Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E62ACA4B80611EE8120B6A8775412E6.roa
File: 3E62ACA4B80611EE8120B6A8775412E6.roa (raw, json)
Hash identifier: PdMxUClT9k4l1dsmVVFwFp+SXkpdjGWclvHoj2jFzSI=
Subject key identifier: DF:FE:72:41:F6:5A:05:29:43:5D:8B:4D:4C:7B:67:81:04:29:74:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6436
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E62ACA4B80611EE8120B6A8775412E6.roa
Signing time: Sun 21 Jan 2024 02:39:05 +0000
ROA not before: Sun 21 Jan 2024 02:39:02 +0000
ROA not after: Thu 08 Aug 2024 02:39:02 +0000
asID: 133861
IP address blocks: 45.207.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25654 (0x6436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 21 02:39:02 2024 GMT
Not After : Aug 8 02:39:02 2024 GMT
Subject: CN=65ac83c9-f135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:28:6b:3d:fe:45:9a:ff:e5:80:55:41:ce:
cc:f6:3c:58:65:57:43:fb:f9:ba:2a:02:98:4d:1a:
2b:26:c7:87:56:3c:3c:7a:7f:d3:7f:fa:fb:e6:eb:
ad:72:db:01:af:94:60:29:2a:91:49:f6:23:0a:d7:
0b:58:1c:3b:1b:ac:d1:bd:93:fb:7b:e2:d7:fc:1f:
68:82:c7:ea:db:b5:ce:39:7e:44:1c:91:87:ae:11:
a4:60:2e:9e:b7:45:b8:e0:e4:62:78:69:8d:f5:1c:
be:ca:13:ce:21:f4:95:80:01:56:23:04:a5:ce:2e:
3d:b5:39:91:b1:58:3b:ca:73:76:c0:d2:a3:3a:e5:
1f:c4:14:d8:64:10:e3:20:39:d9:20:2c:81:cd:0f:
6e:95:c9:fa:58:29:f6:35:3d:36:ea:04:c9:bf:ea:
b1:72:17:c2:1b:01:18:d3:5b:99:ad:d0:8b:68:3a:
2a:ec:09:e4:d1:1f:3a:5d:9d:e3:a4:ba:fc:fd:2f:
21:7c:75:5e:42:6f:cd:d7:43:13:83:f5:93:7d:d4:
01:8b:c3:1e:a5:12:1f:d9:7c:05:dd:45:a3:80:26:
82:29:fe:4f:7a:37:aa:e9:a9:b6:bc:a7:e3:82:a7:
02:e5:63:cd:d2:43:fe:52:a3:1a:17:bc:10:6b:23:
ad:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:FE:72:41:F6:5A:05:29:43:5D:8B:4D:4C:7B:67:81:04:29:74:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E62ACA4B80611EE8120B6A8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.49.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f7:a4:a9:9f:91:11:8a:f3:c2:c2:6a:eb:d1:0a:db:6b:3c:
5a:d8:27:ac:50:8d:95:32:15:7a:6a:6b:c8:64:6e:fe:26:16:
56:15:e9:59:bb:bc:f1:78:d2:2d:b7:a8:4e:f2:86:23:1e:0b:
92:a7:50:cb:f2:bf:3f:02:10:11:9c:90:68:7e:8e:fb:01:5c:
17:10:00:2f:cd:5f:0f:90:c9:e8:c2:62:cc:0c:8f:9f:9b:d3:
42:8c:af:e4:f9:1b:31:4d:54:5e:e3:c5:c6:81:cc:19:3f:f6:
97:ec:0a:2d:f0:90:80:b7:63:1a:20:4e:42:d2:4c:95:bd:cd:
06:23:c4:71:80:a5:8d:df:41:04:c0:8e:60:be:9a:a5:80:80:
cf:b1:ce:d7:b6:8c:ce:d2:0f:59:15:15:91:ae:24:c7:db:ff:
9a:2c:ca:d8:06:76:5a:6f:48:0c:03:09:f5:67:8c:ec:d1:cc:
bb:d1:1d:03:87:17:6d:66:be:21:a8:b2:8d:14:7c:4c:b2:05:
c9:39:b9:b1:21:3f:96:3a:ca:45:bc:95:d6:52:de:f5:7c:ce:
8c:5c:f0:1d:0c:f5:8a:58:16:0f:27:ba:88:d0:8d:8f:ea:87:
10:72:7a:59:60:1b:6b:19:dd:aa:e2:7f:88:8d:15:a6:7e:53:
90:bd:5e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:07 2024 by rpki-client on console-fra.rpki-client.org