Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D27245B69D1211EF87FBC08E762E951A.roa
File: D27245B69D1211EF87FBC08E762E951A.roa (raw, json)
Hash identifier: HI4MrbZGjQXi9PhPpEeDPvekUbUmwoEcFgz/7si1HYE=
Subject key identifier: A9:5E:32:3B:B0:28:8B:08:42:71:AB:55:0E:43:C6:1B:51:BC:43:F3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CFD6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D27245B69D1211EF87FBC08E762E951A.roa
Signing time: Thu 07 Nov 2024 14:16:04 +0000
ROA not before: Thu 07 Nov 2024 14:16:00 +0000
ROA not after: Fri 13 Jun 2025 14:16:00 +0000
asID: 139811
IP address blocks: 45.195.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53206 (0xcfd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 7 14:16:00 2024 GMT
Not After : Jun 13 14:16:00 2025 GMT
Subject: CN=672ccba4-c034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f5:9d:ee:70:57:7b:dd:8c:74:0e:b1:cb:45:
77:60:39:f7:fe:4c:8d:8d:b1:0b:be:57:93:a7:a4:
08:d6:41:cd:7d:54:4c:f8:61:04:d6:5f:7f:7d:7b:
f0:64:35:d2:ba:72:dc:8a:c3:d4:50:26:57:f6:06:
32:11:5e:1b:5b:dc:8b:c6:c6:32:2e:ad:d8:0c:0d:
bb:7c:68:45:bd:e6:92:3d:60:d3:26:64:b0:3b:eb:
fe:c1:ba:5e:56:ff:a3:14:06:38:f9:b8:29:af:fb:
7b:1c:fc:36:85:1f:df:e4:cb:d7:68:25:71:3d:9a:
36:a9:b4:d8:17:9d:db:a5:45:e1:72:0c:bd:52:84:
95:10:08:01:07:c9:41:8f:4f:37:2d:90:74:de:b3:
cb:a1:69:11:eb:0d:65:70:2f:5f:9e:82:f1:ee:99:
dd:22:d5:ef:90:97:59:9d:bc:91:f5:03:7e:e2:9f:
22:33:6e:9e:72:c7:ad:78:02:40:e4:c4:b6:d9:10:
00:ed:26:e4:4b:31:81:f9:2d:ca:75:44:d7:cf:6e:
9c:bc:cc:19:41:11:9e:83:2e:0b:24:f0:49:70:bf:
65:e8:56:33:df:13:a0:d4:73:0d:b9:dd:d5:cc:60:
99:dd:6e:92:12:7f:b9:c4:29:c4:1c:4e:89:95:f4:
2b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:5E:32:3B:B0:28:8B:08:42:71:AB:55:0E:43:C6:1B:51:BC:43:F3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D27245B69D1211EF87FBC08E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.61.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:a9:00:29:0c:4d:ff:69:e3:82:82:b2:dc:c4:d5:e3:c6:32:
33:49:b5:4b:5b:ed:5f:ab:1e:73:bb:97:e0:3a:73:48:a8:fa:
73:cd:21:7e:14:84:c7:81:0a:f7:c2:44:84:ba:6c:2d:5e:1f:
57:68:6a:ec:bb:4d:24:56:ea:5d:8a:af:09:01:b9:00:06:c7:
22:9f:6d:67:8b:a8:f8:80:77:c1:bf:e6:f0:0f:ae:0b:e0:08:
ef:8e:6b:3d:4e:52:27:5b:46:35:25:f9:41:89:48:e5:6a:46:
97:33:c7:86:3e:39:18:84:bc:52:af:c7:7a:84:fe:d7:20:89:
06:72:69:42:9a:52:bd:7c:57:74:54:7a:64:fd:50:04:83:50:
d2:ca:ba:94:3b:1f:90:e4:f9:20:74:2f:a1:b1:26:16:99:5b:
11:7c:95:e8:41:e8:f0:80:25:44:86:44:3b:a3:a8:24:5d:dd:
e9:29:c1:aa:55:7a:c0:78:b6:f1:6b:f7:71:05:05:cb:14:ae:
35:71:f9:e6:4e:21:a7:0b:f7:36:ed:aa:11:3a:94:e2:36:9b:
4f:02:5d:a1:21:a7:ca:6e:c8:11:63:e8:0e:42:d9:55:d8:2e:
1e:7a:26:b4:f0:7e:36:e1:84:d4:55:78:6a:0e:d1:ea:52:ec:
03:47:82:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:48 2024 by rpki-client on console-fra.rpki-client.org