Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EEA5AAA08E911EE8AEA0E834AD9E6FC.roa
File: 7EEA5AAA08E911EE8AEA0E834AD9E6FC.roa (raw, json)
Hash identifier: +T9FzAY04aCOma1+NC05O1GQdQ18GtXPSWdvEL6oj3A=
Subject key identifier: 77:14:70:CD:90:40:75:C5:8E:E4:49:D0:17:6C:2A:57:CD:2F:16:A4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2A83
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EEA5AAA08E911EE8AEA0E834AD9E6FC.roa
Signing time: Mon 12 Jun 2023 06:22:25 +0000
ROA not before: Mon 12 Jun 2023 06:22:21 +0000
ROA not after: Wed 15 May 2024 06:22:21 +0000
asID: 55720
IP address blocks: 45.204.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10883 (0x2a83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 06:22:21 2023 GMT
Not After : May 15 06:22:21 2024 GMT
Subject: CN=6486b9a0-b0cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d7:85:0d:ae:d6:e9:e7:44:a6:58:b9:b7:bc:
45:33:bf:23:52:93:e1:61:2b:db:3a:d0:a3:9a:92:
b0:7a:a7:83:38:91:23:68:bb:96:8e:03:3a:79:32:
8e:30:a3:75:90:07:05:cb:ad:d2:4f:c2:d1:be:a7:
5d:ec:49:bd:59:e9:0e:30:71:f1:de:12:ba:6b:16:
74:36:d2:30:af:26:98:4e:cc:84:51:70:ed:4e:7b:
86:86:06:bf:95:5a:94:f5:e1:64:df:cb:0b:db:4a:
ec:3c:be:6a:cd:e0:79:14:ac:4a:6d:df:88:b9:44:
9a:55:a4:71:d9:40:8d:bc:d9:5d:f9:02:d5:1f:72:
96:b3:a1:12:6b:2a:c7:0e:c1:8f:3d:15:1f:46:cd:
8d:21:93:88:eb:7b:08:31:d1:ca:1a:db:05:37:24:
53:42:2d:10:1d:f4:0e:72:97:60:1e:84:92:e7:a6:
26:5d:8b:15:84:5f:24:c4:11:b4:36:41:a1:e3:7b:
41:b1:44:22:bf:1f:e6:7a:82:3a:e8:0f:30:c9:c6:
88:45:6c:b4:39:8d:d7:e5:23:e7:c6:cf:6d:dd:29:
f1:a7:dc:9d:7b:56:f4:91:3a:a0:ca:92:50:af:ac:
81:ea:df:81:a3:93:2b:05:51:48:70:4a:6c:70:68:
b7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:14:70:CD:90:40:75:C5:8E:E4:49:D0:17:6C:2A:57:CD:2F:16:A4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EEA5AAA08E911EE8AEA0E834AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0c:c3:3f:94:9d:a5:37:32:d3:51:8d:59:f4:f0:31:63:f1:
37:76:0b:d8:93:b9:21:57:ce:26:fd:f4:d8:54:3b:90:c1:cd:
de:2a:ff:bb:02:26:76:c4:a5:a7:96:8c:f8:c2:34:4a:e7:de:
86:5b:85:da:fe:d1:ac:bf:3a:7e:75:42:45:f7:14:54:dc:ef:
7b:82:a8:3a:b5:26:e9:1c:5e:64:1f:ba:43:b6:18:10:09:b1:
88:5e:b1:ea:f5:26:ab:05:69:f8:ac:58:fb:1d:f8:45:54:63:
75:44:88:1f:cc:7e:6d:29:de:db:10:fc:65:3d:70:96:fe:4f:
9e:99:2d:1e:7f:32:02:75:1d:c9:7d:8a:51:45:78:28:69:a4:
03:5f:af:98:d9:50:a6:48:97:97:ae:7b:1d:f9:e5:24:e6:cc:
8b:cf:cc:d7:5a:d3:04:e8:c8:5f:49:d0:6f:55:35:5e:dc:7d:
fe:59:3b:d7:40:fc:28:95:67:df:bd:97:4f:61:93:bc:59:ca:
0c:26:33:88:29:06:97:c5:cb:32:23:bf:35:1d:e2:ab:8d:74:
40:89:f3:7b:6f:37:fc:86:b8:00:68:67:80:34:7d:e1:b8:11:
b3:22:49:9d:10:84:c3:c9:09:55:d1:92:21:e7:1c:0a:f0:9f:
8a:02:5c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 01:58:04 2024 by rpki-client on console-fra.rpki-client.org