Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/CF8B10CE1DB711EFA609B0217DDC24C2.roa
File: CF8B10CE1DB711EFA609B0217DDC24C2.roa (raw, json)
Hash identifier: cUUrYIHHPxFgWnYQbOftBzdS94Gj26Vr5vz5884oWrA=
Subject key identifier: 62:80:13:62:9B:D3:08:14:47:2D:21:3D:1C:52:98:93:D0:07:A4:C3
Certificate issuer: /CN=F3654A44AR/serialNumber=16C74E7395DC21DD844A22A0112816121A75F492
Certificate serial: 0201
Authority key identifier: 16:C7:4E:73:95:DC:21:DD:84:4A:22:A0:11:28:16:12:1A:75:F4:92
Authority info access: rsync://rpki.afrinic.net/repository/arin/FsdOc5XcId2ESiKgESgWEhp19JI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/CF8B10CE1DB711EFA609B0217DDC24C2.roa
Signing time: Wed 29 May 2024 12:34:37 +0000
ROA not before: Wed 29 May 2024 12:34:34 +0000
ROA not after: Mon 31 May 2027 12:34:34 +0000
asID: 198394
IP address blocks: 45.222.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/FsdOc5XcId2ESiKgESgWEhp19JI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/FsdOc5XcId2ESiKgESgWEhp19JI.mft
rsync://rpki.afrinic.net/repository/arin/FsdOc5XcId2ESiKgESgWEhp19JI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jul 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 513 (0x201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654A44AR/serialNumber=16C74E7395DC21DD844A22A0112816121A75F492
Validity
Not Before: May 29 12:34:34 2024 GMT
Not After : May 31 12:34:34 2027 GMT
Subject: CN=665720dd-d295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a5:04:6f:c3:fc:62:a0:42:ee:b1:fa:4a:3a:
e1:e6:35:93:ad:5d:0c:8d:96:3f:d2:8c:9a:e9:95:
18:f8:e0:3b:25:0d:aa:aa:44:95:0a:13:de:00:6f:
1a:3a:98:16:ed:5f:24:1a:c0:09:ef:30:0b:ad:a9:
cd:74:03:a6:89:6a:98:dd:71:8a:92:05:aa:d0:64:
c0:9f:e8:ab:50:2b:f4:46:2e:c4:7b:90:41:bf:30:
c9:bc:7d:da:c0:d3:dc:f4:a1:65:c8:44:09:ff:8a:
26:9c:1b:81:87:3b:ca:60:ab:b7:fa:4a:c9:a5:eb:
cd:a1:54:3e:36:8a:bc:e4:9d:a0:56:b3:8a:1c:5c:
40:39:57:4a:2d:66:c4:2a:39:04:8d:09:ce:18:20:
6f:64:00:ff:7c:8b:e3:5e:1b:b4:bd:b7:02:3f:56:
d0:cb:cf:44:1d:8a:41:08:c7:7d:05:d8:e4:06:a8:
93:38:fc:d9:d5:95:88:79:82:56:cf:46:cb:49:62:
ca:1a:37:71:76:e0:46:bc:d1:60:16:98:3d:33:af:
20:f5:25:89:4f:6d:d6:ac:a5:71:69:b8:8c:82:64:
75:2b:33:89:22:31:25:1d:d3:c6:15:9c:b5:07:70:
14:03:ba:7b:13:ff:ac:d0:06:9f:45:78:2c:b7:e0:
b2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:80:13:62:9B:D3:08:14:47:2D:21:3D:1C:52:98:93:D0:07:A4:C3
X509v3 Authority Key Identifier:
keyid:16:C7:4E:73:95:DC:21:DD:84:4A:22:A0:11:28:16:12:1A:75:F4:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/FsdOc5XcId2ESiKgESgWEhp19JI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/FsdOc5XcId2ESiKgESgWEhp19JI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/CF8B10CE1DB711EFA609B0217DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.222.102.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:79:3e:a4:63:94:7b:7c:b7:42:71:0b:27:d9:ac:e0:0a:b9:
f0:2f:4e:fc:33:b7:2c:09:2c:4b:fb:8b:af:52:fc:d7:93:cc:
4b:ee:45:dd:74:e9:be:14:6e:6d:4e:03:92:5d:b2:7f:93:c9:
85:84:39:47:fa:06:3a:4b:b2:06:c4:43:0b:d4:ea:9f:7b:9c:
9f:75:23:99:67:5d:77:07:da:4d:5b:71:09:50:96:7b:f3:ac:
c7:d2:f1:fc:a1:2a:d8:cf:9f:89:70:c0:4b:65:a1:c7:27:58:
78:df:b8:7e:75:59:b9:40:af:0e:ab:f8:7a:2a:62:52:83:dd:
13:18:33:66:0a:d6:23:43:ee:e5:8e:c8:b8:97:e4:2a:b8:ea:
9d:99:ba:3e:2f:6a:c7:47:29:dc:5f:79:42:df:0a:6a:01:22:
a1:99:63:8f:32:f6:39:17:73:8a:7d:89:02:67:4a:ce:18:13:
0d:6e:70:cf:80:2a:1c:49:db:03:09:d2:5e:8a:5d:63:c0:6a:
f6:71:1e:0b:73:16:86:c3:52:d0:32:2e:85:8b:93:ff:cd:6f:
47:06:69:6e:53:02:64:22:3a:56:8c:5a:bb:30:ca:cf:a5:0a:
b2:14:0b:53:64:d3:45:d2:cf:5a:a2:d7:3a:7a:4e:0b:db:e4:
91:84:82:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 6 03:54:53 2024 by rpki-client on console-fra.rpki-client.org