Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E12024C014411EFAA24E138017001B1.roa
File: 6E12024C014411EFAA24E138017001B1.roa (raw, json)
Hash identifier: uSesyWxrLlfMCIjDLlAbPA2LABfALfxzojyNy5jR6Bg=
Subject key identifier: 0F:23:7C:35:CD:22:E5:AF:7C:33:9D:C5:F5:47:9B:37:7B:53:CC:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8416
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E12024C014411EFAA24E138017001B1.roa
Signing time: Tue 23 Apr 2024 07:38:09 +0000
ROA not before: Tue 23 Apr 2024 07:38:06 +0000
ROA not after: Sat 11 May 2024 07:38:06 +0000
asID: 7029
IP address blocks: 45.196.60.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33814 (0x8416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:38:06 2024 GMT
Not After : May 11 07:38:06 2024 GMT
Subject: CN=66276561-9cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:eb:ad:31:2b:55:15:5e:18:7e:e2:d1:0e:ed:
e3:31:91:40:c3:f3:15:e1:eb:f8:19:92:ec:b8:ee:
1c:59:1c:7c:c5:ac:c2:d4:13:0d:e2:28:70:c7:5f:
95:b2:0d:82:e0:69:50:c4:99:d7:08:3a:bd:48:5b:
a4:6e:1e:db:10:c3:47:80:98:7d:37:f2:eb:7a:8b:
c6:fd:5f:e5:68:49:01:0a:99:b3:69:f7:33:95:ec:
b5:0a:f2:3d:e5:53:5b:31:23:5b:a7:95:c1:34:46:
6b:26:d0:e7:45:66:99:e3:e0:3c:f8:fe:4e:da:5c:
9b:b7:9f:f7:25:10:91:34:c2:8c:1e:af:58:36:15:
a0:a0:f7:68:d9:1e:77:ab:94:57:a1:34:05:5b:60:
7a:16:42:62:99:53:d9:8d:03:b8:58:90:c1:37:74:
ea:b7:b7:35:7b:17:e4:77:5a:2e:7b:b2:22:51:99:
ba:02:c3:ba:9f:c2:91:a7:85:e2:9b:82:f7:65:c4:
72:4e:e2:d7:1a:c5:12:2d:34:69:b4:01:bc:06:ca:
d6:f6:c4:2f:59:bd:8d:f0:84:ab:0a:cd:b5:45:ea:
92:84:41:bf:ba:61:4f:61:27:c8:d8:a2:bf:6b:9d:
a7:14:e9:80:70:99:0f:6b:98:23:df:a2:f9:c9:9d:
d1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:23:7C:35:CD:22:E5:AF:7C:33:9D:C5:F5:47:9B:37:7B:53:CC:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E12024C014411EFAA24E138017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.60.0/22
Signature Algorithm: sha256WithRSAEncryption
85:f8:46:16:d2:2d:eb:1f:e7:8d:dc:b4:f7:c9:54:ef:5f:4e:
b9:31:b7:2e:22:46:fe:bc:14:ae:38:d0:b0:ef:26:b0:51:6a:
0a:b9:ab:67:7f:80:9e:57:ce:46:63:54:10:45:df:5e:82:55:
ac:12:4a:12:e0:7d:c0:ab:07:93:6e:02:3f:d3:fb:d8:0e:3a:
05:e5:3a:cb:30:de:40:a3:39:56:8a:fe:d7:de:f7:e7:1a:a4:
18:2f:be:28:61:a5:e5:86:0d:71:c3:21:e8:23:ad:ef:c0:bc:
89:6a:6d:e6:37:68:0d:00:ac:ba:42:d1:22:5d:71:88:2f:18:
11:c6:5c:94:33:de:65:b1:9b:ce:44:19:35:7d:6a:c3:f5:03:
de:67:58:24:29:fb:9a:0a:a8:88:12:07:47:9d:db:32:e6:0d:
a5:08:79:f7:07:b4:4c:c2:9a:38:65:5a:a0:cd:ea:47:93:43:
4c:78:e8:79:7e:d4:5e:d2:ea:56:bf:e2:5b:97:66:85:75:88:
a6:72:2d:82:50:dd:0e:93:a8:b6:56:ea:bc:06:a9:d3:31:88:
29:83:ab:30:c9:a0:46:22:36:06:49:76:3f:bf:f6:4a:ad:6d:
44:e9:15:fe:68:21:72:cb:ac:ff:53:e5:07:b5:83:c0:58:4b:
31:35:4a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org