Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10C1A206A2ED11EE84511575D25BE465.roa
File: 10C1A206A2ED11EE84511575D25BE465.roa (raw, json)
Hash identifier: tY7iY6xq+yO7dtCVyLwXFuPStZpQLhrrbzyiOG2EeoU=
Subject key identifier: FD:3C:F0:AF:9D:29:11:A8:13:F0:DC:F2:53:39:BC:4E:C4:1C:AB:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5916
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10C1A206A2ED11EE84511575D25BE465.roa
Signing time: Mon 25 Dec 2023 06:15:57 +0000
ROA not before: Mon 25 Dec 2023 06:15:53 +0000
ROA not after: Wed 02 Oct 2024 06:15:53 +0000
asID: 393294
IP address blocks: 45.199.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22806 (0x5916)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 06:15:53 2023 GMT
Not After : Oct 2 06:15:53 2024 GMT
Subject: CN=65891e1d-b11d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6e:5a:48:d1:fd:4b:b6:c9:77:6d:ee:41:cb:
cc:2f:72:c4:ee:a1:0a:03:f3:6d:e9:c7:ee:a9:c2:
35:dd:9b:e4:4d:8e:ee:ac:d9:dd:44:b9:77:d0:68:
8a:33:b8:a4:46:5a:7a:c1:1b:56:56:b1:c0:e0:c2:
ac:76:ac:fa:59:6d:f2:74:d2:3f:6b:27:02:01:36:
d0:26:d8:6f:82:84:0e:73:12:c9:56:01:2d:52:3b:
f7:65:79:c6:bf:68:7f:fd:cb:5a:72:2f:83:a8:2f:
b7:13:b7:0b:54:c3:20:14:0a:90:eb:e2:a9:4f:45:
14:05:4c:64:cd:a7:3e:27:1b:97:ae:11:dc:cb:2c:
4d:3c:ec:dc:f4:9f:ef:9c:20:39:cc:5b:da:6f:d2:
fc:6c:a9:09:c8:d5:b2:5c:03:8b:a8:4c:ad:57:28:
4b:79:de:75:3c:cf:b7:e6:c0:5d:12:f7:cd:87:30:
a7:c4:6f:71:8c:79:9c:a1:b4:fa:12:bf:ae:39:4b:
84:04:f2:bb:40:cf:de:8c:f2:ae:28:04:ce:c4:71:
a1:84:2d:ab:21:a2:08:c9:54:92:e2:9b:df:9b:50:
57:13:94:06:ed:11:e6:b5:60:cb:cb:ea:e7:e2:46:
41:53:db:36:73:cb:9f:12:20:bb:7a:47:76:c9:c1:
68:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:3C:F0:AF:9D:29:11:A8:13:F0:DC:F2:53:39:BC:4E:C4:1C:AB:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10C1A206A2ED11EE84511575D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.172.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:09:98:9a:2d:b1:30:97:a4:a1:1d:f1:f4:af:88:a9:d8:f3:
4f:22:f3:f8:28:0a:68:88:4c:12:7c:ee:a3:cd:3d:1b:46:f4:
c2:82:6c:84:59:a0:4d:60:de:b4:89:80:d0:cf:7a:e4:1b:5c:
01:d9:7b:56:62:ea:d1:85:3d:e4:f2:57:b9:4c:36:9a:a6:01:
cd:de:fc:f6:cc:08:70:a8:23:5a:4d:8f:fb:f0:19:28:0c:e7:
e6:c9:d4:4d:6b:22:4a:77:92:92:99:48:1c:9d:89:2e:71:60:
ed:cf:ff:42:17:da:18:fd:25:eb:b7:07:47:c3:57:82:b0:11:
01:c5:10:cd:a6:f6:97:64:56:53:e4:2b:96:09:0e:82:e4:c5:
35:6a:cd:5a:9b:c2:f4:5c:44:ef:3b:b5:7e:e8:9e:f9:4b:55:
45:c6:90:5e:4e:41:13:42:64:2f:13:b7:7d:94:94:83:5c:88:
62:d0:9a:ec:10:39:9e:b9:a6:a0:88:3a:f5:26:35:a0:37:0e:
74:91:f0:a5:f0:f2:97:2d:5d:95:3f:4b:10:3c:ac:42:9a:2f:
15:15:de:60:b9:60:d8:66:21:b0:d7:ad:8b:fd:66:12:06:70:
f0:ee:fc:66:08:f7:55:ba:3a:90:5c:57:19:71:b4:ea:da:9f:
fd:17:0a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org