Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6610AF3E156411EE8451FB624AD9E6FC.roa
File: 6610AF3E156411EE8451FB624AD9E6FC.roa (raw, json)
Hash identifier: Uf0z/v1dfG+ta+ZvPqytIuoqkg+f/ZkaRAn28TnEVio=
Subject key identifier: 49:D5:B0:88:92:84:01:BA:4D:73:6E:59:F0:C9:A1:13:96:5B:03:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2DA0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6610AF3E156411EE8451FB624AD9E6FC.roa
Signing time: Wed 28 Jun 2023 03:32:25 +0000
ROA not before: Wed 28 Jun 2023 03:32:21 +0000
ROA not after: Sun 16 Jun 2024 03:32:21 +0000
asID: 270068
IP address blocks: 45.195.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11680 (0x2da0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 03:32:21 2023 GMT
Not After : Jun 16 03:32:21 2024 GMT
Subject: CN=649ba9c9-d6cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9d:e6:96:d9:22:84:25:8c:7b:1c:9f:b6:86:
a0:b0:bd:cc:ec:7a:0b:fd:f0:33:e5:2c:fd:d8:c8:
2a:91:ca:6d:8b:f8:dc:28:ff:8a:a2:f5:aa:4d:f9:
5e:cd:57:40:01:14:54:22:8f:6c:d9:d9:2e:86:77:
01:93:44:1d:fe:52:b1:3b:4e:ae:0b:5f:e9:7d:09:
2a:6f:56:72:cd:62:53:ff:58:88:fc:9c:f9:52:88:
85:44:5e:3f:74:54:5f:4f:bc:93:95:26:54:5b:9d:
1f:24:ba:a6:36:4a:d7:95:f6:27:3d:bb:f4:5e:0e:
76:b4:4d:90:a0:b0:c4:73:d4:9b:8f:8f:6a:15:2a:
2f:d4:ed:e4:d5:a3:88:d9:47:56:9b:98:5a:b4:00:
d5:9a:f2:28:02:45:89:18:1e:6b:80:22:42:80:76:
09:9a:49:42:04:da:0a:1d:35:70:95:49:92:7b:ac:
18:6f:4a:bb:9a:63:5f:69:e2:9e:3f:26:dd:af:bc:
7b:98:ee:26:00:c0:47:38:be:bc:49:ce:79:45:24:
a9:e3:8a:92:7a:02:4f:23:f1:67:5f:4c:df:0d:4e:
bd:df:32:e3:7d:c5:88:ed:44:78:be:11:4d:5e:6a:
b0:3f:78:8f:c5:23:28:d4:80:57:55:ab:13:84:46:
30:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D5:B0:88:92:84:01:BA:4D:73:6E:59:F0:C9:A1:13:96:5B:03:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6610AF3E156411EE8451FB624AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:5a:bb:05:66:b6:30:6a:ec:76:9f:3d:85:93:9e:55:42:6b:
1c:f8:e8:e2:6b:03:39:d8:3e:43:de:dd:a4:e1:a2:eb:fb:b7:
39:ed:86:c9:f1:0a:dc:da:30:b8:d3:92:e7:f9:47:d2:72:fe:
64:93:3c:36:11:2b:4d:ee:ea:09:f6:8e:a4:fd:79:ec:a7:8b:
04:7f:71:c1:8e:51:3e:c3:45:bb:ba:cb:b2:e0:ed:23:b0:55:
4e:b8:ef:09:3d:d5:fc:b3:6d:49:64:42:bf:2a:81:8d:33:dd:
10:88:23:f5:f0:c4:b0:d4:c1:d7:5f:73:38:82:82:62:88:ac:
db:f3:52:02:34:25:29:59:78:32:04:fc:51:48:00:8f:34:4c:
0b:a5:5c:ba:c7:cf:7d:4f:cb:73:30:ea:0a:41:55:5c:c1:08:
82:1f:97:fc:cd:15:86:37:f7:b2:b1:8e:ea:fe:e2:96:3a:ea:
97:e8:77:e5:07:6e:0b:13:94:4c:40:3c:da:72:ce:05:58:64:
d8:82:c5:77:98:a2:a5:a9:60:5f:c8:4d:2b:79:36:48:31:f0:
47:01:b5:da:d0:fe:dc:7d:57:f8:80:c5:a1:ff:5c:6d:a4:84:
03:72:4c:65:31:ea:8b:3b:67:d6:6c:de:79:13:fe:e5:d9:2e:
28:ec:6e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:10 2024 by rpki-client on console-fra.rpki-client.org