Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DE5B58ECA19D11EFAF24C14F762E951A.roa
File: DE5B58ECA19D11EFAF24C14F762E951A.roa (raw, json)
Hash identifier: m3/Jdyz39KZ8HgFZomDjTQKtiNcjZYYICkx8ZPXb1Nk=
Subject key identifier: BF:9D:60:89:EB:12:2F:78:46:FD:D8:30:EE:8D:CB:D1:8D:0E:38:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D262
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DE5B58ECA19D11EFAF24C14F762E951A.roa
Signing time: Wed 13 Nov 2024 09:01:28 +0000
ROA not before: Wed 13 Nov 2024 09:01:25 +0000
ROA not after: Sat 23 Nov 2024 09:01:25 +0000
asID: 7018
IP address blocks: 45.203.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53858 (0xd262)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 13 09:01:25 2024 GMT
Not After : Nov 23 09:01:25 2024 GMT
Subject: CN=67346ae8-ddb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:03:7a:87:e5:fe:67:5e:14:71:7a:26:7e:e1:
10:0f:5e:3a:ef:20:b3:c8:3e:0a:36:c0:36:f1:6e:
5b:10:92:01:83:e5:bf:32:03:37:d3:0f:ce:4a:95:
95:16:03:7a:2d:43:63:96:17:b5:5b:97:dc:7a:34:
33:e4:d8:4d:ba:e3:4f:f4:fc:8d:66:41:1a:12:e5:
f0:39:25:3f:be:af:e4:8e:36:40:1a:0c:4d:22:49:
3b:c0:45:52:9b:76:23:d5:1f:69:73:8c:bd:f3:5f:
43:0f:92:99:e4:73:22:f2:fd:bb:6d:bd:a0:72:8b:
6d:a2:b7:e5:69:89:a1:ed:55:28:c5:7f:ab:18:86:
89:bb:23:80:ea:0a:27:0d:aa:b1:cc:7c:c2:ff:1c:
b4:9a:0c:67:77:5c:c4:d1:69:70:d9:07:b4:c4:2b:
17:9a:e2:1f:e5:80:1f:86:d3:53:7c:0f:99:6a:39:
19:6f:b2:fa:08:28:c0:ba:e5:ad:5c:4b:ca:57:93:
2d:78:da:ce:c7:57:cb:e7:54:d3:5e:d0:97:41:07:
31:0f:0e:1d:c9:25:8a:f3:1c:dd:27:65:1b:fb:ea:
57:a4:16:1b:43:ff:b8:5c:aa:36:84:2c:b2:19:34:
4d:9a:06:e3:2f:48:ef:93:7a:db:7d:b3:10:52:f2:
13:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9D:60:89:EB:12:2F:78:46:FD:D8:30:EE:8D:CB:D1:8D:0E:38:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DE5B58ECA19D11EFAF24C14F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.48.0/21
Signature Algorithm: sha256WithRSAEncryption
90:47:8b:5e:e4:c8:bd:30:1c:5f:4d:d2:de:fd:43:3e:5f:14:
00:d5:38:0b:3c:3c:6c:32:b2:28:bb:f5:cb:6d:a6:f2:35:02:
77:f8:68:38:7a:82:69:d2:af:22:7e:ed:fb:18:6d:41:f3:7d:
97:89:75:ce:13:51:af:cf:42:51:3e:ff:e1:4c:ff:f4:6f:34:
fb:6d:90:df:d4:52:50:09:c6:34:e6:5c:3a:09:41:8d:5d:ab:
08:1e:a7:15:39:e9:5d:47:85:c0:e0:cd:42:fe:8d:f3:36:32:
e1:d0:a5:fa:3a:b1:e6:a7:6b:1d:cc:d7:fd:2f:aa:2e:25:6f:
33:98:40:0d:c4:2b:a4:e4:99:4a:c7:8a:a4:92:5e:85:62:8f:
de:89:46:00:cf:20:ae:20:2b:57:7a:d2:3d:22:15:de:d6:ec:
17:44:52:bd:06:ba:06:08:1b:b0:7d:f5:de:cc:61:22:d5:c6:
fd:69:cc:52:fa:9e:a7:82:fd:c0:cc:c8:1b:6b:fa:bc:85:cf:
19:4e:c0:05:98:40:90:6f:11:1c:b7:a1:d8:95:25:04:bd:98:
a6:d2:d3:cc:de:dd:37:07:44:66:2c:87:b4:bc:dd:5c:30:c0:
f0:72:f8:66:0f:fd:d0:6b:73:69:f0:52:33:76:e5:77:94:f7:
5c:1c:2f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:53 2024 by rpki-client on console-ams.rpki-client.org