Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369F058/9CF6AE44553911E9A315872FF8AEA228/48619D24149E11EF81414965017001B1.roa
File: 48619D24149E11EF81414965017001B1.roa (raw, json)
Hash identifier: 3GarqsJ4VJ1/CLoT1EAlZXSx5zt3151P9uVE5+wGgZ8=
Subject key identifier: 4E:AD:42:B4:1A:60:25:CE:EB:8B:CC:C4:E6:4D:D5:CA:E4:71:F6:E4
Certificate issuer: /CN=F369F058AR/serialNumber=AA39022282BE3ECEFBDC58E59F9963938264BB42
Certificate serial: 0784
Authority key identifier: AA:39:02:22:82:BE:3E:CE:FB:DC:58:E5:9F:99:63:93:82:64:BB:42
Authority info access: rsync://rpki.afrinic.net/repository/arin/qjkCIoK-Ps773Fjln5ljk4Jku0I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369F058/9CF6AE44553911E9A315872FF8AEA228/48619D24149E11EF81414965017001B1.roa
Signing time: Fri 17 May 2024 22:39:12 +0000
ROA not before: Sat 18 May 2024 22:39:08 +0000
ROA not after: Tue 31 Dec 2030 22:39:08 +0000
asID: 328114
IP address blocks: 45.221.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369F058/9CF6AE44553911E9A315872FF8AEA228/qjkCIoK-Ps773Fjln5ljk4Jku0I.crl
rsync://rpki.afrinic.net/repository/member_repository/F369F058/9CF6AE44553911E9A315872FF8AEA228/qjkCIoK-Ps773Fjln5ljk4Jku0I.mft
rsync://rpki.afrinic.net/repository/arin/qjkCIoK-Ps773Fjln5ljk4Jku0I.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1924 (0x784)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369F058AR/serialNumber=AA39022282BE3ECEFBDC58E59F9963938264BB42
Validity
Not Before: May 18 22:39:08 2024 GMT
Not After : Dec 31 22:39:08 2030 GMT
Subject: CN=6647dc90-24a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4b:ca:3c:90:5e:46:e8:5c:d4:9a:2b:30:04:
25:09:bf:6f:04:bb:6d:b3:23:58:28:14:de:2b:e9:
1f:99:cc:53:0e:bb:e0:ba:ad:7a:3c:e9:85:5c:4d:
86:f2:18:4b:af:be:c9:ca:a1:19:aa:76:aa:77:b7:
83:40:7d:e2:19:99:95:60:28:a6:dc:c0:cf:03:e9:
80:42:f5:72:be:69:a5:96:51:52:53:73:30:84:79:
4c:53:20:66:15:53:fb:bf:26:bf:a6:4d:08:7e:57:
2e:a4:d7:72:e6:dd:09:e2:05:86:d1:25:da:3e:c8:
88:6e:8f:eb:44:70:de:18:af:91:2b:dd:12:2f:97:
e4:62:19:30:c9:93:55:63:81:59:64:40:dc:c0:c0:
86:8d:36:c9:25:53:a8:b9:25:20:de:29:6f:eb:4c:
14:5b:b7:8e:fc:47:f5:96:8e:fc:43:90:58:67:46:
52:f8:19:88:91:ea:e9:ec:c8:c2:d0:ad:b0:24:92:
ba:0f:79:7c:0c:28:5d:49:74:0b:da:9d:c1:ff:29:
b4:7b:5e:f5:f7:1b:b4:6d:67:04:39:b0:57:7d:bb:
cb:79:e9:d4:2e:18:df:8c:4d:ca:6a:7d:d8:a8:7e:
4a:c7:e6:af:c5:69:ef:ca:d9:3c:ce:e1:9d:90:8d:
1b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AD:42:B4:1A:60:25:CE:EB:8B:CC:C4:E6:4D:D5:CA:E4:71:F6:E4
X509v3 Authority Key Identifier:
keyid:AA:39:02:22:82:BE:3E:CE:FB:DC:58:E5:9F:99:63:93:82:64:BB:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369F058/9CF6AE44553911E9A315872FF8AEA228/qjkCIoK-Ps773Fjln5ljk4Jku0I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/qjkCIoK-Ps773Fjln5ljk4Jku0I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F058/9CF6AE44553911E9A315872FF8AEA228/48619D24149E11EF81414965017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.26.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d8:cf:31:bb:48:66:f0:c7:31:f9:41:af:78:7e:22:4b:8c:
f2:29:2b:d7:c2:c9:ca:7a:0c:5e:2a:1b:4d:b7:c0:b2:33:2a:
f9:86:74:86:ff:77:4e:0d:e1:d8:b2:0d:d6:d9:03:f9:cf:27:
87:fc:3b:bf:65:e7:1a:a3:d9:8d:85:14:d8:f3:2c:b2:70:6b:
a4:c4:9d:83:90:b3:8d:11:af:8e:48:67:80:b6:8c:19:26:00:
d6:40:cb:dd:4d:0f:bf:c8:e8:06:bf:76:6d:54:2d:5a:04:74:
68:0e:01:62:3b:9e:43:30:5b:e7:d1:b9:59:ac:e3:07:02:31:
bc:01:21:1e:e7:c8:50:cb:d0:11:25:53:e8:36:66:d3:26:2f:
20:e0:9d:05:19:e6:f2:45:f7:8c:39:29:18:a7:67:25:de:59:
35:e2:0d:72:b6:75:31:27:b5:41:c0:da:04:84:18:68:5e:5f:
35:95:a2:5b:e2:de:78:ec:db:e4:7d:9b:85:72:d4:ea:92:97:
ae:70:ee:d3:bf:65:b1:f6:df:8d:56:93:d8:48:bc:57:1a:b3:
42:cd:e6:88:14:db:e3:19:fa:01:84:5c:64:d5:44:ce:f5:2c:
da:53:f5:f2:49:32:80:b0:53:de:02:45:23:06:12:75:60:29:
56:c8:b1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:18 2024 by rpki-client on console-ams.rpki-client.org