Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1581A76A4D611EFB0E7D69B762E951A.roa
File: E1581A76A4D611EFB0E7D69B762E951A.roa (raw, json)
Hash identifier: Lczh+lY2yuPP6nQ/lT3ItLN+NPWrZjOHknu7dQdBvcs=
Subject key identifier: C0:09:0C:8C:90:38:01:03:13:BD:CD:AB:7B:7A:58:8A:33:DB:78:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D50B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1581A76A4D611EFB0E7D69B762E951A.roa
Signing time: Sun 17 Nov 2024 11:27:08 +0000
ROA not before: Sun 17 Nov 2024 11:27:05 +0000
ROA not after: Wed 27 Nov 2024 11:27:05 +0000
asID: 39600
IP address blocks: 45.197.204.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54539 (0xd50b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:27:05 2024 GMT
Not After : Nov 27 11:27:05 2024 GMT
Subject: CN=6739d30c-33c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:14:87:f0:7e:38:ce:ef:8b:38:a4:5e:09:38:
75:3c:fa:f9:7a:94:68:57:14:f5:37:29:4c:4b:1f:
79:30:5e:8f:34:ad:8c:4e:80:c2:30:a9:f2:ba:ea:
90:06:cf:cd:29:a0:4b:7c:b8:09:2b:04:b0:69:dc:
6d:ad:97:a9:fb:ff:0e:04:c3:d9:6f:21:4f:f1:db:
ba:60:f9:26:53:cb:55:7c:3e:46:c6:c2:54:85:49:
16:75:c0:cd:46:41:4a:9d:d2:f2:58:78:30:aa:e5:
2e:21:d6:c5:1a:4b:72:44:79:11:20:81:19:55:1e:
78:b1:de:06:b4:5a:68:00:cf:73:ca:12:f8:98:57:
21:54:2e:b6:7d:c0:33:93:83:7e:ec:06:83:cf:d0:
4f:74:4e:ce:54:2a:c1:41:13:03:4a:b8:22:26:96:
1e:ea:3f:25:ea:a8:68:4d:47:ba:16:40:7a:0e:7e:
2b:3e:85:ea:de:bc:57:7e:e1:d3:c0:37:28:74:61:
0e:be:c5:92:0e:e5:f4:8c:a5:87:84:e7:eb:56:05:
bd:c4:ac:37:28:69:7f:55:c0:fa:aa:43:47:f6:cf:
90:33:6b:73:1a:4c:51:4a:6d:1b:28:22:5f:d2:6b:
8e:63:50:1b:f2:46:4f:30:b2:cc:c6:00:6a:02:62:
bc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:09:0C:8C:90:38:01:03:13:BD:CD:AB:7B:7A:58:8A:33:DB:78:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1581A76A4D611EFB0E7D69B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.204.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:2d:51:42:91:dc:69:be:93:3f:5d:ce:3d:af:3e:78:40:ea:
25:b9:9a:ec:39:bd:bf:6b:27:4d:fe:f5:ea:a4:48:ca:be:cf:
b5:39:af:d3:4b:b2:92:12:00:36:09:cf:06:84:12:d3:4e:74:
fa:17:81:5f:46:ab:1a:5f:f7:c8:1a:05:36:38:bc:37:50:6a:
92:91:f4:4a:34:0a:e7:d3:71:df:6e:d2:40:dc:59:cb:b6:a4:
16:59:70:03:d8:33:c7:c1:a6:06:e7:1e:7d:02:bd:45:67:4b:
4d:0c:e5:cb:ed:d4:3e:17:4d:13:64:ae:be:4d:8e:e9:cf:6e:
a8:c9:27:68:31:7d:6e:30:a5:34:d6:91:27:c5:36:18:5a:0e:
04:53:23:14:42:bd:2f:04:97:d5:a5:04:a5:28:0f:a0:ab:3b:
d8:b6:33:a2:d2:a9:ee:dc:f3:d8:82:e6:8a:b6:d0:d6:4d:cd:
9a:c4:16:81:87:00:f7:32:8a:71:bd:ee:41:d9:85:5f:59:05:
2b:16:89:ab:f6:ce:8a:55:e9:1c:fb:5a:72:b1:ca:3b:2b:96:
ff:cb:d0:9c:f2:be:31:bd:3c:a7:21:c5:f9:cf:48:26:56:89:
10:1f:ea:6a:4b:eb:42:b8:d3:b3:82:5e:32:6e:af:59:61:6c:
ef:e3:73:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:53 2024 by rpki-client on console-ams.rpki-client.org