Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/66E8636AB99311EEACA23372775412E6.roa
File: 66E8636AB99311EEACA23372775412E6.roa (raw, json)
Hash identifier: L2Cz5qa52Mgr55ATBtpK+4YmEczXgFY36+KrVQtt01E=
Subject key identifier: 4E:0E:A8:8A:E0:9E:84:B3:88:84:58:3C:8E:25:08:56:2A:16:FA:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6456
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/66E8636AB99311EEACA23372775412E6.roa
Signing time: Tue 23 Jan 2024 02:02:03 +0000
ROA not before: Tue 23 Jan 2024 02:02:00 +0000
ROA not after: Thu 18 Jul 2024 02:02:00 +0000
asID: 138456
IP address blocks: 45.194.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25686 (0x6456)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 23 02:02:00 2024 GMT
Not After : Jul 18 02:02:00 2024 GMT
Subject: CN=65af1e1b-c57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5f:b1:81:10:ea:df:4b:d4:6f:a2:57:42:01:
f9:3f:50:15:ab:27:88:bd:81:fc:ed:23:f1:b1:77:
3c:12:84:80:55:42:fc:43:3e:a3:82:c9:cc:aa:85:
0f:42:73:b4:cb:6c:e1:88:fd:3d:69:c9:cc:87:67:
4b:b5:51:60:6f:3e:b2:44:12:0d:fb:98:7f:ce:85:
1f:41:78:2b:6a:73:1d:98:2a:ed:04:f2:a4:95:e8:
d9:99:f1:56:4f:74:33:db:da:fd:c8:98:a4:14:b0:
35:c1:11:11:da:72:56:c5:d9:ab:4f:bc:a6:f3:9a:
16:04:92:05:1c:1f:0e:78:cb:27:64:1e:4f:36:15:
4d:52:6d:2a:8d:bb:5f:ae:97:03:29:62:0e:db:4d:
e7:e8:cb:fb:ce:99:87:15:b8:d0:f0:8e:0b:8b:35:
a7:80:5c:09:71:fd:49:73:05:c6:86:47:3e:c5:3e:
8b:a9:e6:df:a4:19:a3:b0:56:a7:00:61:cf:4d:72:
2f:18:42:39:4c:38:07:7e:56:c0:df:6f:6b:e7:8b:
d5:cd:f2:cd:2e:5f:cd:d6:9e:06:f3:f3:65:53:8e:
c5:c9:53:0c:47:12:67:d6:66:25:aa:71:a5:c1:35:
94:6f:ec:1c:41:e8:a9:0b:52:7c:5c:13:ac:54:a5:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0E:A8:8A:E0:9E:84:B3:88:84:58:3C:8E:25:08:56:2A:16:FA:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/66E8636AB99311EEACA23372775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.96.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:ef:91:89:20:35:39:74:46:92:46:c3:01:fb:d7:6e:6c:94:
d0:19:fc:96:d5:32:86:06:af:f3:f1:07:58:f3:8a:83:06:8f:
11:0f:47:aa:cc:21:8f:97:49:36:b7:d1:81:55:5e:bf:c5:9a:
96:04:74:5d:0e:14:d6:cf:5d:2c:41:75:18:c6:6b:37:f2:03:
5e:b8:d2:92:bb:76:1e:59:52:27:88:9b:c2:02:d7:27:cb:d7:
fa:0f:27:a7:15:a5:ba:d1:3d:d9:ac:77:19:84:af:65:2f:c3:
5e:5e:3b:4f:21:a7:36:07:a8:73:ca:47:83:87:98:1e:05:3c:
7e:9a:76:96:2f:18:84:01:cf:15:2a:03:e3:e6:a6:83:49:fa:
4e:ed:ba:04:b6:9c:6a:98:48:e0:13:b5:1d:df:6f:25:cb:62:
2c:70:b5:d4:91:73:ac:77:bc:8d:30:c8:23:27:2d:57:64:b7:
5b:ec:a9:e5:02:bf:dc:af:cf:e4:a8:e9:de:c3:c1:37:b5:75:
d9:2d:63:82:a8:6e:0f:f1:18:d8:f0:90:5b:75:69:a8:c9:4a:
e2:7b:1e:08:83:ac:42:39:bb:3c:6a:24:58:20:74:3a:51:5d:
9b:1a:3f:7e:5b:4b:74:c2:44:44:48:3c:ac:db:c8:be:cd:f4:
60:e9:74:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org