Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/124CE730C42511EE9FD283BF775412E6.roa
File: 124CE730C42511EE9FD283BF775412E6.roa (raw, json)
Hash identifier: EUjzufY0u5yVdU9WsOHTwg3StlJTsM4fmcT4M9cjz/c=
Subject key identifier: A4:0C:D1:B0:32:10:81:22:72:C8:2B:60:32:DE:C8:B0:F8:4E:73:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6D27
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/124CE730C42511EE9FD283BF775412E6.roa
Signing time: Mon 05 Feb 2024 12:50:00 +0000
ROA not before: Mon 05 Feb 2024 12:49:56 +0000
ROA not after: Mon 13 May 2024 12:49:56 +0000
asID: 135523
IP address blocks: 45.199.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27943 (0x6d27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 5 12:49:56 2024 GMT
Not After : May 13 12:49:56 2024 GMT
Subject: CN=65c0d977-ffd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ae:f4:30:2b:be:e9:21:29:31:fe:46:7a:78:
b2:f7:c6:a1:2e:ae:38:5e:c3:b6:73:ee:a3:5f:3d:
e4:9a:34:d7:e1:30:3c:03:ed:e4:8d:c0:44:39:36:
dd:1e:81:f6:d5:cf:86:a2:e4:db:7d:c7:5f:3e:e7:
b5:4f:23:da:11:bd:b6:f5:1f:61:12:55:28:39:22:
57:25:a0:75:33:70:a9:26:fb:5b:37:7c:c9:3c:42:
68:ae:e2:72:10:25:24:e8:9e:e2:17:79:11:ce:90:
d6:c2:da:a4:dc:5c:ac:2c:f4:01:44:b3:88:d3:9c:
79:d0:96:87:70:34:39:9a:4e:45:e4:76:f5:3f:8f:
4b:d8:73:3c:6a:fb:24:e6:8d:4f:e6:4b:92:bc:df:
a2:e2:21:69:f2:88:76:10:03:be:fa:b3:19:04:63:
5c:c1:49:26:ec:a1:7f:fa:af:09:17:df:4c:b3:aa:
e8:d0:53:5b:d0:24:a2:8b:71:bb:72:15:57:19:1d:
b9:c7:f8:e5:0a:d3:df:8b:07:b2:99:17:9f:63:f7:
49:66:f2:71:88:a4:2d:6c:b1:d5:4f:4b:ae:f8:75:
d1:e5:6b:c4:a3:24:3e:31:88:29:d1:45:37:13:df:
f4:ab:cc:c0:1f:9e:79:cd:d2:c4:5b:01:08:41:08:
3e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0C:D1:B0:32:10:81:22:72:C8:2B:60:32:DE:C8:B0:F8:4E:73:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/124CE730C42511EE9FD283BF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.187.0/24
Signature Algorithm: sha256WithRSAEncryption
47:5c:9e:99:25:b4:93:09:af:aa:38:c3:48:bd:6a:bb:f1:f5:
02:e2:1b:7a:e4:fd:92:d9:24:8a:12:96:83:4d:ba:43:c3:24:
00:1f:65:12:88:ab:76:2e:6c:90:06:63:0e:76:00:ff:32:e0:
9e:05:a8:38:48:1d:d9:1c:ca:6b:a8:21:82:3d:46:dd:05:a6:
d5:00:34:26:73:c9:35:4b:27:3a:02:44:23:ac:fd:af:01:c8:
91:29:cd:c9:7f:49:e5:1d:3b:e7:1b:41:90:cc:62:d2:1f:83:
10:b6:f8:4f:a3:5a:73:bd:73:53:92:0c:26:42:f1:1c:cc:77:
44:cc:63:43:4f:46:b1:69:c2:b5:f5:a2:9d:92:1b:2e:06:a2:
4f:9a:eb:87:bc:d2:ae:33:d5:b9:20:a9:8d:86:e1:7c:12:80:
8b:db:95:09:37:72:fe:73:96:0e:25:09:2d:7a:16:76:ea:04:
c2:7c:ad:af:7f:60:19:55:e5:81:b0:24:84:7c:58:29:48:5d:
dc:cd:1e:b8:3d:30:43:06:d6:61:d5:8c:44:33:c2:0b:a7:5f:
86:32:c5:4d:11:ed:1c:ad:cb:73:70:99:11:17:d7:a8:17:51:
84:24:34:71:bb:c9:27:0d:44:ef:5b:8a:4f:ab:10:c3:5a:50:
cd:23:dc:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org