Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E70607C018511EFA8EA4B40017001B1.roa
File: 0E70607C018511EFA8EA4B40017001B1.roa (raw, json)
Hash identifier: boRpYEt+zQILzKHEUMUBCcB6knKfdCvllPK8Bg7sLRU=
Subject key identifier: DB:1A:68:61:49:41:E1:D8:69:BC:9E:CD:A7:E3:31:2E:5E:5F:34:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8467
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E70607C018511EFA8EA4B40017001B1.roa
Signing time: Tue 23 Apr 2024 15:20:46 +0000
ROA not before: Tue 23 Apr 2024 15:20:42 +0000
ROA not after: Mon 03 Jun 2024 15:20:42 +0000
asID: 135097
IP address blocks: 45.207.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33895 (0x8467)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 15:20:42 2024 GMT
Not After : Jun 3 15:20:42 2024 GMT
Subject: CN=6627d1ce-a2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:03:d0:62:64:ba:32:67:c1:6e:b8:ce:db:fa:
41:05:7a:ab:82:70:84:22:bd:6e:19:13:22:20:3b:
fb:2e:b4:92:00:36:0f:ff:78:f4:67:2a:e9:17:7d:
01:e9:fd:98:48:0b:11:ad:8b:b5:65:0c:ce:f2:47:
ac:bf:2f:9e:3d:64:48:6c:c1:19:d2:1d:52:e7:35:
fc:b8:b8:13:61:fb:32:10:d6:f5:62:5a:f0:75:3c:
e9:d4:5c:29:f0:01:60:b1:f8:a1:c8:2f:86:57:20:
63:5d:38:b5:7f:4d:ce:4c:02:28:92:88:cd:70:bf:
1c:a3:4e:27:51:0a:83:a8:88:c7:85:77:84:9d:f8:
c3:14:4c:fc:82:98:90:40:02:cf:fd:93:0a:55:40:
7b:46:86:63:01:c1:c3:26:ad:2b:22:71:e9:ff:a4:
71:53:3e:92:5b:e9:b0:bb:a2:44:fa:31:90:a4:e5:
88:32:fe:50:fa:8a:4d:cb:84:0d:4d:df:21:56:28:
4c:21:a5:fb:dd:ab:5b:d1:0b:8a:59:2c:40:a8:19:
23:51:b6:2a:6c:6a:4f:a1:01:f4:49:ff:20:96:66:
bb:e8:e2:5b:d2:d0:e0:62:7f:0d:ca:c3:a6:d6:e8:
6d:93:14:53:a1:37:c2:52:77:82:41:b3:17:4d:0a:
a9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1A:68:61:49:41:E1:D8:69:BC:9E:CD:A7:E3:31:2E:5E:5F:34:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E70607C018511EFA8EA4B40017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.64.0/18
Signature Algorithm: sha256WithRSAEncryption
4d:cd:60:c6:f5:c7:1a:da:1b:a4:04:a1:8d:20:a8:ed:61:40:
f1:4c:44:e3:16:d7:2b:d1:20:73:e7:c9:5f:dd:f4:cc:2a:a3:
8b:f6:15:55:7f:82:63:3f:e8:72:e9:7e:23:88:51:d1:25:3a:
f7:dd:98:2d:f7:40:c6:17:08:6f:dd:20:f5:2f:7c:4c:cc:7b:
97:62:e5:ac:ef:e7:e0:83:1d:92:03:90:c1:e2:0d:b7:c4:66:
a2:1a:13:86:91:99:bf:ca:b3:bf:b3:c7:d2:ad:d1:f5:22:44:
b1:33:1f:49:ac:c0:99:8c:85:f4:3a:fc:f3:88:e6:d8:9c:09:
61:f5:ef:3d:be:43:41:98:8b:f2:97:85:35:fa:f0:b0:53:50:
0c:da:e3:28:6a:fd:8a:97:eb:20:74:24:f6:46:d8:92:29:04:
a5:3b:03:7b:50:c1:ca:4b:2e:49:48:e0:ee:d1:a3:3f:eb:11:
78:34:f4:cd:b3:d4:d8:b6:b0:01:68:7c:37:e1:14:d1:09:50:
70:91:68:c4:ea:a7:45:d9:90:14:cb:e5:05:15:75:d0:4b:7c:
fb:95:4e:ff:7b:6c:aa:39:27:07:6b:91:1c:f8:a8:bf:e3:2c:
3c:c7:a2:6b:06:2d:11:82:4e:ee:f4:61:51:54:bd:98:c5:be:
4c:c0:1b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:08:27 2024 by rpki-client on console-ams.rpki-client.org