Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03704834EB2A11EE96A8CBBC775412E6.roa
File: 03704834EB2A11EE96A8CBBC775412E6.roa (raw, json)
Hash identifier: e1AQdLLJ1fE7Haw4798bE5XegZLeoFDQ5Crluk2MzRU=
Subject key identifier: 35:7A:15:20:7A:B4:E3:27:CC:74:CA:FE:1D:2F:0A:57:BE:6F:C1:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 803B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03704834EB2A11EE96A8CBBC775412E6.roa
Signing time: Tue 26 Mar 2024 04:33:37 +0000
ROA not before: Tue 26 Mar 2024 04:33:34 +0000
ROA not after: Fri 28 Jun 2024 04:33:34 +0000
asID: 28917
IP address blocks: 45.199.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32827 (0x803b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 26 04:33:34 2024 GMT
Not After : Jun 28 04:33:34 2024 GMT
Subject: CN=66025021-76c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5d:02:58:b6:27:0a:6c:80:1f:59:7c:87:00:
10:29:a8:90:f1:b2:01:9c:d9:66:d1:6c:9b:b2:2d:
43:ca:81:52:59:bd:ed:2d:b1:0f:e6:67:f9:ae:cb:
a3:ba:64:5a:04:bf:44:6e:ac:0b:03:b5:ec:89:60:
e4:41:5b:6a:90:6d:a9:2a:3d:c5:a6:80:53:45:ee:
b6:ed:ff:9c:06:92:b6:de:a4:6c:0a:9b:a3:0f:62:
c4:56:3f:a4:d3:02:c9:9a:93:4f:9b:41:41:45:b4:
2b:62:ce:37:84:58:9b:ce:01:a6:cc:7f:f1:5c:60:
85:88:20:14:e5:a2:7f:9e:a4:3f:62:3b:ec:9e:f9:
2e:87:6d:07:6e:c7:38:af:37:e9:da:0f:74:3a:dd:
a7:01:10:aa:64:de:47:14:20:89:ce:14:73:2a:57:
7b:d0:bb:56:4b:0e:22:da:f8:73:46:4a:4a:f7:51:
80:b4:39:00:dd:f7:ae:33:29:76:81:e5:41:92:34:
cb:44:01:95:3c:c7:f4:d2:bd:cc:b8:43:68:7d:f6:
c3:12:af:6f:0c:c0:7c:63:d9:7f:d4:6c:6f:8a:39:
d3:6e:fb:1a:1d:5b:6c:48:25:c9:2b:a3:8b:e4:b1:
71:aa:f2:12:7c:1a:fb:85:13:18:bc:90:ea:d2:7c:
f6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7A:15:20:7A:B4:E3:27:CC:74:CA:FE:1D:2F:0A:57:BE:6F:C1:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03704834EB2A11EE96A8CBBC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.190.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:db:84:0f:3e:dc:b4:dc:f1:e0:c6:e2:4f:c7:60:a3:49:11:
06:1a:3e:6e:f1:62:ab:7a:c1:36:2a:a0:7f:e7:af:5f:11:d3:
40:01:26:4c:9f:96:ad:8a:42:d5:c5:99:3d:a8:24:25:10:4c:
01:22:70:02:59:c0:6a:b6:ab:cf:9e:52:ca:58:57:37:9a:79:
df:cb:fe:66:68:8e:fc:8d:09:20:72:d7:ba:57:a1:30:10:a2:
33:1f:8a:2d:03:6a:19:f7:7e:aa:db:45:6d:27:08:98:4d:5e:
2e:80:6b:b9:0c:22:c8:86:2d:c3:5a:15:ef:1c:d4:91:52:1e:
aa:2a:b8:fb:fe:a2:50:c6:9d:70:eb:c5:24:5d:2c:91:32:ec:
7c:05:4d:dd:1f:7e:c3:d0:dc:06:a5:52:c4:cc:c0:59:2e:ea:
7a:31:6c:74:f6:54:29:da:b5:15:3c:8e:3d:89:1d:c7:d8:8d:
ac:99:74:0f:95:90:f7:02:7d:c4:b5:80:e8:b9:3a:97:f2:ca:
10:c9:d4:29:66:ad:30:3f:58:74:13:c1:74:7f:a8:da:16:6f:
d4:0c:28:41:40:f7:37:5d:54:7e:52:f7:e3:98:dd:00:52:d9:
fe:47:8c:ad:76:c0:36:07:45:e0:23:52:93:63:9f:5d:93:b9:
5a:ac:98:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org