Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A9E54A8B80611EEB607F3A8775412E6.roa
File: 6A9E54A8B80611EEB607F3A8775412E6.roa (raw, json)
Hash identifier: fYFlK4WL6ojJe4CxVI+L6ZW0XbTz1sNgrxm0qrqnb2E=
Subject key identifier: 8E:E9:94:3E:10:86:D0:A4:F1:A9:5D:DB:FA:89:5E:08:BA:A8:A0:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6438
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A9E54A8B80611EEB607F3A8775412E6.roa
Signing time: Sun 21 Jan 2024 02:40:19 +0000
ROA not before: Sun 21 Jan 2024 02:40:16 +0000
ROA not after: Thu 08 Aug 2024 02:40:16 +0000
asID: 133861
IP address blocks: 45.207.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25656 (0x6438)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 21 02:40:16 2024 GMT
Not After : Aug 8 02:40:16 2024 GMT
Subject: CN=65ac8413-9eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5a:55:e0:c3:dd:2a:60:59:a7:6f:c3:23:31:
c7:b4:d9:37:e0:d2:44:35:e0:be:5e:1c:09:2e:2e:
ac:81:55:ab:80:92:0c:f1:69:f6:ce:fd:c4:9e:1a:
20:ba:4f:52:55:9e:2a:ed:cc:07:de:73:38:73:85:
7a:ce:1e:3a:85:51:6c:df:2f:c4:d2:31:c2:b6:33:
4b:57:1f:ac:f4:d1:71:a1:33:b2:5f:de:b0:b6:21:
4a:e3:5b:45:26:16:56:dc:59:4d:95:3e:a9:91:29:
a7:29:7d:a9:ed:28:63:dc:ab:fe:f1:f0:8a:2a:5c:
33:86:d0:1e:03:c9:97:0f:4d:6a:9a:b6:f3:ca:b1:
ce:d8:b6:fa:a4:d8:a2:3b:ab:df:60:e6:7b:58:4a:
f1:84:23:ba:72:14:c5:58:60:ef:b9:62:65:91:f9:
7a:58:34:18:5e:49:c9:18:b9:1a:69:e1:7a:1f:f2:
e9:ab:90:8e:96:36:7e:52:90:ab:01:a5:74:5e:3c:
9c:64:69:a6:89:18:60:18:19:8d:21:2f:d9:dc:ed:
f0:41:02:ef:ce:54:21:15:74:33:17:38:3d:e7:20:
a2:cc:10:2c:ae:45:48:cc:0e:f9:9e:4a:b9:61:43:
ad:8c:9e:bb:95:20:6c:1a:3c:0b:cb:ea:77:62:45:
ad:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E9:94:3E:10:86:D0:A4:F1:A9:5D:DB:FA:89:5E:08:BA:A8:A0:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A9E54A8B80611EEB607F3A8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.51.0/24
Signature Algorithm: sha256WithRSAEncryption
35:38:fc:b2:37:1b:d3:fd:79:cc:85:87:11:48:da:7b:8b:0b:
7f:fe:3a:63:ef:3d:ec:cd:c7:11:12:4f:9e:f5:27:fc:35:b3:
76:38:c7:31:a5:e1:53:1c:b7:a7:b4:a4:b8:5a:38:a2:08:46:
84:d7:23:36:82:9a:28:6e:da:a8:3a:9e:d7:51:7d:45:17:9c:
73:c0:68:e0:4c:43:8f:51:76:2d:b4:29:56:f7:df:7e:5d:b1:
5d:58:40:2a:84:2b:73:6a:88:15:f4:24:53:58:3a:e9:6f:6e:
85:5e:e1:d7:67:64:4e:a9:47:d2:69:1f:09:04:d4:02:11:43:
40:32:e4:57:3d:fc:80:b8:fa:a7:5c:90:3b:6f:6c:fe:81:c9:
6f:0e:cd:66:b3:28:5b:71:b8:f9:02:0d:ad:ae:4d:cc:0c:5b:
52:d1:b2:25:21:ac:e3:cd:12:73:e6:50:50:58:15:f6:0e:d6:
c5:a7:06:31:2f:f2:c4:eb:90:52:ca:5a:48:77:84:65:e7:8d:
77:db:5d:59:34:15:f7:20:df:a4:ff:68:68:2f:21:04:86:8c:
0e:90:ac:26:28:cc:f7:51:a2:2b:f8:56:1d:d4:3f:dc:8f:0b:
bf:ae:9e:1d:79:a8:a8:4d:83:82:5d:35:f4:6a:88:3d:c0:14:
77:bd:8c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org