Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C5C05147EC111EEB118BD754AD9E6FC.roa
File: 8C5C05147EC111EEB118BD754AD9E6FC.roa (raw, json)
Hash identifier: McJf6vOYgyJjCy9cwUzyzu+y9HWBRC0ep8MJGnoE1Ww=
Subject key identifier: E6:8C:7B:2D:DB:1D:93:A3:68:8C:65:49:56:8D:6D:8F:10:9A:07:69
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 451B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C5C05147EC111EEB118BD754AD9E6FC.roa
Signing time: Thu 09 Nov 2023 05:33:45 +0000
ROA not before: Thu 09 Nov 2023 05:33:41 +0000
ROA not after: Thu 07 Nov 2024 05:33:41 +0000
asID: 133847
IP address blocks: 45.200.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17691 (0x451b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 05:33:41 2023 GMT
Not After : Nov 7 05:33:41 2024 GMT
Subject: CN=654c6f38-2465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:53:8d:39:64:a4:af:d9:b7:a9:28:8a:bb:6b:
02:b0:32:8c:b0:da:df:49:7d:c6:93:81:2e:a3:3c:
83:8e:bf:0b:72:6f:ce:f6:75:62:e0:2a:ad:3e:17:
2d:3a:8b:4f:d2:d4:c2:76:ff:e1:09:19:e1:71:87:
b6:71:3e:86:75:dd:9b:89:24:b3:f6:6d:33:d4:0b:
01:28:9e:24:60:da:69:71:88:f5:19:96:ea:d2:1f:
46:81:40:6e:3a:2b:98:d3:72:6a:9c:3f:46:04:0b:
1d:ff:b4:19:bd:32:14:ad:18:0c:6f:f8:79:bf:56:
8b:a6:8e:04:74:cb:43:88:72:c3:7a:81:74:ad:b4:
9a:78:7e:4f:d1:38:e7:72:eb:cc:7b:94:17:a8:c7:
a8:c7:74:3c:e2:10:55:63:da:87:4b:0d:0d:9a:31:
5f:31:10:f9:6b:14:d0:d2:57:17:95:80:54:39:c8:
73:bf:bd:da:d1:7f:d8:0c:89:71:90:3f:7d:70:d6:
24:76:8d:71:67:f0:f3:b4:3b:c8:bb:d5:5b:99:19:
9c:29:ad:4d:88:75:8d:5f:e5:61:ed:7f:78:73:9c:
5d:ab:81:68:dc:f7:7f:9d:60:bd:c0:80:fe:24:d4:
e3:97:47:d5:eb:85:dc:97:f9:aa:3d:78:16:2a:04:
35:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:8C:7B:2D:DB:1D:93:A3:68:8C:65:49:56:8D:6D:8F:10:9A:07:69
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C5C05147EC111EEB118BD754AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.66.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:3f:55:0f:20:f0:d4:c6:04:a4:9a:09:2f:a4:93:a9:d9:22:
f5:a3:d8:74:7e:b3:cd:a0:9c:96:94:70:4a:1a:d8:66:aa:fa:
f0:b9:7d:3b:41:b2:0a:b8:75:43:7a:91:7a:08:a3:7f:11:41:
9a:2e:2b:96:87:3a:2f:7c:cf:51:1c:9d:51:fd:64:cf:41:36:
29:53:da:f1:81:d6:1f:83:bf:a2:43:39:a9:05:50:66:78:9d:
c1:ec:ab:27:46:1e:6f:c5:8c:94:32:51:39:4b:87:62:1d:61:
97:3f:1c:43:ab:df:3d:ec:ee:b1:31:22:8d:f9:da:2a:a9:c8:
c6:49:1a:aa:6f:94:2e:d2:a7:15:1d:e2:61:a5:10:92:4f:70:
b3:ec:f0:a7:74:34:0d:ff:fc:7f:6c:ae:32:35:52:87:04:4c:
e5:02:46:98:0b:28:c8:d6:8e:8f:cd:9c:9f:7e:83:49:2f:e9:
da:4a:1e:14:f8:b9:b0:1f:cb:3e:48:1b:56:51:7f:6e:bb:6f:
ed:f8:7d:b1:ec:37:9c:83:82:74:66:f6:f8:55:86:ec:ec:2f:
7a:46:56:55:7b:15:2c:f0:75:45:90:3f:6b:a4:17:bf:70:88:
eb:09:4f:8a:b5:54:a3:93:ea:7b:1c:5c:31:9c:c4:b3:5b:32:
cd:12:4f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:49 2024 by rpki-client on console-ams.rpki-client.org