Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F4CAA6CE4F611EE940CAC4C775412E6.roa
File: 8F4CAA6CE4F611EE940CAC4C775412E6.roa (raw, json)
Hash identifier: IBnjyDlIQW50J/BYAiqURFcCbBZMFRSrycp3qErZWoc=
Subject key identifier: CA:53:A8:27:09:50:16:60:77:27:95:F5:4C:D0:66:AC:2D:53:AE:A1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7F37
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F4CAA6CE4F611EE940CAC4C775412E6.roa
Signing time: Mon 18 Mar 2024 07:10:11 +0000
ROA not before: Mon 18 Mar 2024 07:10:08 +0000
ROA not after: Sat 20 Apr 2024 07:10:08 +0000
asID: 21859
IP address blocks: 45.204.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 07:10:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32567 (0x7f37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 18 07:10:08 2024 GMT
Not After : Apr 20 07:10:08 2024 GMT
Subject: CN=65f7e8d3-ea87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:80:69:5d:2a:2d:c6:9a:82:bf:d9:2d:54:3d:
23:3d:26:a8:f0:d5:e2:55:53:cf:bc:1e:79:6f:f6:
2a:1a:9e:f4:8d:a4:d5:d7:e5:23:a4:16:d8:52:fb:
1d:4b:14:0d:ff:16:09:a4:c8:0b:4e:a8:97:50:8f:
df:f8:c4:6c:96:f3:4e:e6:96:fd:f1:8f:02:fb:eb:
37:ad:32:07:00:47:9a:a0:db:35:d9:e6:d8:44:3c:
69:a9:0e:52:c5:41:96:f8:be:62:a3:15:5c:75:ec:
a9:71:91:0b:c1:7f:c1:2b:e0:b7:f3:ae:0e:36:e6:
0f:ae:f8:ef:c8:93:f7:93:eb:f7:71:c1:bb:eb:b2:
f5:bc:0e:b7:6a:a5:ee:19:98:42:ef:90:e1:1e:9b:
9f:66:c7:90:40:f4:bf:61:49:a1:bf:7f:59:8d:59:
7b:45:85:e9:db:0c:72:4d:4b:ef:59:e2:10:a1:01:
73:51:68:ab:bc:78:80:d2:77:4c:bd:c8:27:b4:f2:
f9:31:a8:85:71:66:0c:bf:be:48:71:69:90:c0:68:
2d:ea:44:a7:64:3c:67:21:12:ca:f1:38:4e:ed:e6:
ed:0f:bc:01:67:f8:b7:7f:cc:46:75:b3:66:9f:02:
9f:90:f4:a6:cc:5e:07:bd:30:6d:29:a9:00:69:e2:
b5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:53:A8:27:09:50:16:60:77:27:95:F5:4C:D0:66:AC:2D:53:AE:A1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F4CAA6CE4F611EE940CAC4C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.77.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:d2:0a:30:d0:f5:1b:de:42:fa:4c:d9:a9:63:76:f9:fd:46:
9e:b1:26:e0:d4:93:20:1a:ab:1d:2e:1a:52:94:42:31:65:a1:
4f:c2:ec:0a:22:c6:b0:6c:ad:28:10:a0:13:90:87:bb:3e:d4:
7b:c0:5a:ba:2c:8f:10:c0:67:e9:34:30:62:58:5a:fb:a6:09:
53:94:d4:4c:d2:83:83:36:40:39:0c:3b:08:e3:39:43:cf:fa:
c8:87:a9:ee:84:ea:70:25:bd:ef:1f:01:d0:73:82:3f:3a:cb:
0e:47:cf:7c:43:35:34:e0:18:c1:f6:c9:74:bf:93:78:01:13:
9f:14:5c:41:27:e6:7d:91:41:f0:4e:ff:27:35:d6:b1:b9:fd:
1c:63:46:61:e7:c3:5a:ee:a7:de:a6:19:c0:bc:65:f0:00:03:
81:e9:4d:f6:18:b3:dc:f2:a0:62:24:2a:66:38:c1:bc:5a:68:
9d:e5:5b:cc:21:22:f3:f7:3c:49:2f:11:7e:cb:ad:bd:6a:81:
56:02:e9:5e:8c:75:a7:c9:7b:68:6a:20:a9:6f:37:f1:73:11:
b2:7c:87:77:af:ef:49:0c:3f:ca:f1:73:41:ce:30:d8:ea:49:
9e:19:40:ce:0a:74:1c:fb:8c:3a:14:f8:e9:de:9f:2a:d1:cc:
ba:7d:22:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:39:30 2024 by rpki-client on console-ams.rpki-client.org