Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9DD195AF91711EDAEB19D194AD9E6FC.roa
File: A9DD195AF91711EDAEB19D194AD9E6FC.roa (raw, json)
Hash identifier: GsNAjTAZLECvfpP0Cj0qJi4tIKcDSddbUP5oIIQBVgk=
Subject key identifier: 1E:BC:2C:D7:C8:00:73:E3:23:4F:6B:9F:B4:D8:7C:F8:6B:A1:10:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26C6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9DD195AF91711EDAEB19D194AD9E6FC.roa
Signing time: Tue 23 May 2023 03:12:35 +0000
ROA not before: Tue 23 May 2023 03:12:31 +0000
ROA not after: Wed 15 May 2024 03:12:31 +0000
asID: 399626
IP address blocks: 45.204.124.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9926 (0x26c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:12:31 2023 GMT
Not After : May 15 03:12:31 2024 GMT
Subject: CN=646c2f23-0c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:da:55:39:fb:75:23:e5:cf:12:e9:8d:84:
89:d8:ef:f9:8c:4d:59:74:4c:02:95:f5:4b:12:d1:
86:c7:bd:42:f1:f6:e4:93:7d:e3:31:57:b4:4e:1e:
dd:7e:10:0c:c7:d4:99:73:16:4a:fb:3c:25:da:a5:
9b:5a:a7:ba:9b:2a:1b:c0:22:6a:a5:76:b7:6e:da:
c9:e7:a7:69:df:4a:ca:52:67:49:f6:f0:b6:8b:67:
0a:5d:88:10:99:45:89:3e:3c:68:e1:5c:8f:fa:cf:
41:d3:f6:2e:51:a7:d4:1d:c7:75:bb:a9:11:9d:29:
06:af:03:e9:8f:67:35:63:32:07:2c:dd:38:5d:f3:
8c:1a:c5:10:36:79:2d:2d:a5:dc:a8:ce:62:4a:78:
b7:1d:2b:00:f4:3b:3f:4d:de:41:9e:7a:53:e1:33:
6a:2a:de:ad:e8:ab:ec:55:e7:1f:9e:e5:39:56:df:
32:ae:1d:62:7b:4f:76:fd:47:c2:6d:62:df:58:4e:
f6:e2:24:47:63:3f:30:0e:bd:f3:4a:1d:4f:70:b0:
df:c3:6d:df:dd:c6:17:a4:ec:95:5d:58:cb:9b:4e:
d9:cb:e7:1d:cc:86:0c:fe:ba:47:6d:dc:20:25:c9:
20:fc:af:33:d2:40:59:e3:e3:88:97:46:94:12:5d:
d2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BC:2C:D7:C8:00:73:E3:23:4F:6B:9F:B4:D8:7C:F8:6B:A1:10:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9DD195AF91711EDAEB19D194AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.124.0/23
Signature Algorithm: sha256WithRSAEncryption
46:09:c0:c3:b4:e8:d3:f0:cb:42:c9:e3:67:d5:f2:c4:73:42:
07:6e:33:c2:d9:38:a2:c6:c1:b3:91:61:a3:0d:10:e7:cd:3d:
9b:d2:b7:28:a1:a6:1a:6b:d2:c7:3c:53:44:65:88:e3:82:95:
ed:33:4c:c2:93:cc:9f:49:91:1b:bb:26:b7:74:1d:13:73:89:
45:b6:04:56:6f:bd:dd:ea:f0:18:ee:a2:ea:a6:81:ea:d4:15:
21:42:9b:90:2d:90:7a:e9:a7:4a:f6:2f:b8:57:6c:c4:ab:7d:
45:c0:98:6e:40:8e:21:0d:04:08:2e:d4:d0:10:e1:d9:4d:50:
75:82:ac:cc:27:2e:ca:46:b3:84:93:27:5f:56:b9:61:b8:3e:
74:57:6e:62:91:35:27:82:88:38:f8:b9:f9:36:2f:ea:ab:20:
ce:af:ef:d9:82:96:40:2b:3b:a2:38:7b:08:a5:20:10:e7:6c:
3d:57:87:46:bd:5a:b5:22:ab:d8:78:d0:8c:0f:31:15:78:43:
1d:8e:d6:67:fd:bd:17:75:a2:b7:39:43:20:d5:9b:16:f9:61:
4d:cb:e9:a3:f3:c9:16:a6:12:d4:64:e2:75:01:de:56:85:e5:
51:e9:50:7c:5a:22:0b:22:eb:b1:a6:47:53:3e:6c:c2:1d:8c:
01:17:0a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:10:10 2024 by rpki-client on console-ams.rpki-client.org