Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0D70DC483C911EEBD07C6894AD9E6FC.roa
File: A0D70DC483C911EEBD07C6894AD9E6FC.roa (raw, json)
Hash identifier: 6VJRIKwzqmg5NWc9LmcXsprM+Q4/h39AFiunwpI6YDU=
Subject key identifier: B3:5C:A8:70:D4:C2:57:A2:FA:03:9E:C5:19:49:EA:D3:24:5A:01:A6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 492F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0D70DC483C911EEBD07C6894AD9E6FC.roa
Signing time: Wed 15 Nov 2023 15:14:11 +0000
ROA not before: Wed 15 Nov 2023 15:14:07 +0000
ROA not after: Tue 12 Nov 2024 15:14:07 +0000
asID: 397630
IP address blocks: 45.199.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18735 (0x492f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 15:14:07 2023 GMT
Not After : Nov 12 15:14:07 2024 GMT
Subject: CN=6554e042-020f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:88:f9:ae:76:0f:41:be:d3:b0:e4:80:32:b2:
9d:67:6f:5e:61:15:35:56:51:6e:c8:d9:58:e9:aa:
13:8a:31:f1:d3:12:87:13:3a:ba:48:69:b2:6a:86:
f2:64:83:fe:1b:bd:5e:31:ee:eb:6c:81:03:64:df:
fd:60:a5:e3:51:91:e2:da:ba:eb:78:3d:09:a1:67:
18:2e:5e:d1:09:f4:e6:c2:49:65:c4:74:08:93:e7:
06:22:65:c4:b2:71:9c:b2:d5:57:83:3d:35:e9:a3:
23:bf:71:44:29:10:24:b7:32:87:c7:0d:99:f8:0a:
7d:59:3e:c5:86:a5:eb:d0:f1:bb:0c:65:f5:3b:df:
61:5f:ad:29:83:30:fa:ee:19:e1:bd:e8:00:41:0d:
0a:56:71:c0:12:2f:68:2b:e9:b2:b3:55:c8:76:77:
10:0c:26:66:9f:0d:8e:30:fa:a8:c1:62:5a:ba:1a:
bc:e6:0e:90:43:b3:0e:ec:59:48:f3:46:80:58:a3:
34:92:50:a4:d9:4e:4a:e7:b6:05:78:79:f0:61:13:
ee:bf:19:ee:4a:2d:13:fe:98:42:f5:5e:20:70:b0:
2a:02:58:e1:fa:94:0e:14:6d:00:46:be:58:c6:ff:
e8:45:e4:bf:cf:93:e7:f6:3f:65:20:93:74:bd:c1:
a5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5C:A8:70:D4:C2:57:A2:FA:03:9E:C5:19:49:EA:D3:24:5A:01:A6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0D70DC483C911EEBD07C6894AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.136.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:78:e9:84:51:44:57:c5:86:e0:13:ba:7e:df:73:cc:45:09:
79:57:5e:bd:b6:48:2e:23:bc:9b:9e:f4:01:7e:27:c9:94:38:
b2:93:3d:f5:40:d8:8c:7e:16:9e:10:e6:2c:d5:ed:7f:34:93:
42:39:b1:b9:36:73:46:0a:15:a0:9c:70:3a:57:44:64:be:8d:
fd:9a:28:fe:8f:7f:7e:e5:41:74:81:d4:a0:84:ba:3d:f2:a6:
ad:bc:83:c2:1c:80:96:6e:d4:51:c6:ac:4a:65:0e:18:9e:32:
c8:69:b6:f4:1c:b1:f7:ba:21:1c:3d:64:75:79:bc:d6:88:d0:
93:ef:8e:11:f8:dd:7c:44:13:0e:d0:d5:c8:03:1f:92:78:4e:
4f:54:fd:f4:45:f4:ff:6c:0e:af:14:34:dd:da:2b:96:4d:04:
48:e8:6f:26:29:db:8b:11:50:c4:8d:f8:dc:26:9e:34:1f:f0:
57:59:4e:27:1a:0f:99:78:70:c4:29:8a:4d:ae:6e:09:c1:c5:
84:e7:a6:ed:00:f2:c4:e8:57:6c:04:83:f6:0e:1e:73:40:37:
fe:d8:70:dc:39:3b:87:2c:cb:85:b3:01:fb:bd:8c:09:4e:49:
2a:d7:55:81:06:e0:6a:43:8b:ff:f2:b2:32:c1:63:72:5a:e0:
4b:dc:53:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org