Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3379564A157611EEA9EB54194AD9E6FC.roa
File: 3379564A157611EEA9EB54194AD9E6FC.roa (raw, json)
Hash identifier: Km1rU70mlPuFk/BIO/5lXhCGF8pNCsPAyUcdEa/QRzs=
Subject key identifier: 04:9E:6A:F1:23:48:74:8B:AF:6A:89:EC:B7:85:2A:74:81:09:4B:73
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2DE6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3379564A157611EEA9EB54194AD9E6FC.roa
Signing time: Wed 28 Jun 2023 05:39:51 +0000
ROA not before: Wed 28 Jun 2023 05:39:47 +0000
ROA not after: Tue 29 Oct 2024 05:39:47 +0000
asID: 135607
IP address blocks: 45.194.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11750 (0x2de6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 05:39:47 2023 GMT
Not After : Oct 29 05:39:47 2024 GMT
Subject: CN=649bc7a7-8ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:72:fd:d5:8a:cf:0a:1f:d1:30:c4:cc:8e:f3:
46:f5:dd:1a:5f:ac:1d:e8:3b:a6:ea:09:26:e6:f7:
7b:58:be:35:35:74:d7:13:0a:55:8c:f7:37:fa:17:
59:d4:fa:5d:31:64:93:9c:0d:89:43:bd:b7:0a:fc:
4a:c2:78:71:4f:8e:6b:de:b6:78:64:ce:fb:c9:3d:
7b:40:cb:50:66:55:10:e0:61:94:03:ea:c3:1a:2a:
03:ae:c0:92:cb:3b:b1:42:c2:bf:03:e6:d6:c2:e2:
9a:8d:46:57:ff:7b:aa:f6:32:96:91:23:43:b5:97:
b7:fb:b8:44:f1:57:2f:90:c9:a0:28:c6:89:92:0c:
2a:0b:6f:3e:6b:04:dc:7b:53:cd:60:5a:e5:7c:fe:
58:9e:d1:bb:4d:59:32:cd:ef:bd:fa:be:5b:03:c1:
01:34:ef:8f:85:e8:8b:c5:1d:5d:02:2b:94:22:a9:
6c:d9:39:9b:81:56:12:d5:20:bc:15:b1:57:24:a4:
a8:82:ca:b8:41:7a:92:6e:68:b0:36:f1:bd:c5:fc:
74:53:37:50:18:46:86:00:96:a5:0f:4c:ef:03:9a:
00:99:da:d8:83:ea:9a:57:77:49:87:e7:90:22:15:
70:22:b5:07:50:b6:3b:78:3c:37:5c:12:42:47:9c:
20:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:9E:6A:F1:23:48:74:8B:AF:6A:89:EC:B7:85:2A:74:81:09:4B:73
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3379564A157611EEA9EB54194AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.6.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:71:1e:96:a1:5f:05:ad:32:5a:cb:61:95:64:f1:10:4c:52:
44:68:0e:5e:fe:d4:95:c3:e7:86:b9:05:7f:7e:70:0f:0c:8f:
d0:96:35:d6:33:c7:27:1d:99:4b:64:5b:e7:f6:da:cc:3a:da:
13:6b:cc:a7:85:6c:66:d8:ba:8c:e7:fd:69:33:9c:11:b4:59:
21:27:da:3b:ea:0a:38:84:5b:2f:5a:b8:e4:ad:2d:17:e7:d7:
a0:32:96:4c:06:c1:57:3f:64:36:79:24:03:f7:cc:0b:c6:7b:
b4:a8:ac:ae:3d:23:da:e4:44:fb:12:4e:1b:69:a3:20:d1:e1:
6f:48:5b:c8:83:b2:03:7a:aa:5e:8f:cf:a4:e7:37:0a:64:63:
8e:59:aa:c8:03:ed:9d:d6:38:4b:3b:d7:ab:62:9c:68:bb:ee:
70:5d:f2:90:2f:86:b1:f1:89:22:2f:00:fd:c2:2e:39:b0:19:
c9:25:05:ba:eb:8c:c8:cc:89:ab:fd:ab:65:fb:61:c1:37:14:
25:3e:74:21:0b:ed:d6:df:3d:a2:d3:55:22:77:20:2c:3e:5f:
fb:9a:07:ff:74:82:f0:f7:65:e6:28:93:bf:f5:c4:9d:20:4d:
fc:6f:d2:96:7d:45:4a:33:c0:37:12:4c:97:d2:42:69:52:71:
fa:47:a0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org