Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5FE51267E3D11EFBD9D80AE762E951A.roa
File: F5FE51267E3D11EFBD9D80AE762E951A.roa (raw, json)
Hash identifier: d45YHugfzdEdRABoZriCBHMEjpc8P3RBgXgvr/kEvCE=
Subject key identifier: 8C:3F:5A:B3:4E:E4:8A:1C:A5:4A:62:B1:8F:1A:3C:3E:37:49:DB:7B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BC7B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5FE51267E3D11EFBD9D80AE762E951A.roa
Signing time: Sun 29 Sep 2024 08:36:46 +0000
ROA not before: Sun 29 Sep 2024 08:36:42 +0000
ROA not after: Mon 30 Dec 2024 08:36:42 +0000
asID: 17561
IP address blocks: 45.194.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48251 (0xbc7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:36:42 2024 GMT
Not After : Dec 30 08:36:42 2024 GMT
Subject: CN=66f9119e-5ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1e:b3:b1:95:8c:dc:7a:22:c3:88:64:38:a4:
66:90:bf:3b:14:40:07:b9:a3:5a:85:ab:49:a3:6f:
a6:56:92:15:5b:56:46:df:74:ef:cb:9d:17:df:12:
07:06:67:aa:4b:12:f3:32:35:99:61:ee:2b:13:9d:
82:8c:9e:68:10:a2:c3:17:80:39:8d:11:dc:a2:02:
ba:a8:c7:cb:2a:6d:61:91:47:64:a2:d0:a4:47:50:
3a:e9:94:4e:dd:ea:e2:2f:a1:00:8d:4e:dc:e0:10:
6e:c2:c7:9c:35:9c:43:1a:40:c2:6e:d8:d4:ad:2f:
35:98:a3:d9:c2:37:c6:af:0a:f4:07:ae:07:b2:3f:
a2:9d:a8:32:21:3c:51:d0:cb:5e:9a:77:d6:15:ed:
9b:a8:7d:06:ad:26:5d:a6:88:d8:ff:e9:c0:ff:df:
d3:50:6d:8a:34:af:c9:fb:93:7f:a6:2c:fb:3b:69:
72:22:3f:40:5e:a0:db:72:16:91:0c:da:d8:55:31:
4b:65:c1:fd:1d:31:8b:0e:60:c3:67:b3:46:1d:01:
96:17:c3:88:8e:e7:83:8e:e1:78:5a:0c:1b:0a:4d:
f2:00:ef:26:2f:a1:63:75:21:0a:d6:db:2e:bc:bb:
ed:f6:c5:10:1a:21:07:55:8e:eb:85:74:9d:20:b6:
f6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3F:5A:B3:4E:E4:8A:1C:A5:4A:62:B1:8F:1A:3C:3E:37:49:DB:7B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5FE51267E3D11EFBD9D80AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.124.0/22
Signature Algorithm: sha256WithRSAEncryption
44:ce:ce:81:f5:bb:07:c5:2a:89:09:80:49:68:f9:94:96:53:
8f:5b:a9:d3:86:cb:94:8b:dd:73:8c:17:00:aa:39:c4:d3:b6:
07:a6:99:ab:07:50:f7:83:72:6d:72:9e:2b:cc:2a:93:41:8c:
60:7b:c7:5c:64:d2:cd:12:5d:12:9c:42:05:2a:f4:12:c9:63:
86:2a:a7:08:8e:62:1b:c4:62:6b:2a:69:46:35:c0:29:d4:4b:
ea:2b:46:91:33:ad:da:24:86:b9:63:62:8a:7c:dd:ef:7a:76:
c1:b3:7e:79:80:ff:f5:31:1f:7a:01:e8:4c:90:40:fc:b0:a7:
c6:d4:13:5e:15:8d:89:a8:58:9a:5d:58:97:e4:65:77:88:7d:
61:fc:66:0b:65:e8:27:ad:1e:24:4c:bc:57:97:04:7c:75:86:
5c:9a:8c:12:0b:60:5e:4d:75:3a:03:08:aa:b7:cb:ed:47:69:
64:ef:8c:ac:5b:c0:46:8a:67:d3:ac:b9:8f:32:d0:51:00:a1:
28:df:4b:8b:a9:c1:a5:42:4b:ba:ad:4e:49:bc:b4:33:e4:f9:
97:34:70:2d:1e:11:31:58:80:33:f1:75:61:0a:ce:b7:1c:db:
7d:66:b3:93:1a:e0:45:6e:8a:46:0c:a4:fc:f7:a9:3b:cf:d6:
02:ed:8f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:57 2024 by rpki-client on console-ams.rpki-client.org