Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3DE9B6C16A11EE8B9C22C6775412E6.roa
File: 4C3DE9B6C16A11EE8B9C22C6775412E6.roa (raw, json)
Hash identifier: /qml3UBGh+di7IaZ0fPjIDbal3lAMjU8vjgVlwYyW4E=
Subject key identifier: EA:7C:7D:91:9C:A9:0E:4B:43:A1:DB:45:3B:D6:00:EC:21:27:15:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C6F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3DE9B6C16A11EE8B9C22C6775412E6.roa
Signing time: Fri 02 Feb 2024 01:27:58 +0000
ROA not before: Fri 02 Feb 2024 01:27:55 +0000
ROA not after: Thu 08 Aug 2024 01:27:55 +0000
asID: 133199
IP address blocks: 45.207.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:16:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27759 (0x6c6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:27:55 2024 GMT
Not After : Aug 8 01:27:55 2024 GMT
Subject: CN=65bc451e-0a02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:3d:75:06:0a:96:f2:80:48:11:44:18:a6:
f1:c4:d4:70:52:04:7a:55:df:bd:ba:f2:00:12:23:
ce:7a:e7:5f:3e:f7:11:6d:46:09:00:60:c2:72:e5:
38:75:d3:70:14:e3:ea:65:36:f2:28:20:bf:c1:2c:
24:f9:15:16:61:f7:9c:ba:d2:cc:f6:e9:fb:18:92:
9a:bf:04:ad:6d:e2:46:e7:10:fd:cb:be:6a:50:13:
d9:d1:17:54:a6:ac:d2:fd:3d:e9:e5:de:8b:e9:46:
63:ca:ff:c6:e9:96:ff:43:38:8a:30:88:d9:29:04:
54:5c:bb:37:13:24:86:f4:92:30:22:4c:18:97:08:
f4:42:01:a1:65:3b:33:f3:35:29:64:b9:e6:51:ca:
b4:a4:ce:18:19:04:ad:52:15:8c:e9:86:d8:7e:70:
1d:3b:82:c3:10:c0:7d:77:09:a5:b2:60:0b:25:67:
0c:7c:a4:65:8e:c7:46:9c:4b:79:ca:23:e2:8a:5c:
86:a1:00:68:12:cb:d7:9f:df:d2:c0:f4:73:10:5a:
b4:ff:ec:ab:1f:a8:01:26:7b:2d:cc:ce:11:dc:ef:
ae:2c:ad:b0:d3:7d:a0:be:ac:b5:5e:2a:b2:c1:6b:
50:31:04:a4:63:95:f1:03:4d:b1:fb:58:45:ff:37:
71:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7C:7D:91:9C:A9:0E:4B:43:A1:DB:45:3B:D6:00:EC:21:27:15:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3DE9B6C16A11EE8B9C22C6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.59.0/24
Signature Algorithm: sha256WithRSAEncryption
69:7d:6a:28:f7:25:f6:aa:aa:4e:26:ea:df:46:c1:b4:7f:03:
ca:21:82:e6:5f:80:4b:0b:99:db:19:0b:76:1a:84:d5:1e:3f:
22:02:7e:73:d4:34:57:d8:f3:9d:46:a4:e3:2d:64:1f:c5:67:
ab:73:c0:45:bf:3b:6b:8c:a8:5f:01:1a:6a:75:d6:ae:64:87:
36:5b:40:dc:34:ad:70:33:76:cd:9c:60:a5:a1:fc:1f:25:af:
cc:13:34:40:7d:b3:4f:7e:47:db:0e:92:30:82:17:96:3d:11:
7f:34:e7:11:e7:47:ea:e9:f2:07:14:77:67:91:cf:69:ec:c6:
78:fa:10:14:77:f0:d0:50:2c:4a:f4:e8:55:ff:e9:45:bb:95:
33:72:84:04:c0:5a:f9:4a:aa:15:97:51:f7:77:23:a8:87:a6:
70:30:0c:45:9a:89:db:f6:a6:21:1e:61:bf:99:9f:cb:ad:2e:
97:3d:85:08:d8:78:d8:63:e2:bc:12:37:d5:cf:19:27:76:13:
b0:64:06:15:c4:5b:cb:4a:27:7f:5a:86:76:ae:ae:f1:0b:9c:
d8:20:29:df:02:3e:81:e3:78:68:ae:58:9c:7c:24:39:58:e1:
4c:0a:4d:5b:87:b8:1a:ad:b5:94:5a:62:61:da:77:61:b7:52:
55:53:12:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 04:36:12 2024 by rpki-client on console-fra.rpki-client.org