Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7AA8E9D8A39011EEA6DED617D25BE465.roa
File: 7AA8E9D8A39011EEA6DED617D25BE465.roa (raw, json)
Hash identifier: tZ9mqxqhGZ05T+gNVjx6A47R+mPAX1Fd3riFfw3gBXo=
Subject key identifier: 19:9A:C5:E1:5A:5F:C3:B3:1B:5C:49:AF:43:93:39:AE:EB:24:87:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5939
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7AA8E9D8A39011EEA6DED617D25BE465.roa
Signing time: Tue 26 Dec 2023 01:45:42 +0000
ROA not before: Tue 26 Dec 2023 01:45:39 +0000
ROA not after: Wed 02 Oct 2024 01:45:39 +0000
asID: 393294
IP address blocks: 45.199.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22841 (0x5939)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 26 01:45:39 2023 GMT
Not After : Oct 2 01:45:39 2024 GMT
Subject: CN=658a3046-34b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f3:4d:09:b8:29:55:24:3e:da:3e:f2:05:ed:
53:74:4a:f8:8e:55:6b:33:f9:f2:48:31:04:23:19:
22:f6:26:2d:5b:04:23:c4:fd:89:fa:ff:2c:da:7b:
3e:a8:13:ba:81:93:bd:7d:3c:cf:f9:a0:d2:4a:22:
4a:42:5a:f5:4a:60:4a:f3:ae:78:ab:81:95:b1:c2:
30:d5:e4:66:0c:23:4b:0b:a6:cd:92:bd:ef:9d:9b:
58:18:8f:5d:fe:b5:95:cb:0b:25:49:d0:b9:06:55:
80:46:3e:d3:db:16:11:68:46:59:bb:b4:c4:18:6d:
c7:bb:46:fe:88:cd:ff:dd:24:5e:89:23:8a:08:f3:
22:ef:16:a6:48:6a:99:ac:27:4f:e2:88:6a:51:75:
68:d2:46:d9:2d:b2:84:9e:84:bc:d6:99:60:7e:41:
dd:0b:67:c8:35:49:b4:29:e6:a5:9e:1a:d7:5e:92:
97:16:97:48:54:67:4e:e0:bd:db:aa:7a:36:1a:5f:
d5:d0:cd:da:8f:90:9e:52:cf:a2:ab:30:64:9a:20:
e8:e7:44:0d:97:e8:3d:44:26:d0:f9:4f:7f:5e:12:
4a:49:57:22:6d:3c:2c:47:26:f9:35:55:99:92:8f:
55:8a:f9:c5:3d:30:71:43:78:ea:d4:ae:18:ab:d9:
6b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9A:C5:E1:5A:5F:C3:B3:1B:5C:49:AF:43:93:39:AE:EB:24:87:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7AA8E9D8A39011EEA6DED617D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.173.0/24
Signature Algorithm: sha256WithRSAEncryption
47:cb:bb:58:7c:73:f3:2c:e3:79:8d:ed:ea:ad:4d:22:a5:00:
d5:20:0f:3c:15:9b:2d:76:bf:00:47:75:65:71:bb:ff:f7:ad:
35:ce:8e:45:1f:52:b8:ed:e6:5a:97:25:48:41:9c:45:1f:ec:
1a:c5:a1:dd:50:f6:e2:9c:9a:aa:cb:8e:96:93:1c:2b:d6:5e:
00:11:fb:ee:8a:04:35:3c:65:d6:2a:81:c3:8e:ef:cd:a6:b3:
c8:41:cb:02:4e:0a:d7:51:99:63:80:41:5b:67:2c:52:93:ff:
31:35:87:f4:82:95:70:9f:cf:cc:a2:66:b3:bd:cd:57:99:a8:
f7:26:14:eb:f8:af:03:f0:87:49:1f:ea:11:8c:ed:0c:79:42:
fb:f8:03:72:d8:ff:53:e3:d0:80:74:f3:51:c5:40:86:41:08:
83:e4:20:0c:6b:03:3f:92:49:1b:c5:53:79:59:a6:5d:59:2c:
e2:6d:60:59:e2:60:90:15:7e:fb:96:a4:31:c0:b9:c4:35:1b:
89:b6:bf:c1:c8:9d:17:e2:fd:01:f8:f8:f1:28:8a:ef:13:72:
73:42:d6:0b:02:ab:f8:85:fa:68:c9:f5:7d:3f:d0:50:d9:88:
c7:4d:63:c8:4e:e1:98:1c:de:31:1e:cf:59:14:0f:32:d1:20:
47:6b:a6:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:12 2024 by rpki-client on console-fra.rpki-client.org