Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/47C10D6010D911EE9EAF8D1F4AD9E6FC.roa
File: 47C10D6010D911EE9EAF8D1F4AD9E6FC.roa (raw, json)
Hash identifier: 5s/fvWgD4cIuYAnVMES6BwRmAC56p3IXRaqpha+Ln+4=
Subject key identifier: 9C:86:D0:FB:C2:62:7D:9C:9D:07:C0:BA:BE:0F:F5:E8:21:D0:63:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2CE0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/47C10D6010D911EE9EAF8D1F4AD9E6FC.roa
Signing time: Thu 22 Jun 2023 08:46:29 +0000
ROA not before: Thu 22 Jun 2023 08:46:26 +0000
ROA not after: Tue 30 Apr 2024 08:46:26 +0000
asID: 4809
IP address blocks: 45.195.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 08:46:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11488 (0x2ce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 22 08:46:26 2023 GMT
Not After : Apr 30 08:46:26 2024 GMT
Subject: CN=64940a65-6f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d0:54:fc:d5:49:04:ff:ae:fa:1a:a5:51:04:
11:dd:4e:c9:84:18:dd:e8:4a:04:75:24:06:8a:bd:
7e:0f:86:9d:a4:11:7b:2d:ee:9e:89:3c:7b:02:74:
87:f0:04:f9:9e:b1:88:8c:f3:8a:da:b6:7e:9e:85:
18:92:f7:e1:37:93:e6:dd:40:4f:40:4f:c0:d8:9f:
8a:50:db:8f:4e:3a:1a:84:0e:7f:64:4d:58:41:ef:
a2:eb:27:51:c3:00:a7:8f:b9:cd:53:53:1a:ca:a7:
c3:09:25:45:38:c2:e8:3f:d8:f2:5d:bf:4e:d5:8a:
ef:50:a8:af:b8:76:90:14:88:01:64:1e:b2:c1:78:
dd:76:19:ca:17:43:cb:a2:68:75:87:d4:93:d4:32:
96:24:42:72:c0:f8:05:dd:3a:7a:e0:56:3c:75:79:
14:6b:31:33:63:f3:23:76:64:b0:01:7a:75:d4:65:
a7:d9:8e:d9:5a:b7:3c:d0:fb:3f:10:31:3d:67:68:
95:63:1a:0a:1a:de:9c:83:d9:25:cb:ac:83:80:76:
51:c5:13:f9:57:86:5a:bc:75:64:fd:9b:1b:9c:01:
91:60:20:ef:e0:67:15:0a:13:b2:1d:e7:4d:ca:6e:
55:50:cb:d6:e4:54:b0:29:7f:cf:68:de:aa:db:f0:
85:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:86:D0:FB:C2:62:7D:9C:9D:07:C0:BA:BE:0F:F5:E8:21:D0:63:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/47C10D6010D911EE9EAF8D1F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.6.0/24
Signature Algorithm: sha256WithRSAEncryption
07:d6:1b:8f:0e:00:2b:9b:6a:7e:e3:2b:41:f3:3a:6c:15:ca:
0a:42:16:20:6b:61:50:be:d9:86:db:48:e6:d9:30:93:40:61:
54:7e:13:d7:b7:28:e6:9c:51:1a:61:fd:8f:67:69:60:a8:2a:
2f:a3:ce:99:84:3c:08:20:f5:8e:74:0e:c4:bf:cc:d8:3a:ef:
17:f2:ca:e1:e7:76:6b:f3:5e:aa:19:1b:fb:91:a9:0a:b9:a0:
8b:df:9a:28:30:f8:26:a8:ec:7d:c9:4e:db:2b:73:3d:76:12:
ad:4f:e8:0b:61:0b:23:b0:f0:a8:e2:33:02:33:56:df:6c:f5:
a5:37:cd:78:93:98:bb:a5:f5:c7:b9:87:09:a1:04:f8:49:42:
f9:1a:d9:66:63:59:8c:37:30:81:3a:63:8c:ef:52:ba:34:ac:
3c:21:38:3c:e9:d8:f9:92:43:ad:67:06:fc:80:38:d5:08:59:
f4:3b:51:cc:05:cf:86:75:1a:0e:29:9e:61:25:dd:56:b2:89:
90:82:ad:0d:be:54:b1:cb:88:e0:fd:24:4f:49:dd:7a:f7:8c:
4b:20:42:f8:2d:55:e2:7f:cb:de:6e:2d:1f:88:62:bc:e7:87:
bc:78:a7:5f:55:4c:8f:2e:e8:02:fc:55:f8:07:c4:9e:f9:6b:
fb:c6:8e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 12:50:21 2024 by rpki-client on console-ams.rpki-client.org