Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F3C7554A38F11EE91DB2715D25BE465.roa
File: 9F3C7554A38F11EE91DB2715D25BE465.roa (raw, json)
Hash identifier: XTgxXAdGIFoW5E3u8JwPmCZghoBzl7hPAxSPSZud7tA=
Subject key identifier: 8B:B9:3E:2D:0E:AE:26:EA:8B:52:B2:90:C8:6E:F5:26:19:E1:2B:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 592F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F3C7554A38F11EE91DB2715D25BE465.roa
Signing time: Tue 26 Dec 2023 01:39:34 +0000
ROA not before: Tue 26 Dec 2023 01:39:31 +0000
ROA not after: Wed 02 Oct 2024 01:39:31 +0000
asID: 393294
IP address blocks: 45.199.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22831 (0x592f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 26 01:39:31 2023 GMT
Not After : Oct 2 01:39:31 2024 GMT
Subject: CN=658a2ed6-c2f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:95:70:e7:55:91:d5:c2:45:d8:de:bc:21:ec:
4f:42:a2:26:78:b4:0c:b9:6b:dc:5e:6d:41:37:62:
53:27:5d:f5:11:21:bc:9a:7f:d8:89:56:28:dc:c2:
1c:91:eb:6e:6a:51:13:69:94:b5:36:1b:8e:26:81:
6b:72:70:9d:78:82:28:5a:2c:6f:65:da:6d:7e:14:
05:0a:d5:c2:ac:f2:5b:70:92:c3:e2:f3:a1:85:25:
fc:96:55:c1:ea:4b:0f:21:a8:7f:a4:52:dc:b6:15:
f7:6f:37:6e:25:3f:a9:c3:9d:c7:56:a3:fc:95:d4:
09:5c:b5:23:95:a4:45:7e:55:2f:b9:2c:6f:66:0f:
b9:46:8f:af:30:90:5a:63:dc:b8:cb:ab:ae:3f:8b:
b5:45:18:84:8a:42:ad:d2:ef:25:bc:d0:aa:80:1b:
f1:55:0d:f5:85:08:b4:16:76:ef:db:63:b2:87:85:
ff:09:b0:fe:f1:d4:a0:70:22:1e:13:e6:a7:d2:ad:
db:fa:79:8b:55:d9:42:c4:12:90:e9:46:c0:3a:8e:
38:29:b2:77:bc:9c:31:14:d0:07:b2:0e:a2:f6:fd:
53:b1:ba:4b:e5:14:12:26:e8:7f:df:87:ec:26:e5:
57:3e:ef:71:53:c6:3d:67:25:a6:d4:5b:35:45:21:
d6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B9:3E:2D:0E:AE:26:EA:8B:52:B2:90:C8:6E:F5:26:19:E1:2B:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F3C7554A38F11EE91DB2715D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.167.0/24
Signature Algorithm: sha256WithRSAEncryption
20:28:e2:81:9c:b8:8b:4a:02:4d:d3:0c:11:89:8e:de:d0:c8:
73:cc:c1:0a:5e:26:64:8c:3d:c1:18:55:7f:e1:22:83:c6:5a:
5f:24:62:45:81:27:dc:22:c8:7a:c6:62:5c:7a:a5:d2:40:c1:
63:10:56:7f:f6:9d:ac:48:df:c9:5d:76:3e:8e:78:fb:d7:55:
ce:83:23:5c:52:7f:db:d6:cb:cf:26:c2:74:4d:0e:db:e2:1d:
ec:4f:46:83:8c:de:84:18:74:fe:38:c0:09:78:0f:8a:03:66:
36:94:f3:43:9b:d2:34:dc:04:12:1f:d6:44:9f:a0:dd:e3:49:
09:d7:9e:0a:78:6c:6f:61:40:1d:b0:bb:3c:1a:14:95:12:a1:
79:f1:5b:ca:60:7c:20:8c:ba:e1:90:ad:cb:c2:e4:cf:2c:4b:
f1:35:9e:88:d1:8b:2a:42:d6:fe:a8:e2:13:2d:38:bc:58:3d:
4a:e9:0d:14:03:03:ac:c4:2c:96:14:f7:58:2b:8f:f0:69:d4:
31:43:bf:f5:4e:c8:a2:0f:7c:1a:58:ec:90:b2:dd:5a:a9:92:
58:85:2b:8d:3e:d5:59:95:1b:7f:22:08:3a:65:5c:84:e2:8b:
92:41:24:fe:18:42:53:3a:31:ef:b0:e7:96:f3:0b:7f:ab:91:
7c:32:9f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:13 2024 by rpki-client on console-fra.rpki-client.org