Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4051F9FC0CE811EF97800614017001B1.roa
File: 4051F9FC0CE811EF97800614017001B1.roa (raw, json)
Hash identifier: Uzk1ZdCnjf7IYac2D2ZAyLaGlr8ptDExDl5ch+Lyk9Y=
Subject key identifier: 9E:21:64:88:EC:BA:17:54:31:5E:C8:6C:4A:B9:4E:14:20:4F:A3:5B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8870
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4051F9FC0CE811EF97800614017001B1.roa
Signing time: Wed 08 May 2024 03:08:32 +0000
ROA not before: Wed 08 May 2024 03:08:29 +0000
ROA not after: Thu 29 May 2025 03:08:29 +0000
asID: 140224
IP address blocks: 45.194.16.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34928 (0x8870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 03:08:29 2024 GMT
Not After : May 29 03:08:29 2025 GMT
Subject: CN=663aecb0-5505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:81:1e:f3:4e:3c:03:63:11:db:4a:d6:12:57:
87:a0:0e:ce:44:a2:48:62:ce:da:f1:29:50:79:f4:
2e:43:75:73:0e:21:f3:71:b0:9d:49:4a:f5:50:a1:
06:52:f3:bc:9f:b6:8d:79:f8:58:65:33:4a:a2:ed:
86:e2:08:d6:d1:0d:65:59:69:55:f7:f7:d3:9d:c6:
7d:74:3e:ec:70:cf:87:44:06:1d:cc:99:52:0d:eb:
c8:67:86:8b:1b:f1:56:47:69:8e:5f:82:ec:88:0e:
8e:b0:61:17:ae:b0:52:7f:1d:99:00:bd:c7:57:7d:
83:1e:66:ee:d0:6c:a1:8b:02:dd:a3:47:0f:92:bf:
c4:70:d6:cf:69:04:c2:9b:78:68:88:1c:fb:ae:ec:
88:80:da:02:45:1f:c7:81:d2:01:cf:3d:78:3a:14:
4e:a7:fc:ab:d4:96:ad:a3:04:3d:49:34:50:12:cd:
aa:5c:46:81:80:f9:7e:44:04:7b:4d:02:f6:60:5c:
f5:f2:22:14:9e:83:43:1c:66:7d:12:f7:cf:ed:df:
7e:bb:2d:25:47:e2:9f:6b:0d:e5:1e:41:2c:a7:eb:
3e:5f:fb:80:27:68:9d:89:51:a7:35:38:12:41:92:
41:e7:a9:c4:34:67:3c:22:5a:7e:e6:93:4b:ea:2c:
7b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:21:64:88:EC:BA:17:54:31:5E:C8:6C:4A:B9:4E:14:20:4F:A3:5B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4051F9FC0CE811EF97800614017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.16.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:bf:11:1e:39:7f:a4:3a:05:dd:2c:38:4f:fc:bd:fc:c5:12:
dc:80:31:f2:1d:3c:da:ac:4b:5e:20:f5:a4:82:3c:34:87:53:
f0:7e:6f:ad:20:d3:66:2a:79:be:cf:08:7e:54:50:e4:68:2c:
5a:a0:8f:0a:39:50:6e:43:d1:c5:6c:e9:28:5b:f8:9c:01:d4:
45:df:0e:1d:a2:bd:51:8d:1b:0b:45:05:74:03:f6:10:b5:39:
e5:1c:81:b7:2a:8f:f5:7f:a6:de:1b:35:43:3c:0e:c6:71:a7:
23:21:0b:55:87:0e:7b:32:da:96:64:b9:43:cf:b7:96:d6:82:
92:5a:62:b7:62:a3:3b:a1:6e:25:8c:21:e5:5a:34:48:81:af:
dd:f7:89:72:52:d1:19:92:7c:bb:96:31:24:a2:7e:3d:38:0c:
4e:0c:1b:0f:ce:7f:31:d9:fe:16:ab:f4:6e:42:58:a0:e1:88:
f5:bb:a7:42:91:7d:3f:8e:da:1d:e1:f8:b8:e1:61:72:7e:81:
56:46:b5:a8:b4:ef:38:58:69:e2:c3:e3:f7:43:f8:7f:77:c8:
da:bc:9d:70:a8:64:50:37:06:0b:d8:d7:fe:f7:59:3d:a1:16:
fc:db:48:48:2e:7d:16:83:3b:be:7f:64:54:f4:e7:78:aa:db:
35:75:ba:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:10:37 2024 by rpki-client on console-ams.rpki-client.org