Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D58F5F8AA0E711EF83F43FA8762E951A.roa
File: D58F5F8AA0E711EF83F43FA8762E951A.roa (raw, json)
Hash identifier: vKw0aML73HYW6wCq9HGxXyfnWkRt757TgImmDJVQIuo=
Subject key identifier: E6:6A:A3:4E:EA:E5:DF:60:EB:8F:B6:25:48:D7:47:DD:67:9A:08:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D1BF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D58F5F8AA0E711EF83F43FA8762E951A.roa
Signing time: Tue 12 Nov 2024 11:18:25 +0000
ROA not before: Tue 12 Nov 2024 11:18:21 +0000
ROA not after: Fri 22 Nov 2024 11:18:21 +0000
asID: 5065
IP address blocks: 45.204.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 11:18:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53695 (0xd1bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 11:18:21 2024 GMT
Not After : Nov 22 11:18:21 2024 GMT
Subject: CN=67333981-c929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3c:0e:e7:fb:0a:51:2b:6a:4a:b6:53:f6:5b:
c0:2b:5c:d5:0f:1e:e0:65:fc:be:f3:7f:17:4b:9d:
9b:c1:3f:34:42:81:fd:b0:66:43:02:07:81:7a:0c:
ad:8b:84:bf:78:cc:4c:b4:00:57:4c:09:55:0d:3f:
62:48:09:04:dd:ea:9c:34:25:f9:9f:e9:d8:09:5a:
1b:b9:10:e9:2c:b2:65:83:6e:27:a8:2a:74:a9:f9:
77:61:ab:11:61:e0:fc:7b:93:fe:3f:6a:a0:57:47:
ed:1a:42:62:99:98:d2:b2:6d:f3:04:0c:0b:e0:3c:
23:09:c7:3a:03:77:6b:83:dd:dd:2e:a6:6b:10:42:
3d:37:57:50:b8:53:c1:3d:e6:e6:37:84:8d:c1:f6:
02:cd:5b:94:98:87:3d:51:4a:c1:50:ea:b9:03:d6:
0f:37:b0:eb:70:30:95:91:35:da:5a:4e:98:9e:31:
80:4d:02:cb:db:74:37:55:3f:a4:26:94:23:14:b8:
ad:6e:35:14:f5:fa:4a:e0:54:08:66:28:21:c0:c2:
a1:ec:65:06:35:d9:6c:9f:11:0d:8d:2e:dc:1f:59:
a1:63:96:ae:12:c8:4c:55:bc:0e:c9:df:80:33:8e:
55:1e:88:8d:ce:32:95:37:cd:b9:3e:c6:df:4d:c5:
ea:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:6A:A3:4E:EA:E5:DF:60:EB:8F:B6:25:48:D7:47:DD:67:9A:08:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D58F5F8AA0E711EF83F43FA8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.76.0/24
Signature Algorithm: sha256WithRSAEncryption
51:7c:c7:97:d9:40:a4:cb:e5:23:18:82:31:ed:4d:b2:ce:f5:
fc:ce:f9:4c:87:28:f3:48:18:7a:50:19:90:fc:64:40:9a:83:
a9:c4:14:bc:86:f6:b8:b9:4e:f5:12:55:e1:3b:32:7c:2a:c8:
1a:23:80:cb:80:bf:e9:6c:fa:56:c9:57:94:b0:83:76:9c:ed:
b0:ea:d8:3e:bb:87:83:6f:56:fd:a2:4f:c2:09:f2:2c:2d:b6:
74:79:fb:a1:38:f7:4f:ed:5f:38:a3:a8:8d:b6:f6:87:c2:bc:
d0:48:58:15:81:3c:14:5b:29:d3:99:c5:42:e8:b6:40:81:06:
ab:48:72:b9:07:89:bb:2e:e3:b0:2f:41:32:1f:72:60:63:43:
a2:08:24:ea:c5:09:6b:ae:b6:83:e6:7b:90:dc:79:20:c1:f0:
55:b0:34:50:91:8c:42:e5:77:44:50:74:9c:ea:94:76:0f:73:
73:b2:82:b8:6a:ae:95:06:7b:1a:9d:86:45:4d:d6:4f:e7:0c:
4c:38:01:63:01:41:3b:01:a5:cc:92:9f:8e:38:46:df:f8:50:
9c:46:c4:0d:83:88:b0:ea:06:f0:ba:5e:ad:cd:26:0b:ef:03:
c0:19:ec:55:82:24:f5:ae:59:30:6f:7c:bb:2d:e0:73:e5:8a:
2e:8b:fd:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:51 2024 by rpki-client on console-ams.rpki-client.org