Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/087076A80A5F11EEAB9243754AD9E6FC.roa
File: 087076A80A5F11EEAB9243754AD9E6FC.roa (raw, json)
Hash identifier: Je7CZAQo/11YAEMJGYxF2rpFW4gag83732e8DbXHl+0=
Subject key identifier: 58:39:98:C6:4E:60:84:26:C4:22:B1:AF:E3:85:FA:7E:DA:AD:DC:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2C2D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/087076A80A5F11EEAB9243754AD9E6FC.roa
Signing time: Wed 14 Jun 2023 02:56:17 +0000
ROA not before: Wed 14 Jun 2023 02:56:14 +0000
ROA not after: Sat 25 May 2024 02:56:14 +0000
asID: 55020
IP address blocks: 45.204.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11309 (0x2c2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 14 02:56:14 2023 GMT
Not After : May 25 02:56:14 2024 GMT
Subject: CN=64892c51-980f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ac:ab:09:08:2d:42:d4:ab:68:8c:a0:3d:b1:
e0:5e:bd:f4:ff:ba:8d:79:a9:1f:b7:f3:f8:cf:4e:
88:44:61:8d:27:eb:ea:fd:49:e6:de:c3:e5:77:8d:
19:c2:6c:72:26:ca:f4:9f:ca:75:1a:23:5e:db:1c:
31:8e:46:f3:77:75:0e:d9:b8:c4:a4:ff:50:48:09:
e8:0d:fb:2e:4a:07:df:b0:90:8b:17:f4:52:eb:42:
50:7f:77:d9:9a:db:ca:9a:5d:2d:bb:0e:9b:ed:6e:
6e:34:e1:0f:ae:3e:9b:d4:7d:39:13:86:f5:60:a0:
be:ec:c9:75:89:ff:92:0f:07:0a:a7:53:99:41:29:
aa:cf:01:1c:cb:d7:95:ed:5c:50:4f:54:d1:8f:b0:
00:2c:94:34:1d:a8:c9:ff:6f:56:39:16:3d:90:29:
0a:1f:7e:9d:bc:32:78:e2:57:4d:1a:2c:69:df:86:
f1:d2:51:13:b0:66:28:f8:39:fd:5f:60:ab:56:63:
07:32:80:c1:2b:d1:2d:0c:09:63:fb:9b:9b:20:65:
a8:6b:7d:1f:16:5a:32:88:19:cb:03:ad:c2:71:98:
a5:1a:43:6e:44:45:52:7d:c1:52:63:2a:ad:b4:16:
f8:3f:8d:c0:02:9a:0b:ed:2e:17:cd:90:74:42:f0:
6f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:39:98:C6:4E:60:84:26:C4:22:B1:AF:E3:85:FA:7E:DA:AD:DC:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/087076A80A5F11EEAB9243754AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.6.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:99:06:57:27:83:ea:64:6f:c9:7f:68:3e:4f:63:84:2b:81:
2c:00:49:15:0c:d3:b2:2f:2f:b0:1d:dc:db:bf:7b:a9:0e:74:
c3:fb:bb:4b:b7:f0:35:ca:d2:6f:9d:04:4d:a2:34:f6:d0:44:
8c:4c:dd:56:a6:0f:0c:97:06:66:76:67:68:28:c6:ac:08:a0:
a3:7a:52:d8:7a:4e:32:97:2c:0c:1b:4d:43:e6:df:10:a7:da:
6a:7c:ce:a2:6c:17:70:cc:2e:db:5c:35:40:3e:6c:fc:ac:72:
af:9a:a0:d2:70:e8:cf:17:d5:7b:7c:af:c7:d3:b4:b3:f3:82:
b8:45:cb:f5:2f:b2:42:c4:e6:c4:d7:17:db:83:84:a2:33:af:
21:30:bc:02:16:4a:1b:1a:0f:1e:01:48:cd:59:5f:f9:0a:09:
e9:1f:e6:e3:dd:af:66:47:f0:41:2c:37:da:7e:99:f3:5d:89:
5d:fc:73:bc:ce:0b:65:0c:93:84:95:c5:c4:de:71:b5:ac:b2:
1a:74:bd:2d:80:1a:c5:90:24:2b:b2:69:c1:e5:3c:93:bb:2f:
71:32:3f:b5:77:b5:42:8c:94:f8:a6:9f:9a:2f:1a:6c:ea:97:
96:0d:0c:bf:42:1e:e9:df:b6:16:9c:83:c3:2e:44:2b:db:96:
e8:df:07:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org