Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6918ACDA014111EF89E5231E017001B1.roa
File: 6918ACDA014111EF89E5231E017001B1.roa (raw, json)
Hash identifier: RIe2GY3bZ7/n6L8iqrdLoxuYQ4+MZY4Wu60wXAdmPh0=
Subject key identifier: BA:E3:88:71:D4:59:C5:E3:55:03:08:DC:9B:57:E3:5B:4E:50:96:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 83EC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6918ACDA014111EF89E5231E017001B1.roa
Signing time: Tue 23 Apr 2024 07:16:32 +0000
ROA not before: Tue 23 Apr 2024 07:16:29 +0000
ROA not after: Sat 11 May 2024 07:16:29 +0000
asID: 9009
IP address blocks: 45.192.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33772 (0x83ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:16:29 2024 GMT
Not After : May 11 07:16:29 2024 GMT
Subject: CN=66276050-b5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:29:b8:eb:8f:10:f5:22:7d:98:f6:05:8d:b0:
ca:61:d4:8d:ca:19:f3:dc:e6:2e:36:47:8f:10:5c:
10:43:7c:3c:8d:13:bb:38:21:fa:24:89:a2:f5:59:
7f:96:e4:0e:c9:7a:c0:2f:d0:90:c6:88:71:0c:d1:
a4:36:b5:05:0c:f1:10:b1:a2:3c:69:00:33:cd:e0:
21:db:00:14:23:07:89:65:0f:1d:aa:10:9d:80:a9:
f7:21:59:d4:5a:6b:38:79:29:97:0a:f4:a6:53:0c:
24:a7:9c:92:29:6f:22:51:95:d7:c1:d9:41:3b:35:
83:d7:1e:82:d0:e5:74:8b:a3:21:2b:5e:49:56:84:
ea:75:ad:52:72:9a:ec:02:9e:b9:ea:bc:08:a3:08:
c1:3a:04:3f:7b:29:10:0c:f2:b8:99:ac:b6:58:31:
32:16:de:14:a0:fe:64:b3:0d:f7:ee:19:c8:0e:da:
35:0b:0a:f2:e0:34:10:f5:e8:07:ef:65:eb:0c:3e:
73:ec:71:9d:c6:6f:d1:72:b4:57:a2:b9:f9:39:de:
7a:88:4c:57:49:01:29:01:35:b7:94:26:db:ad:08:
be:93:d1:0d:be:2d:eb:e1:cd:e2:28:7d:a0:44:7e:
3c:6e:13:0d:ac:c0:43:46:85:c5:0f:f2:de:7e:c5:
d1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E3:88:71:D4:59:C5:E3:55:03:08:DC:9B:57:E3:5B:4E:50:96:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6918ACDA014111EF89E5231E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.144.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f0:52:2f:6d:cd:b0:6d:ca:86:c0:13:74:6a:c6:68:e7:6d:
5f:3a:0e:52:0e:c3:f1:4a:5f:83:ed:43:31:4e:db:bb:a2:2c:
bd:65:df:4e:e5:74:42:c7:a8:58:ce:4a:17:7f:17:92:9a:f5:
fe:42:bd:0f:e3:f1:49:99:17:e6:40:a7:e0:17:61:b4:b5:e7:
1f:34:06:b6:fb:ed:18:22:2f:00:e5:54:d5:09:ad:40:d8:cd:
3b:06:62:dc:a2:10:a6:2e:bd:ca:8c:4b:c0:5c:50:98:d7:63:
3a:73:65:bb:b3:88:99:66:33:2e:7d:d5:d9:7b:a6:b5:ff:9b:
ee:6b:08:36:b9:df:d0:a9:43:58:73:a4:62:17:d6:77:ae:7f:
b2:dc:ce:9f:7c:c7:28:a4:d8:a8:05:9d:de:71:14:a8:cc:f4:
84:9f:35:05:92:56:20:31:83:7c:13:4e:6c:46:a7:36:59:ec:
ae:02:e1:98:1e:7a:b1:a0:f5:c7:11:8f:c6:bb:34:33:35:e2:
73:f2:50:59:bb:55:7c:ba:7b:85:77:54:2c:c5:63:95:2d:8d:
ac:87:6d:c7:b5:47:64:74:1e:c9:60:7d:3f:98:ff:0d:d1:4b:
ff:e6:3b:81:15:80:d3:38:31:7c:04:52:1c:b1:8f:1b:82:42:
35:8e:e9:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org