Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFE22966A33211EF9427E052762E951A.roa
File: DFE22966A33211EF9427E052762E951A.roa (raw, json)
Hash identifier: Nke5FA2jUphTxag+dbapu6f63UkzLzqADEpLorN2XRo=
Subject key identifier: BF:82:61:51:FB:33:D4:FF:CA:63:A3:D0:0F:4A:24:E1:94:B6:E6:C4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2FF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFE22966A33211EF9427E052762E951A.roa
Signing time: Fri 15 Nov 2024 09:20:37 +0000
ROA not before: Fri 15 Nov 2024 09:20:33 +0000
ROA not after: Sat 17 Oct 2026 09:20:33 +0000
asID: 152450
IP address blocks: 45.195.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54015 (0xd2ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 09:20:33 2024 GMT
Not After : Oct 17 09:20:33 2026 GMT
Subject: CN=67371265-f607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0f:aa:85:a3:7b:b9:36:d7:3b:5a:ed:f0:d2:
d3:32:66:40:be:5a:8c:6b:73:40:a2:af:af:72:14:
65:67:62:89:10:25:4a:2e:40:bf:80:3d:b2:bc:74:
bd:7b:d7:f0:f1:b4:46:53:6c:05:2b:e6:06:c8:44:
82:08:72:4b:47:98:18:43:1f:e1:10:5e:8a:8b:86:
fe:ec:2a:27:4a:68:23:d8:67:ad:1c:67:cf:0b:bf:
1e:df:1a:e2:31:7f:16:24:9e:27:64:7e:7b:25:17:
cb:fe:c9:ac:52:90:9a:e8:ed:00:ad:90:9e:90:d7:
6f:9c:35:18:25:e2:5f:25:02:54:fb:6e:6d:2f:bc:
30:46:6d:aa:89:57:74:af:71:94:d9:01:17:40:8d:
3e:36:85:7c:b4:89:06:80:8e:ab:a9:20:e7:31:89:
89:44:b0:78:93:5b:b0:52:d6:90:04:a0:1f:48:7c:
52:58:78:64:84:c6:0a:e1:44:0a:cc:af:0e:bf:60:
cd:f6:29:84:f7:1d:a7:3a:9a:3a:b2:3d:30:70:fc:
91:23:b5:32:12:a5:dc:04:38:ed:10:f2:01:1d:58:
0d:5b:dd:c8:e4:dd:e6:62:3d:9b:fe:81:54:b4:29:
66:67:8f:85:e3:97:d2:36:26:f2:2f:6b:79:01:40:
ff:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:82:61:51:FB:33:D4:FF:CA:63:A3:D0:0F:4A:24:E1:94:B6:E6:C4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFE22966A33211EF9427E052762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.56.0/23
Signature Algorithm: sha256WithRSAEncryption
02:0e:b8:74:c3:89:15:67:33:ad:97:e6:31:12:b0:0e:ed:a0:
31:4f:fb:4d:28:06:25:34:ba:11:a8:ef:79:a4:6e:b1:35:f7:
47:5d:cb:09:33:04:95:c4:f8:66:95:1d:0f:bf:b7:45:13:af:
a7:e6:e3:aa:3e:8c:68:39:63:56:da:07:56:71:51:3f:13:32:
e3:f6:2d:c0:4e:d6:70:5f:23:d5:1a:5a:2c:2e:81:df:a3:d2:
d5:d4:c8:38:77:41:b8:04:20:89:4e:13:da:fb:be:d4:74:6a:
eb:1b:18:ac:1c:41:ba:1b:f1:77:52:6c:44:6f:78:52:0b:e2:
f0:77:f9:8d:51:fb:d3:e3:c9:06:b7:b4:3b:25:90:bf:03:31:
b5:c5:2b:5e:18:94:13:bb:8b:08:58:8a:f1:04:32:4c:74:30:
af:e9:8d:78:02:00:a1:ad:fa:73:7b:78:10:01:23:16:24:6b:
d8:9e:5a:2d:d8:22:f9:99:8f:a1:e5:24:e9:ef:bc:e6:24:7f:
e3:b7:65:f7:f2:9b:87:3f:ac:4b:6a:4b:7a:ff:c8:d3:0c:8c:
b1:85:e2:e1:46:49:7b:16:02:ab:d7:01:b4:46:bd:b1:ad:0f:
40:53:b1:62:99:64:59:11:7d:3e:88:9d:52:74:96:be:19:3a:
f2:4e:ee:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:51 2024 by rpki-client on console-fra.rpki-client.org