Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C65C6/11FF6652CF5B11EBB4B3CE16F8AEA228/945DC79A23C111ED8AF760CAF1222468.roa
File: 945DC79A23C111ED8AF760CAF1222468.roa (raw, json)
Hash identifier: oeRPpf6MWdOyBYB//e/bum3Rw2HHTIkr2se6ssnUJVc=
Subject key identifier: 42:C3:47:E7:C1:24:7B:45:58:4E:DE:1B:B7:8E:7E:C2:F2:91:0B:AD
Certificate issuer: /CN=F36C65C6AR/serialNumber=1FF33E25A32B4691F723F85010D36C1D19AD2613
Certificate serial: 01C1
Authority key identifier: 1F:F3:3E:25:A3:2B:46:91:F7:23:F8:50:10:D3:6C:1D:19:AD:26:13
Authority info access: rsync://rpki.afrinic.net/repository/arin/H_M-JaMrRpH3I_hQENNsHRmtJhM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/11FF6652CF5B11EBB4B3CE16F8AEA228/945DC79A23C111ED8AF760CAF1222468.roa
Signing time: Wed 24 Aug 2022 15:29:44 +0000
ROA not before: Wed 24 Aug 2022 15:29:41 +0000
ROA not after: Tue 31 Aug 2032 15:29:41 +0000
asID: 327901
IP address blocks: 45.220.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/11FF6652CF5B11EBB4B3CE16F8AEA228/H_M-JaMrRpH3I_hQENNsHRmtJhM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/11FF6652CF5B11EBB4B3CE16F8AEA228/H_M-JaMrRpH3I_hQENNsHRmtJhM.mft
rsync://rpki.afrinic.net/repository/arin/H_M-JaMrRpH3I_hQENNsHRmtJhM.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449 (0x1c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C65C6AR/serialNumber=1FF33E25A32B4691F723F85010D36C1D19AD2613
Validity
Not Before: Aug 24 15:29:41 2022 GMT
Not After : Aug 31 15:29:41 2032 GMT
Subject: CN=630643e8-e430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4f:80:d8:fd:cc:9c:39:27:18:0c:d1:33:ea:
6f:d8:df:c6:62:72:b8:94:49:0d:11:16:fa:9c:c6:
6a:3c:8a:9d:1c:d7:fe:ce:05:00:7d:97:c7:6c:ca:
a0:50:73:c5:e5:b4:62:fd:31:04:f6:34:3e:97:51:
12:c5:9d:78:31:91:7f:71:b1:4f:90:53:58:3a:44:
9d:f7:13:00:37:06:1e:8c:b8:1e:60:84:06:43:85:
06:f3:74:61:e8:5e:43:1c:bd:67:11:ee:80:33:7a:
88:1d:df:95:76:bb:53:50:c0:a0:cc:36:5f:b9:6a:
53:ec:8e:e8:f8:56:b8:b9:f0:80:be:43:56:08:64:
bd:9b:4d:96:c0:20:c8:7e:35:21:39:bd:f4:7b:ca:
49:d9:19:76:e6:92:fd:80:61:05:40:8c:d5:0c:bb:
51:92:e0:f2:30:a5:26:4e:0e:0f:6e:8a:52:cc:d9:
f6:be:ad:6d:01:5b:59:d5:16:33:9f:50:e3:f0:ae:
bf:a3:06:ee:9f:f5:41:e5:df:07:46:57:56:81:99:
32:80:ff:7c:91:49:cc:41:da:ff:49:9c:24:cb:6e:
b5:ff:36:24:9d:46:68:c7:f4:d8:15:ee:a2:09:9d:
26:9e:a9:f8:5a:92:6d:cb:05:2c:e3:d0:c6:59:0b:
b9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C3:47:E7:C1:24:7B:45:58:4E:DE:1B:B7:8E:7E:C2:F2:91:0B:AD
X509v3 Authority Key Identifier:
keyid:1F:F3:3E:25:A3:2B:46:91:F7:23:F8:50:10:D3:6C:1D:19:AD:26:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/11FF6652CF5B11EBB4B3CE16F8AEA228/H_M-JaMrRpH3I_hQENNsHRmtJhM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/H_M-JaMrRpH3I_hQENNsHRmtJhM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/11FF6652CF5B11EBB4B3CE16F8AEA228/945DC79A23C111ED8AF760CAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.220.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5b:a0:3b:25:46:49:fb:d8:36:f8:03:ef:68:2b:ed:2b:4d:0e:
b3:b3:fe:27:ec:73:1a:ef:17:19:64:06:23:db:f1:03:12:57:
d9:67:52:2a:5b:b9:fc:ac:60:da:9f:69:41:78:f0:da:83:80:
e2:64:58:2d:0b:c4:c0:86:76:e9:eb:9e:e6:7d:a9:90:89:28:
16:b0:a5:79:88:dc:38:51:0f:5a:c5:b7:bf:f2:bc:92:29:be:
22:75:1c:e1:cb:5f:7a:7d:a7:7d:dd:d4:83:10:05:fe:6b:98:
7e:fa:65:a1:74:e6:28:0c:03:97:23:cf:b3:4d:08:d0:6e:74:
af:38:e9:ae:4e:3f:6f:d4:63:39:1c:97:7b:68:89:3f:09:3a:
7f:82:6e:37:ad:db:bd:7c:64:a0:9e:bc:d1:61:45:9c:99:ae:
17:15:7a:a1:65:79:5b:3f:6b:67:b2:02:54:e9:d0:18:ec:ac:
81:8b:f3:9b:4c:67:3b:af:a9:9f:bb:d8:8f:eb:b4:62:44:e0:
72:ec:03:28:ad:da:4f:50:ea:75:96:f2:e3:aa:de:9f:c7:15:
89:27:4f:69:12:16:6a:65:03:49:ca:7e:8b:40:6a:88:03:9b:
51:5d:e8:59:7f:1c:ca:20:53:82:41:e1:13:f6:a3:fa:63:7a:
3d:2d:77:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 13:36:14 2024 by rpki-client on console-ams.rpki-client.org