Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/776E156883C911EEBA5540894AD9E6FC.roa
File: 776E156883C911EEBA5540894AD9E6FC.roa (raw, json)
Hash identifier: JPF7gH2hVZsUxjzBlIVVy/2bDgpY25Le6gR96G7dZaE=
Subject key identifier: A9:89:1F:A9:5C:27:D7:42:CC:44:91:87:62:54:A0:3A:28:55:55:BE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 492D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/776E156883C911EEBA5540894AD9E6FC.roa
Signing time: Wed 15 Nov 2023 15:13:01 +0000
ROA not before: Wed 15 Nov 2023 15:12:58 +0000
ROA not after: Tue 12 Nov 2024 15:12:58 +0000
asID: 397630
IP address blocks: 45.199.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18733 (0x492d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 15:12:58 2023 GMT
Not After : Nov 12 15:12:58 2024 GMT
Subject: CN=6554dffd-764e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f5:68:b9:5a:b5:cd:6e:60:32:06:38:13:7f:
08:52:82:18:41:eb:e3:e0:53:be:08:ea:7a:71:1e:
43:7c:a3:19:12:3e:e7:cc:5c:a0:ea:be:09:87:be:
b7:4c:1f:1f:2a:bc:4d:48:d3:af:e3:20:d6:7c:48:
92:cd:2c:1d:ff:52:5c:a3:24:e7:79:0a:48:a9:84:
c9:9f:6b:d7:c1:dd:9d:2d:f4:47:b9:00:42:45:f7:
22:d6:09:4e:e9:d4:66:b9:18:41:8b:56:b6:5b:b6:
e2:40:16:be:d7:42:7c:09:96:52:64:e4:01:26:af:
ad:83:46:75:bb:b2:dd:16:af:f0:60:43:4b:0e:ef:
24:06:25:9d:a3:75:2a:62:2d:a7:d8:c2:c3:93:b6:
08:e9:2e:19:9b:85:fa:3e:e1:c5:40:44:8f:64:78:
16:58:08:46:8f:94:e2:50:b7:53:e2:e1:10:67:e4:
d6:f9:31:05:dc:c3:32:d8:c9:fc:5d:ea:20:75:62:
b0:76:fc:e9:ed:7c:5f:38:2d:35:dc:36:dc:dc:1e:
43:7d:5e:8d:54:56:4f:f8:09:64:dc:13:b5:43:23:
a0:85:99:24:ef:0d:04:33:c1:8d:92:de:0c:b8:a9:
72:e6:56:f7:b4:50:28:db:1d:b4:c7:6d:2e:6a:c0:
a9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:89:1F:A9:5C:27:D7:42:CC:44:91:87:62:54:A0:3A:28:55:55:BE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/776E156883C911EEBA5540894AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.130.0/24
Signature Algorithm: sha256WithRSAEncryption
40:56:17:35:bf:c0:7c:c1:08:e6:16:25:df:fa:ce:d6:00:f0:
de:db:f9:2d:45:03:71:ad:a5:77:46:bc:e5:88:b8:2d:31:c9:
56:64:b9:14:e3:f4:a5:da:33:05:6c:01:ab:2a:fd:d1:27:2e:
2a:b3:7b:18:28:c0:f5:06:1b:02:ef:ff:2d:73:0a:01:0a:ff:
50:3f:93:7e:79:bd:45:4d:cb:b6:d6:c3:c6:a9:9a:bf:86:7a:
ee:22:60:7d:68:21:aa:0c:5f:76:f1:96:6b:9b:fd:3e:7e:a1:
10:04:f0:51:60:5c:a3:8f:95:fc:f5:fc:21:a1:13:20:62:67:
cc:0e:9c:16:7d:02:44:d2:a7:5e:9b:bb:5f:e0:80:fa:94:80:
31:87:28:14:83:5a:b7:11:aa:bb:20:7b:24:d3:2f:22:17:95:
3c:b9:e5:b9:f2:fe:fe:0e:4c:3a:1b:d7:13:47:01:a5:92:73:
39:31:d3:3d:65:d0:eb:f8:13:46:37:6f:cc:a3:ce:d9:3a:1f:
af:a8:39:cf:d1:c1:ca:a7:1b:85:8a:f4:b8:7a:2f:00:80:7d:
93:90:d3:df:24:30:a9:fa:70:5d:f6:d5:ce:51:1c:d6:43:39:
f2:88:01:4d:04:65:56:ea:be:b7:52:4c:42:9f:64:31:e1:db:
cc:cd:23:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org