Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6D2B10A037711EFAA647526017001B1.roa
File: A6D2B10A037711EFAA647526017001B1.roa (raw, json)
Hash identifier: sqgDumT+XqifOiXOOCtukobxOPjcXL1xvYZjBTi3FgA=
Subject key identifier: 4A:D0:FE:18:94:E1:13:DA:18:0D:82:22:07:1E:70:43:22:19:7E:9B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8558
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6D2B10A037711EFAA647526017001B1.roa
Signing time: Fri 26 Apr 2024 02:49:51 +0000
ROA not before: Fri 26 Apr 2024 02:49:47 +0000
ROA not after: Wed 16 Apr 2025 02:49:47 +0000
asID: 21859
IP address blocks: 45.199.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34136 (0x8558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 02:49:47 2024 GMT
Not After : Apr 16 02:49:47 2025 GMT
Subject: CN=662b164f-f37f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:88:93:0f:67:fe:23:68:4a:62:9e:7f:d8:0a:
74:4d:ed:66:19:08:62:0a:67:42:70:ee:b9:bd:f7:
5a:2b:e0:a2:f5:c5:06:10:e1:3c:61:70:73:fb:5a:
89:de:9f:85:ae:a3:f2:bb:5f:3d:d7:32:32:80:d9:
45:25:6e:10:a3:c3:16:65:ed:9c:e4:c7:76:7d:34:
e0:9f:d8:d3:1a:36:cf:13:89:34:1e:90:dd:96:65:
c0:d4:68:1d:2a:3f:54:9e:65:bb:cc:7d:ed:97:5b:
6b:71:db:ca:be:66:31:48:6a:ff:8c:e2:d0:03:3a:
f3:3e:e3:2c:d7:11:5b:0e:1d:ea:88:08:a1:aa:5f:
c1:0b:e5:9e:70:16:0a:a9:70:64:d5:12:32:f5:f5:
c9:8b:28:68:5b:3b:54:6b:01:aa:90:35:9e:04:19:
4f:7e:db:56:db:f2:a6:87:d3:a4:1c:57:a1:3f:9f:
69:e7:de:ee:28:0d:82:00:e8:6e:c9:27:30:78:35:
04:5c:8c:47:8f:3e:30:59:ef:2e:c2:eb:4c:94:4b:
eb:fc:e5:52:82:b8:f4:3d:5e:f3:d2:e4:bd:6e:11:
01:d8:e1:5a:16:dc:f4:a4:a3:ea:cc:2c:1d:51:0e:
4b:75:51:96:ab:d0:04:46:ff:aa:47:8b:6b:ae:9e:
73:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D0:FE:18:94:E1:13:DA:18:0D:82:22:07:1E:70:43:22:19:7E:9B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6D2B10A037711EFAA647526017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.186.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6e:64:f9:4c:ff:9e:04:10:eb:42:e1:31:69:84:84:e1:e6:
95:86:ff:e7:d5:46:72:cd:25:dd:cb:5f:86:d7:93:f8:62:6f:
7e:d4:ca:6f:c5:f7:8d:51:46:41:39:98:c0:aa:46:11:1b:14:
ec:db:8f:63:b4:3d:d4:1b:5c:d3:0c:c3:97:2e:b3:d1:47:a6:
ef:c6:2c:fa:5b:68:c3:f8:23:5b:ff:a8:e9:a3:6d:a6:ce:14:
84:8b:dc:64:8c:8d:06:f7:5e:5e:1d:06:34:c1:a5:58:31:51:
9b:73:f6:02:d4:6f:51:e7:6d:27:dd:3d:ca:bf:8b:e7:1a:21:
74:15:53:ba:15:c1:1c:82:c4:04:3d:7e:1a:08:6f:9f:2b:ac:
45:6c:2f:ba:14:df:f0:3b:f3:27:16:ce:5f:a0:3c:5b:9e:f2:
99:d8:42:bc:ba:f9:29:4f:0f:31:ed:7c:e2:45:f4:9a:98:04:
6b:45:c2:ff:c9:25:39:f1:e3:1b:86:dd:d8:cb:f0:d5:f3:24:
f6:34:31:dd:b6:9b:89:ee:39:5c:8a:20:22:35:a3:3b:21:7f:
ea:3a:f8:a1:f4:e1:05:4b:a6:6b:56:f1:29:4b:87:ec:54:ca:
af:e2:8b:df:48:69:36:61:31:47:2e:1a:3b:03:8e:91:29:87:
bf:78:e8:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:44 2024 by rpki-client on console-ams.rpki-client.org