Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/025648328DD211EE9A1E11704AD9E6FC.roa
File: 025648328DD211EE9A1E11704AD9E6FC.roa (raw, json)
Hash identifier: 35qDbMWStopQ1WTcewYzrtiuUKAQTCTNpVClZn0l5Q8=
Subject key identifier: 74:64:A7:4D:64:34:38:50:19:E3:99:26:E5:1B:70:E9:1F:B8:36:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C69
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/025648328DD211EE9A1E11704AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:39:22 +0000
ROA not before: Sat 03 Feb 2024 09:39:18 +0000
ROA not after: Thu 08 Aug 2024 09:39:18 +0000
asID: 133861
IP address blocks: 45.207.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19561 (0x4c69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:39:18 2024 GMT
Not After : Aug 8 09:39:18 2024 GMT
Subject: CN=6565b54a-4a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b5:72:78:24:98:b7:8c:07:0a:5b:a2:a2:28:
d1:ce:59:d7:ef:63:91:15:60:15:62:6e:fa:81:82:
d6:f4:e1:58:52:e1:17:27:00:0e:78:fb:35:53:c4:
d6:1c:34:9d:59:50:99:0b:62:71:fa:a4:41:53:0b:
b9:3a:bc:5c:ae:8a:33:86:33:1a:35:15:b7:39:2e:
32:0d:63:4d:60:9a:af:60:b8:c3:85:b5:5d:91:7f:
a5:ce:ed:a8:4e:e0:86:4f:c1:8e:be:1d:a5:9f:b4:
01:f4:35:26:0b:b4:7e:3a:a6:15:1f:2d:e7:4b:c4:
56:15:ba:52:db:6f:93:f8:b9:5d:e9:98:bf:53:96:
f4:58:f1:86:c7:8a:3b:ac:7e:01:01:1c:36:b5:db:
8f:84:80:2f:31:69:88:db:2c:e5:3f:fd:70:f5:05:
06:4e:d8:a1:52:3e:e5:0a:27:11:d8:2f:17:7a:f9:
10:72:da:32:ae:f8:62:da:c4:29:d4:dc:c2:80:49:
0c:d4:49:9a:2b:77:5b:9e:66:27:93:0f:f5:b2:49:
f9:e9:75:ad:a0:27:66:7f:70:08:4f:7d:d6:82:6f:
80:d2:0a:bc:6b:b8:05:53:02:b8:74:f1:a0:d0:f5:
8b:47:f9:87:77:15:66:da:db:38:d5:be:e2:6a:6d:
15:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:64:A7:4D:64:34:38:50:19:E3:99:26:E5:1B:70:E9:1F:B8:36:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/025648328DD211EE9A1E11704AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.51.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b6:48:ed:01:bb:6e:23:8e:f0:41:8b:c8:49:cf:ee:3d:3d:
fb:50:9e:87:f5:2f:60:20:ed:c8:3f:8b:1d:96:0a:2f:74:13:
ff:81:30:b8:69:28:ec:f5:da:43:96:82:f3:39:51:33:aa:c4:
fc:61:93:c4:2e:57:c8:16:56:9a:a5:84:24:33:5e:82:e0:99:
05:3d:d7:7d:f3:02:ba:d8:6f:cc:04:5d:6f:01:c3:5e:ae:93:
13:db:5d:91:4d:81:4a:f4:3d:74:fe:a0:70:ca:ab:2c:52:fc:
9d:b3:1f:a6:66:61:21:04:16:cd:ae:7f:64:4e:02:d1:d8:23:
45:eb:2b:df:cd:7d:a8:cc:be:64:a1:0b:48:25:3a:1c:ce:eb:
87:7f:17:f4:d7:56:9e:11:74:44:2c:ab:0e:ac:68:cf:a5:8a:
2b:70:31:eb:57:d8:3c:79:63:12:df:48:7b:c0:33:7c:4f:df:
f8:00:e2:ed:4b:d0:37:6c:fd:52:1b:71:b8:10:d3:0f:51:6b:
f4:c9:8f:d8:09:a2:da:ee:61:07:98:e1:f6:3b:3e:2f:03:ed:
4c:cf:43:01:df:a0:17:0b:74:88:62:b6:2c:b7:11:12:99:95:
a4:23:f7:f2:06:17:c3:66:fe:3e:e3:1e:1e:b8:bc:00:85:ef:
22:fc:79:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org