Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F3B731A278311EE8255AF214AD9E6FC.roa
File: 6F3B731A278311EE8255AF214AD9E6FC.roa (raw, json)
Hash identifier: Wg0rihq8r9kDu845htR9R6ldwgNkmG5upSdo2EOd5v8=
Subject key identifier: 69:C2:4B:2F:86:DB:C2:AA:A0:28:32:C2:6E:48:0F:12:1F:28:F6:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 31D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F3B731A278311EE8255AF214AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:59:56 +0000
ROA not before: Fri 21 Jul 2023 04:59:52 +0000
ROA not after: Thu 13 Jun 2024 04:59:52 +0000
asID: 5065
IP address blocks: 45.202.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12757 (0x31d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 04:59:52 2023 GMT
Not After : Jun 13 04:59:52 2024 GMT
Subject: CN=64ba10cb-8b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:93:bf:4f:b3:0f:a2:6c:2e:55:91:64:bc:2e:
5b:92:7c:87:d3:0c:54:c9:6a:53:cf:30:41:71:e6:
e0:57:4a:59:63:62:44:71:75:24:fd:22:32:d9:e9:
4e:33:d6:83:27:87:a2:60:77:72:c7:62:42:b2:cb:
59:1c:cf:b4:1c:61:1e:2c:45:66:28:c8:2c:8d:22:
80:ef:54:eb:16:ac:6b:40:18:77:e2:90:a4:d3:1e:
8a:44:59:4a:a0:27:18:e3:13:f1:56:cb:aa:07:7e:
40:15:87:f7:d7:af:c7:7d:0e:00:fa:59:0b:74:0f:
f1:a8:a6:46:ed:84:49:86:23:ae:eb:bb:4e:e9:ff:
1b:73:c6:c3:56:92:73:63:e8:8e:5f:17:ec:86:0b:
55:2f:d8:d2:10:ba:b7:6a:24:cf:6a:b9:46:32:80:
94:f1:a3:5b:f0:34:43:f0:b5:1e:43:b4:63:31:bf:
1f:6c:c7:5c:2e:17:d7:d4:c5:30:5c:1b:79:38:89:
04:d8:ab:f6:40:f2:9a:6a:e8:f5:a8:f3:79:d9:55:
bc:ee:23:0c:3a:f9:53:5d:2a:f9:c9:4b:a6:41:b0:
91:9f:0b:dc:06:dd:83:db:c8:df:ca:cd:12:0f:7a:
46:dc:fd:d5:6b:e1:f5:41:76:47:ea:af:6e:88:a9:
19:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C2:4B:2F:86:DB:C2:AA:A0:28:32:C2:6E:48:0F:12:1F:28:F6:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F3B731A278311EE8255AF214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.7.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:32:4a:e1:46:31:f5:ee:3f:1f:43:4d:1d:53:db:5c:39:28:
dd:33:cb:95:f8:50:19:d8:5d:32:d0:b9:d4:86:96:8e:7d:64:
9d:55:3a:c9:13:02:64:66:11:ba:7d:2c:cd:39:e1:f5:e9:55:
f4:5c:6a:03:64:b2:2a:f6:f3:57:5e:ae:6a:20:5c:e0:f3:6c:
49:b5:42:9a:ee:6f:2e:49:b3:98:f3:fe:d6:b6:cb:5b:50:1d:
af:ba:10:7e:2e:72:ac:bd:16:86:84:d3:39:81:64:d1:fe:e7:
59:2b:b9:52:51:ae:6b:57:c1:c3:02:8a:e3:5c:70:e2:45:97:
49:11:fc:db:09:b3:3f:03:2b:2e:a7:fa:bf:25:39:cc:e9:8b:
68:4d:48:2f:3f:06:7b:d0:6e:58:fe:d6:92:81:e1:a1:ac:57:
7f:68:be:2c:51:09:c2:ea:1b:ed:7e:7a:2e:a0:1a:d3:44:77:
9a:5b:2f:31:f1:92:41:ea:85:e4:45:ad:55:8f:6e:67:3a:65:
68:07:20:cd:92:87:6c:d3:f7:4b:ce:8b:fc:ef:fc:ed:71:a4:
9a:95:b9:dc:80:c0:81:36:91:e5:a7:9f:9a:28:a6:75:e0:cd:
84:8e:7e:23:4f:0e:1c:c2:28:7c:c8:ba:c6:d0:0b:25:bc:ab:
ab:fd:9c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:46 2024 by rpki-client on console-ams.rpki-client.org