Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DBFDCF0014611EFB1A77944017001B1.roa
File: 0DBFDCF0014611EFB1A77944017001B1.roa (raw, json)
Hash identifier: PF+HAdtKa8+gHqnY/Siz/wHM/xl4qjCJGWbIaBc7Ioc=
Subject key identifier: DF:8C:DB:AB:9D:0E:CE:36:D5:A7:D1:03:E8:49:20:AC:E1:7D:70:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 841E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DBFDCF0014611EFB1A77944017001B1.roa
Signing time: Tue 23 Apr 2024 07:49:46 +0000
ROA not before: Tue 23 Apr 2024 07:49:43 +0000
ROA not after: Sat 11 May 2024 07:49:43 +0000
asID: 399989
IP address blocks: 45.196.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33822 (0x841e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:49:43 2024 GMT
Not After : May 11 07:49:43 2024 GMT
Subject: CN=6627681a-47ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c4:d5:f3:2b:7f:be:ed:96:dd:f9:49:14:2f:
d4:c8:30:c0:1f:7d:86:07:d2:6e:ae:cb:5f:6d:bc:
4a:af:54:c1:d9:c8:6f:3d:0f:96:73:88:27:f9:df:
eb:38:b9:18:0a:85:f3:0e:aa:e8:ea:1e:c1:79:58:
f5:e4:e5:c6:89:06:6b:35:1d:2a:ea:53:3a:f3:aa:
b2:21:b5:24:47:e6:cd:26:3d:75:1b:6d:9d:bd:2f:
05:da:fb:ad:53:c6:50:10:d4:f0:e5:92:d9:fe:ba:
60:63:90:ce:76:08:53:7d:ae:ab:16:3c:f1:47:9f:
e1:ed:8c:4b:e5:c7:7d:10:a8:5e:eb:19:90:3e:f5:
46:92:9f:07:24:da:4e:01:3c:b5:8e:0a:a2:3f:00:
42:78:2f:23:62:7d:82:58:7e:c3:c1:58:ed:4d:08:
21:3a:3d:48:38:fe:5d:b3:6d:9d:84:90:86:e0:51:
e6:74:12:30:17:e5:fa:0d:9d:b7:0f:a7:fd:06:8f:
4e:4b:3f:e0:4f:8f:97:8c:2b:eb:23:01:9c:d8:ee:
f0:43:50:41:db:57:4b:d8:7e:bd:50:80:12:9e:b4:
45:22:e3:4b:aa:15:94:53:d3:db:36:2c:cb:48:e9:
0d:93:70:2f:8a:69:92:af:c3:82:6c:5b:fa:b6:5d:
1e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:8C:DB:AB:9D:0E:CE:36:D5:A7:D1:03:E8:49:20:AC:E1:7D:70:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DBFDCF0014611EFB1A77944017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.40.0/22
Signature Algorithm: sha256WithRSAEncryption
18:24:66:b1:81:bc:b8:a9:5b:01:f8:ad:7e:d4:39:e6:18:b9:
02:1c:72:75:44:e8:c3:24:65:a2:67:13:50:f9:c7:1b:18:f5:
57:fa:fc:1f:13:30:a2:58:e5:2a:6e:a0:d1:9f:9d:1c:36:de:
b9:89:57:d0:88:59:da:e4:e1:a0:ba:3d:86:08:16:76:50:34:
95:2f:20:2d:90:32:ba:63:ac:61:bd:b9:e3:e1:38:37:af:b9:
32:28:24:60:89:52:72:91:48:96:38:ff:a7:38:94:c4:7a:5e:
14:58:2f:9f:21:4a:a0:c2:b2:fe:14:c7:ce:2c:77:b2:b3:70:
e8:06:a7:bc:41:af:33:50:86:64:0f:26:44:94:75:23:50:9b:
9b:dc:4d:44:ca:54:3c:1b:0c:dd:80:c4:a5:31:19:b4:38:20:
9b:89:82:ce:41:13:26:c9:a4:77:97:e7:af:45:95:05:65:2b:
fa:e1:de:05:14:54:e0:4a:98:8e:5c:48:e6:2f:15:12:c7:5a:
4c:44:a4:cb:37:2c:41:f0:39:14:95:1a:29:1d:fb:82:39:c4:
09:71:d1:d4:05:9a:b0:71:85:cb:b7:f1:4d:fd:a2:3a:db:bb:
71:3f:dd:c4:d8:b5:8a:63:42:23:86:77:25:1f:3f:f7:81:54:
a1:bd:55:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org