Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E41BDC90A45211EFA073CF54762E951A.roa
File: E41BDC90A45211EFA073CF54762E951A.roa (raw, json)
Hash identifier: w1t/BjnD3ObpFKZQ/3vxPjSeMqZu6BOkxTihw19LEJA=
Subject key identifier: FD:F3:3A:C0:C2:C2:0C:1B:DA:F5:02:D2:90:1F:87:C3:31:EE:FB:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3D6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E41BDC90A45211EFA073CF54762E951A.roa
Signing time: Sat 16 Nov 2024 19:42:19 +0000
ROA not before: Sat 16 Nov 2024 19:42:14 +0000
ROA not after: Tue 26 Nov 2024 19:42:14 +0000
asID: 216183
IP address blocks: 45.204.164.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54230 (0xd3d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:42:14 2024 GMT
Not After : Nov 26 19:42:14 2024 GMT
Subject: CN=6738f59b-f428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:69:b0:e2:8d:a4:9c:e8:d2:4f:fa:55:18:84:
d9:27:a4:af:2c:5b:41:15:e4:a5:ff:13:6f:30:8b:
82:30:d1:02:f0:63:93:4b:de:b3:83:0f:d7:fa:78:
aa:db:b1:f5:2d:82:96:1f:38:b0:94:d2:bb:b4:3b:
9f:41:76:ac:82:71:e8:ce:bb:b8:fc:8f:6b:3c:10:
09:31:45:29:e5:87:9f:e4:af:f8:60:88:38:1b:cb:
a6:6e:83:65:2f:ab:37:b7:6e:41:61:19:bb:24:b4:
ae:82:49:84:92:ad:66:72:fe:e5:11:5f:68:dc:45:
00:54:b5:0f:34:32:8a:81:a4:33:f2:7f:71:4f:a5:
75:ec:e7:98:d9:c4:e8:c3:57:73:f5:fb:40:94:39:
db:e8:e9:12:8e:09:01:99:e1:40:f8:37:db:bf:ca:
a2:81:94:17:0f:23:49:ed:78:2d:62:85:07:54:38:
43:03:8b:c2:6a:6a:4e:40:30:84:9b:0d:a4:55:09:
19:57:5b:6b:af:db:3d:88:0c:6b:7b:f0:b6:ee:d8:
25:32:62:6e:8d:ba:64:8c:0c:c4:fe:5a:76:02:56:
35:29:53:6a:74:5e:d8:c5:48:92:9f:7d:16:43:30:
4c:09:49:96:61:14:ec:ec:ce:98:50:4d:30:77:dd:
78:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F3:3A:C0:C2:C2:0C:1B:DA:F5:02:D2:90:1F:87:C3:31:EE:FB:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E41BDC90A45211EFA073CF54762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.164.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:0e:ff:c8:97:fb:7b:49:8d:36:dd:d4:20:2a:e3:42:51:8d:
21:6a:d3:bf:eb:c3:8f:82:a5:36:fa:c6:86:a4:9b:57:dd:c6:
04:38:01:38:2b:42:58:67:3b:21:ff:f6:33:c7:9f:1d:99:c1:
78:02:54:72:74:db:50:d1:2c:79:58:13:3f:9e:d4:68:6e:6e:
21:ee:46:11:16:d8:d0:c6:05:56:77:c3:47:9e:e0:c7:f4:25:
5d:d1:13:ff:af:c4:62:38:a6:fa:61:fe:94:6d:a1:9a:12:cb:
b8:cf:cd:74:03:d1:94:e3:50:40:d7:4f:cc:36:ff:e1:7f:fe:
b4:01:c6:05:79:30:2a:eb:8d:31:c6:84:36:9e:65:58:a1:4c:
02:52:6a:bc:29:b9:36:54:77:60:02:c6:fa:65:35:3a:99:9e:
bd:55:fc:2c:32:bb:90:27:1d:d3:3f:f7:e4:a6:d8:cc:4d:23:
05:50:52:8f:0e:c1:d3:15:37:4d:c3:67:fb:cf:cd:f9:5b:53:
08:72:59:c7:2b:6d:bf:9e:a7:a4:a9:41:1e:2d:4e:37:3c:38:
24:1b:73:d3:10:1b:fd:f1:9a:b7:4a:d8:14:27:2d:dc:49:6d:
e7:2d:f5:03:58:11:3f:b2:0d:90:38:90:8d:eb:4b:7d:1a:72:
a4:30:5e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:51 2024 by rpki-client on console-fra.rpki-client.org