Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BBA1AEA33A111EF9005A37D762E951A.roa
File: 6BBA1AEA33A111EF9005A37D762E951A.roa (raw, json)
Hash identifier: 5EM1xPw0+ZY85RcF9Lud6epIWVnwY6izwI/9sKmh1iA=
Subject key identifier: AD:E3:97:AC:1C:61:53:87:D0:79:29:11:83:E1:B7:20:E7:73:B2:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 958B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BBA1AEA33A111EF9005A37D762E951A.roa
Signing time: Wed 26 Jun 2024 09:49:46 +0000
ROA not before: Wed 26 Jun 2024 09:49:43 +0000
ROA not after: Mon 30 Dec 2024 09:49:43 +0000
asID: 984
IP address blocks: 45.202.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Sep 2024 00:16:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38283 (0x958b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 26 09:49:43 2024 GMT
Not After : Dec 30 09:49:43 2024 GMT
Subject: CN=667be43a-7b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:c4:6e:bb:18:cc:1f:58:4c:ca:af:15:92:62:
6f:c8:07:65:f5:44:f5:e0:d4:81:e6:21:61:bf:70:
ca:38:38:a3:2a:6d:3c:1c:e3:d6:38:90:69:c9:85:
3b:5e:dc:2b:6c:62:73:fb:49:2a:ce:a6:f4:ef:2e:
b4:6a:ba:22:39:1b:9b:14:5c:8f:e8:60:1d:37:56:
0c:a5:b1:6c:78:a7:8f:e9:f2:fb:52:e8:d8:57:a8:
17:54:88:ab:e7:b4:c4:6c:71:ef:f4:28:2c:cd:70:
5a:67:8f:85:62:d9:29:17:50:14:5d:b0:3a:f7:e8:
d8:db:60:86:91:9e:98:73:25:90:cc:b3:bc:a0:84:
02:e0:fd:63:36:e2:07:aa:fe:87:d5:75:ca:34:c7:
4c:4f:cc:00:f2:fc:e7:89:ee:6c:44:01:c7:40:94:
b3:19:8c:08:bc:d6:4e:0e:3b:9f:3a:b9:7c:41:ab:
d5:da:d0:c6:31:71:f9:75:54:04:eb:94:1b:70:f8:
3e:a6:5b:c7:33:68:80:66:51:fc:80:cf:da:e2:bc:
b2:b5:de:c4:1c:b4:5c:d1:7e:46:bc:ed:ef:17:4d:
ac:90:73:ab:b2:17:a6:f4:4a:5f:48:32:ba:e8:17:
f8:4b:96:df:b5:fe:34:db:35:bf:2c:ba:d1:4b:a9:
c4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E3:97:AC:1C:61:53:87:D0:79:29:11:83:E1:B7:20:E7:73:B2:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BBA1AEA33A111EF9005A37D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
85:8f:fa:ca:ed:77:42:d1:dc:e6:a4:27:8c:21:84:7f:97:ea:
59:83:b6:8d:45:af:c1:96:30:6f:35:f2:f2:22:c6:67:a9:cc:
10:15:68:83:83:7c:82:f8:92:42:6b:e0:ef:3c:0b:ff:ab:7c:
94:b4:0f:d0:b3:be:c5:bf:1a:86:5e:c1:b0:f6:4f:b9:8f:85:
ae:bf:e6:33:c2:e3:67:2c:68:57:fd:ee:ea:c0:41:b0:58:f8:
43:5f:af:58:8a:74:af:39:76:29:eb:56:f5:43:14:f9:4d:01:
ac:71:1f:b1:ec:32:d3:22:95:3a:d7:0a:55:c5:4a:14:7b:f4:
a6:29:89:27:8d:cf:5f:10:4c:df:16:69:54:02:2f:47:f5:b5:
22:1d:52:1c:79:f5:9e:e9:b3:be:b0:a8:a7:c8:8b:67:c0:4b:
f5:56:bc:47:15:9f:82:14:9e:89:d4:3e:f8:71:7a:22:df:b9:
ec:0d:03:02:64:97:db:f1:e9:84:dc:b5:c5:3a:70:04:80:be:
45:73:ae:f2:2f:21:26:bc:21:d2:9d:5e:07:86:fd:ac:94:eb:
62:2a:9a:7e:bd:fd:81:a4:a8:cb:eb:7d:de:39:7d:2a:02:eb:
0d:c3:85:97:c1:8f:13:9b:57:08:a2:9e:c2:05:78:8d:b4:5f:
b8:1e:60:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 11:12:06 2024 by rpki-client on console-ams.rpki-client.org