Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/42B19B6C417D11EE82F64B174AD9E6FC.roa
File: 42B19B6C417D11EE82F64B174AD9E6FC.roa (raw, json)
Hash identifier: 5VZJSY2Of59wtV/NWgL27Lr2/1GQlPgYjvxGkuMiL0U=
Subject key identifier: D4:16:50:6A:8A:67:97:C2:C0:25:AA:EC:8B:D9:77:B5:C4:DD:86:5A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 36DB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/42B19B6C417D11EE82F64B174AD9E6FC.roa
Signing time: Wed 23 Aug 2023 06:21:14 +0000
ROA not before: Wed 23 Aug 2023 06:21:11 +0000
ROA not after: Sat 21 Sep 2024 06:21:11 +0000
asID: 147019
IP address blocks: 45.194.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14043 (0x36db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 06:21:11 2023 GMT
Not After : Sep 21 06:21:11 2024 GMT
Subject: CN=64e5a55a-247a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fe:0f:89:15:af:15:91:75:57:67:c8:d2:b8:
b6:55:c2:c1:a8:65:65:dc:48:f1:bb:7b:85:57:42:
6d:3f:c2:b5:6a:00:5e:b1:50:f5:b5:03:b4:1f:00:
cc:3b:06:55:6f:ac:13:b4:7a:d6:26:56:e4:44:99:
99:46:d6:b9:4e:25:77:de:36:65:1c:ea:4f:51:da:
2a:78:32:a7:f7:03:da:fb:9c:dd:ed:8a:fc:34:96:
cf:71:05:8a:4f:d0:c8:a2:c7:94:6c:ac:65:c9:bd:
09:ab:c5:95:8c:22:ff:90:ba:71:de:e0:15:6d:d2:
ae:13:17:dc:a2:18:b4:4d:f0:82:b3:23:8a:4e:b0:
47:80:24:1b:8f:bb:e6:6b:ac:20:47:77:b6:d6:6b:
17:92:a5:43:7e:4e:06:0b:49:5f:c9:52:50:16:78:
86:d2:43:79:b0:12:84:3b:7f:86:56:49:2e:14:6d:
d2:65:c6:79:f4:38:de:30:b1:7a:b8:37:8a:a5:e1:
82:46:a5:29:1f:fe:5a:0f:b9:39:2c:d5:78:9e:2d:
d8:ea:41:6f:0f:ce:fb:4e:eb:98:04:71:73:56:4d:
05:ce:9a:04:d9:b2:d3:de:8c:e4:8f:72:6f:a1:c7:
1c:a8:55:d2:90:4a:7d:a2:3f:93:4d:e6:40:be:ce:
91:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:16:50:6A:8A:67:97:C2:C0:25:AA:EC:8B:D9:77:B5:C4:DD:86:5A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/42B19B6C417D11EE82F64B174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.59.0/24
Signature Algorithm: sha256WithRSAEncryption
50:7f:c7:6c:43:b1:24:45:11:b4:77:a0:ad:df:9e:e1:95:68:
38:10:66:f9:d7:6f:df:ad:ab:ff:e5:92:1b:ed:c1:f8:60:b7:
91:2d:c4:c2:a5:70:b5:bb:ab:6d:a7:e1:9f:62:61:8b:55:1f:
e9:a3:2c:37:50:1e:28:ce:df:5d:32:b8:e7:9f:e7:ae:9b:f8:
54:cc:7c:86:90:ce:a3:76:b0:51:8c:98:a2:a1:ff:d3:aa:5d:
ce:99:3b:66:ed:7c:a6:ab:42:5c:a1:7b:32:80:cf:85:79:e6:
7e:ad:eb:2c:b0:6d:af:eb:fd:3a:38:a0:1a:d9:ca:7c:79:ff:
d3:2e:c4:0a:67:8a:7e:8f:51:eb:53:71:8a:aa:55:10:2f:df:
21:46:ed:c2:37:76:46:c6:db:dc:55:14:0d:92:d5:18:2a:d2:
ca:8c:11:7e:e2:94:ee:30:52:44:2f:7d:48:31:59:bc:1f:42:
7b:c4:1f:7f:22:b8:cb:da:ef:b0:ac:e8:7f:0d:fa:e4:b4:0e:
df:19:88:f9:a9:d9:09:06:91:9a:26:b5:b2:be:da:41:8e:66:
e0:7c:69:c6:97:37:37:fb:3e:7a:0e:a6:e6:08:d5:a7:4b:9e:
48:f4:47:f3:f1:d3:3b:85:22:6a:b6:19:50:52:eb:93:0d:77:
00:db:ec:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:51 2024 by rpki-client on console-ams.rpki-client.org