk76bfvt4Bgyw=
Subject key identifier: F9:69:20:E5:FB:B0:67:B3:B4:6E:62:3A:37:2F:EF:23:7C:97:3D:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C676
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D203820C8D2C11EF9428D855762E951A.roa
Signing time: Fri 18 Oct 2024 08:41:51 +0000
ROA not before: Fri 18 Oct 2024 08:41:48 +0000
ROA not after: Sat 23 Nov 2024 08:41:48 +0000
asID: 48031
IP address blocks: 45.200.186.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50806 (0xc676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 08:41:48 2024 GMT
Not After : Nov 23 08:41:48 2024 GMT
Subject: CN=67121f4f-ae3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:36:61:80:21:ea:b2:75:25:62:20:35:6b:5a:
12:41:d6:e9:90:71:0d:d9:88:de:28:dd:63:2d:2b:
80:fe:5f:3f:39:f8:16:0c:96:66:67:75:17:46:2f:
1b:d4:14:38:c9:98:75:8f:5b:18:1f:2f:40:38:b1:
d7:d0:34:9d:72:04:1c:f8:50:fe:a2:f1:01:22:87:
3a:12:ff:36:65:b6:0c:22:ff:54:2f:43:58:a8:c5:
54:93:6e:63:4a:ee:4b:dc:91:ba:79:d2:e1:de:2a:
19:f7:8c:ee:83:b7:1b:58:d4:48:93:61:9f:08:2b:
e3:bd:c1:e9:09:31:5d:f9:3e:36:10:db:e4:99:5e:
29:b1:a5:c6:23:33:f8:21:a4:20:47:95:51:53:48:
d6:95:26:3a:48:f1:32:8d:7c:3a:e1:9f:ef:9a:41:
4e:d8:f6:53:5b:78:11:46:f7:72:a7:7e:ef:6e:d4:
ce:b3:43:67:2f:43:2d:e1:ef:46:b9:c0:92:5a:2a:
17:02:11:0b:ab:0d:e4:ca:96:d9:d9:88:f9:9c:ee:
67:3a:b0:7a:17:d2:31:28:c3:e4:35:77:b9:f7:02:
c0:3a:84:a8:9a:73:69:f4:8f:b1:c8:90:71:e4:b2:
95:09:ba:6e:94:72:a4:4c:18:b3:a8:78:54:38:95:
64:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:69:20:E5:FB:B0:67:B3:B4:6E:62:3A:37:2F:EF:23:7C:97:3D:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D203820C8D2C11EF9428D855762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.186.0/23
Signature Algorithm: sha256WithRSAEncryption
81:51:ea:5d:d9:c4:12:eb:e0:a9:cd:74:65:10:d3:b5:5d:98:
31:47:bf:95:2a:bd:b3:fd:8c:19:61:c2:d2:c7:1a:18:64:c9:
23:bf:b9:29:79:fa:82:84:2f:58:9e:7f:4e:8b:11:4b:0f:da:
cf:00:ec:d2:67:13:5b:e9:90:5a:47:6a:43:5a:9c:59:dd:a4:
aa:89:f6:9a:ac:21:3f:34:df:7c:7b:38:d5:52:08:65:f0:d8:
b0:6e:43:6d:60:b5:63:8d:a4:c6:97:4b:7d:15:55:b1:92:52:
58:4f:06:a9:55:06:45:25:7e:ef:a4:23:2b:48:90:9b:d5:0b:
84:ca:11:c2:34:54:fa:0c:e9:a6:02:3c:62:8f:ba:e0:3f:0a:
7c:aa:e7:29:1c:19:07:a1:52:25:91:8a:a9:8b:d6:a3:8c:16:
96:e9:8e:2e:e1:81:5f:00:90:ea:2c:54:5e:94:c0:52:d5:b0:
74:ea:81:df:43:57:63:cf:af:1b:d4:08:f9:1e:9f:cf:40:1e:
04:6e:5f:d0:9e:33:ef:fd:05:c4:8a:8b:dd:07:6b:ce:2e:fa:
08:e8:c1:94:d0:39:cc:0d:bb:9f:1b:65:23:94:93:14:70:81:
2e:a9:73:20:df:94:23:73:46:5b:4d:60:f7:d9:7d:89:3f:46:
4a:c6:26:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:48 2024 by rpki-client on console-fra.rpki-client.org