Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D18D85AC16811EE9A789BBF775412E6.roa
File: 6D18D85AC16811EE9A789BBF775412E6.roa (raw, json)
Hash identifier: A+ne8jubakqjNMyyhLTH6pvoYaiv9eFKOkoG2WPBPVY=
Subject key identifier: 21:4A:04:7D:EF:2F:C1:D8:9B:C0:46:F1:AE:A5:51:03:3D:95:1E:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C59
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D18D85AC16811EE9A789BBF775412E6.roa
Signing time: Fri 02 Feb 2024 01:14:35 +0000
ROA not before: Fri 02 Feb 2024 01:14:31 +0000
ROA not after: Thu 08 Aug 2024 01:14:31 +0000
asID: 133199
IP address blocks: 45.207.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27737 (0x6c59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:14:31 2024 GMT
Not After : Aug 8 01:14:31 2024 GMT
Subject: CN=65bc41fb-9b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a4:d6:75:8c:17:57:ad:c6:0a:b4:d1:01:47:
34:38:aa:6a:22:f3:de:1f:26:65:b3:d6:bd:a7:01:
51:9b:1a:bc:92:1f:25:cc:4c:45:67:3d:8d:af:54:
87:56:53:93:b0:d1:11:8f:27:dd:2c:07:a7:7e:0e:
73:14:96:16:6d:95:32:c5:e3:ef:1e:3f:af:81:41:
4b:c6:12:e4:00:a8:55:21:e3:e6:e7:02:80:4d:cb:
74:8c:8f:1c:f5:5e:20:00:50:ac:18:95:dc:4a:db:
3c:80:d0:a1:33:eb:2f:05:8f:0f:bf:ad:09:dc:a6:
42:dd:0a:fe:2f:f1:41:0f:b5:45:4a:8a:ff:32:71:
46:9d:fe:1a:14:04:0b:c9:13:9c:3f:41:13:d4:d7:
01:ba:47:7e:39:23:ad:85:45:73:08:40:c7:e5:ea:
b6:0e:00:81:72:d3:1e:d8:9e:40:a0:a9:fd:84:bd:
bd:68:fd:94:a2:4b:58:1e:9d:4e:41:4b:b3:de:8b:
49:ec:aa:97:7a:a8:5a:32:9a:03:30:a4:86:d0:74:
6e:c3:43:c8:56:2b:bb:e3:87:64:c4:1f:30:83:73:
63:ac:74:66:f5:65:76:10:a1:dc:94:f8:f8:b6:2d:
ea:45:af:a0:62:8b:fe:fb:5c:b3:a2:99:d7:13:17:
be:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4A:04:7D:EF:2F:C1:D8:9B:C0:46:F1:AE:A5:51:03:3D:95:1E:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D18D85AC16811EE9A789BBF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.45.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:b7:9b:77:f1:29:af:82:5b:fb:01:cc:ff:0b:73:64:ea:e2:
df:fc:db:28:da:a8:10:c6:95:95:79:de:69:6c:d4:3a:85:b5:
d9:73:15:79:bc:9b:4b:9b:dd:0d:48:90:22:12:85:79:cb:57:
1f:aa:0e:17:34:01:dd:50:71:55:62:3c:b0:25:e0:a1:c6:ba:
57:48:f1:6e:4c:3d:28:6c:01:c6:9a:b5:6c:f7:2e:fc:27:5b:
e6:52:0f:0c:ba:16:49:1a:c2:36:71:04:b3:30:1c:54:e5:d3:
6c:31:7f:a6:65:fb:ed:bc:e2:d5:51:c6:c3:5b:16:d5:41:43:
0c:6a:84:96:4d:df:80:cd:d2:d7:f0:72:d5:a9:3b:21:e1:f3:
82:c2:3d:eb:19:a4:30:27:d2:16:0a:24:f9:13:d7:64:39:c3:
1e:1d:6e:d3:c7:06:83:23:5d:84:c6:67:ff:2b:c3:50:f0:87:
bd:6c:ba:e5:40:2b:e8:9c:95:6f:9d:ee:25:30:2b:c4:0a:44:
e6:42:da:e4:f4:ce:f0:2f:a7:12:fa:02:8e:14:b8:b8:78:99:
07:e1:22:41:44:0c:b6:3c:93:be:a1:33:92:db:e5:15:6c:cb:
dc:65:d5:36:a6:75:ff:5f:9d:73:6b:16:d0:5a:2d:a4:6d:2a:
34:a0:97:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:54 2024 by rpki-client on console-ams.rpki-client.org