Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0D0FA9823A011EFA3D6E7027DDC24C2.roa
File: A0D0FA9823A011EFA3D6E7027DDC24C2.roa (raw, json)
Hash identifier: Od616C+k9fGLAI9temClqWFCRP5u3l2MWxy+GQ2CDrM=
Subject key identifier: B9:FB:30:CC:D3:0E:3C:B0:D1:C7:9D:1A:68:37:16:73:76:77:40:87
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8F70
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0D0FA9823A011EFA3D6E7027DDC24C2.roa
Signing time: Thu 06 Jun 2024 01:03:47 +0000
ROA not before: Thu 06 Jun 2024 01:03:44 +0000
ROA not after: Sat 03 May 2025 01:03:44 +0000
asID: 4809
IP address blocks: 45.195.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36720 (0x8f70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 6 01:03:44 2024 GMT
Not After : May 3 01:03:44 2025 GMT
Subject: CN=66610af3-98ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0e:64:67:33:30:50:6f:2b:c8:f8:72:96:37:
5c:e1:74:cf:1b:31:bc:bb:49:88:b6:f5:31:d1:c9:
d7:5d:e7:8e:f6:89:0f:0a:79:38:eb:b9:70:c5:6b:
11:6e:54:ea:c3:ba:49:ea:d5:52:03:ea:73:10:62:
36:f9:a6:94:02:d9:35:a1:24:bc:e7:9b:3c:31:04:
ca:ea:f4:8d:0c:66:a1:2b:fc:d1:8e:63:02:65:2b:
71:a0:61:5c:d7:62:e6:75:1d:dd:e9:5d:51:d3:b0:
86:b7:73:c9:7c:53:74:25:3c:75:55:6c:c7:40:60:
79:4f:9c:a2:a5:40:89:08:0c:97:ba:a8:80:a9:f1:
88:c4:13:48:dc:58:2d:b3:4e:cb:49:43:cc:51:e4:
34:07:66:65:ff:74:ca:b8:7c:9c:15:29:1d:e5:c5:
26:7d:34:32:72:c5:96:75:21:a8:a3:29:7a:e8:3d:
17:3f:aa:0e:c1:e3:4e:3e:ff:6a:9a:96:0e:e1:b1:
75:db:8f:e0:5f:b8:d4:49:0a:41:8c:ec:a5:be:6d:
1b:79:f1:6d:ab:ac:7c:c7:78:d3:35:83:38:8b:19:
c7:f5:ea:86:f6:0b:58:20:94:f2:fb:b8:72:a8:02:
fb:03:69:83:47:03:31:e7:99:df:bf:0b:c6:c2:e1:
32:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:FB:30:CC:D3:0E:3C:B0:D1:C7:9D:1A:68:37:16:73:76:77:40:87
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0D0FA9823A011EFA3D6E7027DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.7.0/24
Signature Algorithm: sha256WithRSAEncryption
56:3b:dd:40:3c:8b:01:4f:5d:16:04:c9:ca:88:e4:35:d8:64:
c2:63:e2:a6:7d:ba:27:15:2c:d4:58:a3:02:13:e4:4f:c5:a1:
45:1a:b0:be:62:61:f7:53:6a:fe:2d:48:fb:75:00:a8:3c:92:
88:10:15:ff:b0:b0:5c:c9:c8:22:b2:d1:7b:be:6a:47:d1:67:
71:97:49:d8:3b:9b:9b:b5:53:ed:29:12:77:b1:be:7e:fd:a2:
5d:59:a3:0e:04:98:75:45:d5:c1:d8:56:b3:b2:82:90:41:0f:
b6:af:27:d3:b9:01:09:27:09:fa:cc:0f:4c:24:05:bc:a2:73:
8b:bf:10:3d:18:44:03:20:b7:07:26:ab:0d:1d:f5:d6:1c:90:
11:0c:61:db:e4:f7:21:18:4a:c2:ea:be:4a:05:08:2d:20:7e:
ec:1a:1d:09:c4:77:75:7d:b9:c9:01:ef:86:71:55:41:7d:f7:
8c:f0:34:11:40:ac:dc:ad:a9:b3:2e:71:44:01:14:63:2b:7d:
23:7d:ad:9f:d5:4a:8f:d2:b8:b5:65:f7:1f:6c:3f:9b:48:41:
4b:72:23:85:c3:25:c4:06:83:85:2f:26:9f:f1:62:a2:8e:3f:
b3:39:68:79:75:f9:c5:f7:45:9e:27:e4:81:9c:90:5b:62:76:
2c:0f:c4:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:45:25 2024 by rpki-client on console-fra.rpki-client.org