Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364AE44/2F20B0E2AF4411EB9DE0BD07F8AEA228/314004CEEC9011ECA26130E7F1222468.roa
File: 314004CEEC9011ECA26130E7F1222468.roa (raw, json)
Hash identifier: gdYjdKYMG6EpIi4Mz4K9Nb8lrjdhpFM6zxzXY42s4ys=
Subject key identifier: 75:7A:29:85:6B:8D:EE:49:3F:F5:97:5B:67:55:16:CA:B5:73:99:EA
Certificate issuer: /CN=F364AE44AR/serialNumber=8C834C891B22A7CC5DA61E8FE4A713F886AABFCD
Certificate serial: 01A0
Authority key identifier: 8C:83:4C:89:1B:22:A7:CC:5D:A6:1E:8F:E4:A7:13:F8:86:AA:BF:CD
Authority info access: rsync://rpki.afrinic.net/repository/arin/jINMiRsip8xdph6P5KcT-Iaqv80.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364AE44/2F20B0E2AF4411EB9DE0BD07F8AEA228/314004CEEC9011ECA26130E7F1222468.roa
Signing time: Wed 15 Jun 2022 09:47:39 +0000
ROA not before: Wed 15 Jun 2022 09:47:27 +0000
ROA not after: Mon 30 Jun 2025 09:47:27 +0000
asID: 36925
IP address blocks: 45.216.0.0/14 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364AE44/2F20B0E2AF4411EB9DE0BD07F8AEA228/jINMiRsip8xdph6P5KcT-Iaqv80.crl
rsync://rpki.afrinic.net/repository/member_repository/F364AE44/2F20B0E2AF4411EB9DE0BD07F8AEA228/jINMiRsip8xdph6P5KcT-Iaqv80.mft
rsync://rpki.afrinic.net/repository/arin/jINMiRsip8xdph6P5KcT-Iaqv80.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416 (0x1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364AE44AR/serialNumber=8C834C891B22A7CC5DA61E8FE4A713F886AABFCD
Validity
Not Before: Jun 15 09:47:27 2022 GMT
Not After : Jun 30 09:47:27 2025 GMT
Subject: CN=62a9aabb-bbe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:17:86:da:98:a1:41:54:a7:0f:54:d3:7f:ba:
e7:4d:81:d6:6e:db:2c:f4:ed:35:11:06:c7:2e:40:
f0:12:39:be:e6:fa:7d:f1:2c:d2:d2:79:3e:31:c1:
fa:7e:c3:8e:12:37:02:c0:e7:6c:71:cd:b9:3d:af:
06:99:41:30:dd:af:67:b8:7d:5f:b9:bc:b7:5c:ca:
95:62:60:78:44:92:e5:36:4f:84:f2:fa:96:af:9c:
19:69:1c:cf:ae:b0:e5:4f:95:fd:8d:0e:c3:6d:8a:
9c:8a:86:31:97:f3:99:e6:fd:bf:ae:9b:fc:53:f8:
ce:39:e4:6b:f5:6e:f7:5c:57:4c:89:e8:88:af:c3:
c0:32:a2:b6:5e:3c:f7:f0:68:35:11:2c:99:6b:e2:
75:53:92:c4:b9:43:a3:99:99:9e:b2:f4:96:dc:d7:
3f:56:cb:6b:76:95:4e:07:e1:1a:cd:1e:27:eb:1b:
03:14:b5:73:b9:21:9e:31:91:93:c9:8b:f4:cd:0a:
bf:f7:15:e5:68:c3:19:fe:a1:ee:b2:bd:75:7d:31:
50:51:fb:99:c5:53:d7:54:3f:ba:cf:54:c2:52:d4:
02:d8:fc:83:07:e2:9e:76:e8:b3:17:a5:f9:04:b0:
b2:8e:6c:4c:35:4a:a0:59:4e:68:aa:89:07:f7:02:
9b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7A:29:85:6B:8D:EE:49:3F:F5:97:5B:67:55:16:CA:B5:73:99:EA
X509v3 Authority Key Identifier:
keyid:8C:83:4C:89:1B:22:A7:CC:5D:A6:1E:8F:E4:A7:13:F8:86:AA:BF:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364AE44/2F20B0E2AF4411EB9DE0BD07F8AEA228/jINMiRsip8xdph6P5KcT-Iaqv80.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/jINMiRsip8xdph6P5KcT-Iaqv80.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364AE44/2F20B0E2AF4411EB9DE0BD07F8AEA228/314004CEEC9011ECA26130E7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.216.0.0/14
Signature Algorithm: sha256WithRSAEncryption
02:02:1e:57:68:f1:e1:d3:2e:ec:84:f2:2a:0f:e8:c2:5c:26:
38:95:ee:1f:8e:28:fe:54:6b:fe:11:3b:fd:dd:0d:17:cf:ac:
8d:96:96:c8:bd:c4:b4:91:85:96:57:5c:c0:0f:56:6b:58:79:
87:f5:d6:89:0c:15:fe:f6:0e:06:2a:ee:84:10:b8:94:8c:47:
12:cb:bc:a3:72:18:b9:56:2f:fd:f7:71:ad:b6:f2:15:b6:cd:
f2:cf:67:f4:19:23:49:2a:7e:78:19:05:d1:3c:a5:d2:f5:8c:
78:d5:b3:d7:8a:a6:fa:49:49:84:7f:4c:59:64:be:77:6e:7e:
1b:74:6e:f1:07:dc:1b:5f:8b:05:e5:78:f4:8c:84:cf:0c:c8:
b6:f6:24:ac:6f:f1:00:bb:60:ed:0f:f2:44:ce:96:46:d1:71:
0d:b7:ea:c3:0f:8d:0b:84:60:45:9b:35:fa:ce:23:5b:43:0a:
ba:e3:b2:00:b9:7d:05:f2:5e:00:9d:34:38:f3:cc:30:f8:5b:
e2:80:0c:38:70:e5:2d:82:4b:91:98:8b:59:9e:7f:f6:95:f0:
c0:a9:4b:c2:ba:0c:a0:23:68:c7:97:de:aa:01:22:65:84:af:
24:b3:13:bf:d3:f4:16:7a:da:65:f6:7f:da:e1:ae:c8:35:c9:
37:94:e2:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org