Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/980F1EC0C16811EE9B26F7BF775412E6.roa
File: 980F1EC0C16811EE9B26F7BF775412E6.roa (raw, json)
Hash identifier: vxAgAbr684IDxQqbTZhUIeSr9UGkRUTzLm4GB8LBUUk=
Subject key identifier: 73:81:87:6B:42:B9:8D:A6:D2:88:ED:20:3E:9F:10:19:5C:97:46:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C5B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/980F1EC0C16811EE9B26F7BF775412E6.roa
Signing time: Fri 02 Feb 2024 01:15:47 +0000
ROA not before: Fri 02 Feb 2024 01:15:43 +0000
ROA not after: Thu 08 Aug 2024 01:15:43 +0000
asID: 133199
IP address blocks: 45.207.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27739 (0x6c5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:15:43 2024 GMT
Not After : Aug 8 01:15:43 2024 GMT
Subject: CN=65bc4243-af4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:64:11:e4:59:c1:59:58:13:eb:e0:4e:59:39:
ce:8b:e1:bf:c4:55:76:65:f8:9f:b3:d4:8f:1f:2d:
86:a1:41:cc:4c:88:ac:70:cc:5c:88:61:8d:0b:54:
4f:0d:a3:52:d7:fa:2e:10:66:72:9b:77:20:55:94:
a9:73:c7:c1:6d:0b:96:4d:b1:b0:dd:6f:ef:53:21:
e9:6e:ca:de:d0:0a:07:35:b7:0b:48:93:66:81:87:
76:95:a3:e7:b9:78:ad:c5:b9:96:26:71:9c:23:06:
eb:df:ab:e6:c6:68:07:e0:55:1c:cf:3e:91:68:ad:
58:c7:de:02:93:fd:90:9b:cc:41:55:31:5a:79:91:
57:cf:f2:00:70:6d:72:5b:50:5d:b2:98:22:e9:6a:
2c:a2:3e:65:1d:a9:61:cb:c9:c3:cd:e7:10:13:99:
e3:4d:bf:ed:2f:13:9b:d5:24:ed:7f:0b:9c:3a:0b:
10:5d:e1:16:f1:f9:6c:e6:53:67:51:dc:1e:74:12:
24:0f:98:2d:66:25:0e:d8:a6:43:ce:68:9b:f0:84:
dc:44:33:3b:25:1e:b7:97:9f:6e:62:73:e4:78:38:
a5:53:96:63:23:f7:ba:77:77:de:92:6f:75:32:a9:
19:db:6a:7f:62:f6:36:b6:92:92:87:f9:2b:d7:aa:
dd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:81:87:6B:42:B9:8D:A6:D2:88:ED:20:3E:9F:10:19:5C:97:46:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/980F1EC0C16811EE9B26F7BF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.47.0/24
Signature Algorithm: sha256WithRSAEncryption
67:3b:cb:22:54:d3:5c:d6:44:6e:d5:c9:e7:c5:29:02:79:f7:
22:72:0e:50:43:79:ae:ad:85:53:0a:72:a4:62:32:6e:56:20:
2c:11:65:e2:fa:d0:77:ff:e9:ba:7e:27:b6:0d:8c:41:f3:48:
7a:07:18:34:49:4f:01:59:03:c0:ac:1d:2c:9f:6b:dc:fd:68:
21:0f:02:6e:8e:4e:2a:e8:b7:55:f5:6b:fc:6b:b6:37:75:90:
48:b2:52:5d:f9:12:a6:d3:20:51:ed:2b:69:e3:42:eb:dd:9a:
aa:5f:77:bf:3e:81:3e:e9:65:51:dd:e7:37:d8:ed:f8:0b:46:
e3:ea:df:bc:e2:92:c4:4c:ca:b8:1e:56:e3:6e:18:9e:08:f7:
cb:67:87:b7:a8:b5:86:32:9f:c3:5d:76:b7:fc:62:31:f7:e1:
87:f6:6e:47:ee:c9:73:f1:00:34:a9:4a:03:a5:3a:e3:b8:13:
fb:59:dc:51:d2:ed:89:85:ea:22:5b:a2:25:72:e2:84:35:5f:
ed:1c:05:c8:31:ab:20:c9:8e:0c:7e:38:64:82:fc:df:50:bc:
74:cb:b4:0c:ed:d2:0e:bd:78:d6:ed:b8:3c:ff:f9:02:e7:fe:
01:48:48:f0:99:b2:17:77:b4:e3:3e:9d:0b:5f:d0:49:3b:28:
97:36:39:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org