Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59A87054F47C11EE908D40A1775412E6.roa
File: 59A87054F47C11EE908D40A1775412E6.roa (raw, json)
Hash identifier: x6WL8PjRsyxj0ZlL2eAX5qZf1KZ1lXVpBzg7N3fGQ3E=
Subject key identifier: 4B:1B:54:E9:CE:C3:88:26:A8:B0:19:3A:4F:2F:F0:62:78:77:0C:28
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 819B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59A87054F47C11EE908D40A1775412E6.roa
Signing time: Sun 07 Apr 2024 01:15:41 +0000
ROA not before: Sun 07 Apr 2024 01:15:38 +0000
ROA not after: Thu 09 May 2024 01:15:38 +0000
asID: 23470
IP address blocks: 45.199.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33179 (0x819b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 7 01:15:38 2024 GMT
Not After : May 9 01:15:38 2024 GMT
Subject: CN=6611f3bd-2ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dc:f6:ab:86:f7:1d:e7:0c:96:77:88:1a:57:
9b:96:d1:c1:3a:c6:da:09:68:3b:0c:ca:02:02:62:
e9:21:b5:8b:2d:4d:96:49:0a:55:8d:c4:26:9b:71:
de:7d:a7:40:e2:93:2a:5a:d2:0e:b7:e3:ee:c1:55:
6c:ac:82:0d:e4:e4:ca:92:14:ab:6e:ef:a5:4a:37:
46:63:1c:f6:ab:ae:37:c9:7b:b6:3b:de:b8:00:01:
84:83:c2:d1:40:87:97:33:43:2d:8e:1b:bf:6c:32:
25:00:a5:70:8d:75:d5:4a:01:90:65:99:4c:4a:04:
8f:d1:e5:c4:45:c4:47:41:2c:cc:07:b5:9b:58:d0:
79:d0:21:b0:30:9b:a7:c5:64:3b:d6:cb:72:41:d8:
91:4b:cc:dc:14:79:25:60:f8:2d:66:4c:6c:87:d1:
31:99:c8:d2:64:1a:1c:42:6b:74:84:e5:5c:89:4b:
3d:1a:1c:3f:5b:a0:79:c0:74:fb:f3:72:5b:4a:20:
fb:8c:3c:df:e9:ad:cd:fe:9b:1e:b8:ac:7c:81:42:
1c:98:47:92:ad:6c:42:ba:4d:d4:e8:69:e4:5e:2e:
c0:0d:91:c9:1f:71:f3:4f:80:a0:a2:5f:35:79:36:
3b:01:94:61:99:31:67:20:05:54:8f:68:00:92:07:
6d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1B:54:E9:CE:C3:88:26:A8:B0:19:3A:4F:2F:F0:62:78:77:0C:28
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59A87054F47C11EE908D40A1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.189.0/24
Signature Algorithm: sha256WithRSAEncryption
56:11:f5:d0:35:5b:4e:55:f0:2e:bd:e2:71:c5:de:5c:d5:79:
36:5b:44:8c:f9:62:0f:b4:e4:25:a2:11:89:54:28:37:97:2c:
19:4f:92:58:c6:81:88:d5:5f:ab:89:d9:a7:0a:f6:9f:80:c0:
87:f6:3c:5a:10:04:95:4f:a7:f9:a3:f4:2e:15:58:ff:a2:28:
76:53:e7:70:03:25:8a:3f:2b:59:cb:b7:77:86:70:8d:2a:5d:
08:a9:78:cd:71:2e:46:69:8c:69:78:57:64:0d:53:8f:87:18:
a0:0b:95:c7:32:10:82:50:71:7c:23:68:cc:b9:25:54:f4:14:
fc:79:1e:83:0e:d1:e3:02:45:ce:74:2f:69:23:51:a8:68:b6:
b8:db:e6:f7:f8:9a:26:68:25:73:83:8f:cb:82:45:3b:20:a5:
9e:1b:b4:39:46:ee:17:66:f2:bf:20:9b:df:8b:c8:97:0e:29:
93:92:fd:01:19:81:04:7c:7c:e7:fa:f1:05:b4:b6:e2:26:fd:
11:2c:65:39:58:dd:82:04:30:38:de:22:d1:d1:a2:49:83:e6:
df:6f:3d:0f:1a:03:42:70:7b:fa:09:fe:91:19:3d:c5:c7:c5:
3e:15:ad:80:b8:42:da:6c:ca:7f:c2:ae:0f:b2:95:42:71:23:
89:16:ca:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:18 2024 by rpki-client on console-fra.rpki-client.org