Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4B7EE5CA4C911EFA3B5394B762E951A.roa
File: D4B7EE5CA4C911EFA3B5394B762E951A.roa (raw, json)
Hash identifier: 65Vm5TTH/LJ5/EZqBEbFW1+3y83MMtxMjPB1bdFk4pw=
Subject key identifier: 5C:3F:17:23:C6:08:57:78:63:90:1C:E2:F7:FB:68:46:E2:9C:C3:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4B5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4B7EE5CA4C911EFA3B5394B762E951A.roa
Signing time: Sun 17 Nov 2024 09:53:44 +0000
ROA not before: Sun 17 Nov 2024 09:53:40 +0000
ROA not after: Mon 25 Nov 2024 09:53:40 +0000
asID: 9009
IP address blocks: 45.192.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54453 (0xd4b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 09:53:40 2024 GMT
Not After : Nov 25 09:53:40 2024 GMT
Subject: CN=6739bd27-f697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:9b:1c:0f:cf:f3:de:ef:1a:fa:f9:e8:20:
4d:40:ff:8f:a2:d5:70:de:dd:13:7a:79:2b:7e:b9:
ca:52:71:a7:df:59:a6:1c:d9:3d:20:22:3e:a1:84:
11:b3:f7:05:7c:80:31:64:99:3a:35:5c:7f:f2:c8:
80:24:5b:95:30:d5:51:13:4d:02:7c:82:1d:37:bd:
a7:31:f9:98:d6:c0:1b:c9:b0:24:a2:81:b5:9c:96:
35:d6:72:10:40:f1:9c:4d:c0:ad:93:a1:df:c7:e2:
a0:f8:5c:76:63:c9:e8:7f:62:ba:e9:f9:bc:b5:58:
38:e9:99:79:21:05:7a:ac:20:c6:00:3c:47:b9:1d:
55:44:8f:a1:18:e8:a2:b0:e6:9c:05:4f:7f:c0:6d:
5d:ea:24:64:2d:5f:43:9c:c6:bb:e3:d8:b0:48:d0:
aa:54:d4:06:98:82:22:f9:0b:25:2e:76:df:e9:b6:
37:e1:ec:c2:44:23:a6:9c:ee:59:65:f0:61:d1:1f:
36:7c:dc:00:9d:72:d1:0e:07:ea:68:30:72:49:46:
64:9e:1f:21:9b:fc:8e:ed:53:93:a4:f1:7f:47:75:
88:3d:8f:e0:34:7e:27:b9:a9:38:95:4f:40:8d:71:
0b:41:be:c1:33:37:2b:91:98:50:fa:65:43:e4:0a:
c2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:3F:17:23:C6:08:57:78:63:90:1C:E2:F7:FB:68:46:E2:9C:C3:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4B7EE5CA4C911EFA3B5394B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.141.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a3:f4:74:4d:fa:9a:06:a4:c5:46:3a:08:d5:07:db:16:45:
b2:07:ec:13:16:20:6b:6e:e6:d6:e6:27:8f:e8:a1:ff:72:3e:
05:bc:aa:b3:23:84:7b:89:f4:1c:31:39:fe:28:1f:ae:42:40:
13:cd:f8:c7:7b:29:0d:a5:99:72:bf:14:e3:a3:e7:59:d9:2b:
c1:b6:46:b8:8c:9e:34:43:32:b1:d3:dd:b2:e0:28:28:fe:31:
20:80:ae:9a:08:4a:1d:85:80:3a:ba:7f:61:14:99:71:37:d4:
14:29:0d:18:ed:bc:96:13:bb:78:4b:70:e2:59:76:6c:40:a7:
6d:da:44:53:20:84:68:cb:5f:20:2a:9b:4e:54:d8:96:26:cf:
88:96:71:15:e0:20:bd:93:91:48:77:bf:73:32:65:7f:21:86:
e0:df:5c:de:35:af:d5:78:3e:54:4c:7b:d8:76:79:ca:02:d4:
06:a4:30:5c:3d:e0:f9:a0:3a:ec:07:da:b6:53:6a:20:e5:0c:
53:74:be:51:e4:55:42:f1:0e:64:fc:4d:48:ed:41:8d:9e:e1:
a1:c3:86:35:fe:e4:6a:38:17:c2:bd:a2:7a:d4:ea:df:d4:4c:
65:67:ce:bc:34:cd:84:8e:06:59:d9:ce:5b:d0:b3:4c:e3:4f:
51:9f:04:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:49 2024 by rpki-client on console-fra.rpki-client.org