Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D80DB1044D711EFA9D5F470762E951A.roa
File: 6D80DB1044D711EFA9D5F470762E951A.roa (raw, json)
Hash identifier: PuorRBlJ3SJ/No8TW+q6FXKpFRh5mLv+IP3bIZpWZ40=
Subject key identifier: 39:B5:84:33:91:A7:EB:39:BE:11:02:E1:71:B4:11:90:D1:48:46:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D45
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D80DB1044D711EFA9D5F470762E951A.roa
Signing time: Thu 18 Jul 2024 07:29:12 +0000
ROA not before: Thu 18 Jul 2024 07:29:08 +0000
ROA not after: Sat 19 Jul 2025 07:29:08 +0000
asID: 136744
IP address blocks: 45.206.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40261 (0x9d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 18 07:29:08 2024 GMT
Not After : Jul 19 07:29:08 2025 GMT
Subject: CN=6698c448-8e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:73:8c:c0:30:c2:a0:ee:66:1d:b2:ae:a4:98:
e5:55:50:ba:e4:cd:f1:a5:ed:24:cf:9f:d4:71:a3:
26:6c:b1:4e:75:6d:60:82:ba:d4:cf:cc:a1:cd:88:
7e:5d:39:a3:41:16:2b:fb:cf:b4:d7:fe:80:ea:47:
f6:0e:7c:fb:5e:1f:15:6f:42:f4:dc:81:b3:57:68:
6c:17:d0:97:7c:bc:5e:66:6d:41:bd:1c:cf:95:b6:
26:af:cd:6b:16:26:32:67:99:d7:e3:d6:67:a4:b9:
57:f6:5a:83:0a:ba:a6:02:73:37:a4:c7:91:eb:16:
a5:1d:6a:92:39:42:88:76:79:8f:85:28:f3:5a:63:
8b:b6:d3:49:da:ac:bb:84:a6:7a:34:39:f7:68:41:
ce:5f:98:af:fe:8a:bd:39:e1:c3:f2:4e:3f:1f:b2:
52:0b:93:35:aa:1e:ca:d5:e2:d7:a7:ac:04:e0:d2:
ed:16:66:10:be:f1:a8:bc:3e:34:ce:c3:97:10:cd:
52:9d:ad:e7:0b:9e:be:d5:39:4f:a3:f1:31:93:a1:
34:0e:4b:32:a0:11:16:75:3a:d3:c2:99:33:f4:12:
29:1f:0a:87:13:d4:9d:e1:4e:41:ad:66:7f:d6:6d:
6d:2a:b7:08:00:e0:d2:f6:47:8e:67:5b:f2:01:20:
97:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B5:84:33:91:A7:EB:39:BE:11:02:E1:71:B4:11:90:D1:48:46:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D80DB1044D711EFA9D5F470762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.60.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:12:a3:74:7f:c7:db:fc:40:df:b4:99:57:08:7e:c1:b8:53:
e6:37:48:0b:bf:2a:fa:4b:d0:1e:8f:98:df:70:51:12:5a:52:
4e:bb:c3:c7:f6:bd:da:d8:a6:0d:eb:ca:5b:e7:66:75:f0:1b:
a3:88:fe:6f:60:cd:86:7c:3c:b4:8d:87:0a:79:57:bb:16:f0:
30:b6:09:9d:6b:ab:21:c1:05:4b:41:4d:cd:4c:f9:b9:29:b4:
49:1a:7b:7e:7d:73:46:1d:83:31:dc:4f:d8:91:96:f8:3b:a4:
ce:ac:68:08:e1:91:7c:22:f6:da:fe:1c:ff:0c:fd:78:27:ee:
d2:16:d6:3d:16:00:4c:fd:c1:dd:c9:44:60:02:7f:9f:21:4d:
77:c8:15:56:9c:6b:4b:59:f2:f7:48:98:3b:c5:39:e4:2e:67:
e4:21:57:b0:3f:6c:2e:e5:93:2c:c3:e5:05:dd:4d:6a:fc:8a:
d6:d1:ae:fc:2d:94:5d:49:f6:64:80:12:00:3e:58:22:22:b0:
ec:b8:d8:0e:4b:ca:e1:81:67:16:a2:42:b2:3b:55:20:f9:b0:
5e:b9:6c:e9:85:94:50:b0:d1:8c:7f:73:60:f8:06:d0:47:6f:
db:9c:0e:7f:7c:03:09:51:cc:89:c3:e2:2e:68:df:52:13:2b:
37:e4:cc:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:35 2024 by rpki-client on console-ams.rpki-client.org