Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA28CA1CB80611EEBC43AFA9775412E6.roa
File: BA28CA1CB80611EEBC43AFA9775412E6.roa (raw, json)
Hash identifier: lWWhXGDB9uTO5BMaFBGF8HSRaIJQxkjHYB4PlYysamU=
Subject key identifier: F2:19:7D:2C:D7:00:E9:DA:C3:71:39:FA:37:32:66:18:58:0B:11:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 643C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA28CA1CB80611EEBC43AFA9775412E6.roa
Signing time: Sun 21 Jan 2024 02:42:33 +0000
ROA not before: Sun 21 Jan 2024 02:42:29 +0000
ROA not after: Thu 08 Aug 2024 02:42:29 +0000
asID: 133861
IP address blocks: 45.207.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25660 (0x643c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 21 02:42:29 2024 GMT
Not After : Aug 8 02:42:29 2024 GMT
Subject: CN=65ac8499-919a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e4:45:6c:e1:5b:b0:25:b3:c8:c0:d4:e7:48:
a0:15:1b:03:72:51:01:fe:3a:3d:94:7a:9f:99:ef:
7a:fe:05:a3:b3:cc:d3:c9:15:e3:5c:9e:22:49:c0:
b5:2f:34:ab:17:a2:77:3f:bb:f9:2c:9e:c2:2a:c9:
c9:16:aa:ec:05:9d:1e:a5:01:06:fd:a4:b9:81:86:
3d:2a:ee:72:3d:ab:cf:5f:5c:fc:d5:58:02:9e:85:
ec:22:ee:5f:9d:ed:62:6b:0c:85:e0:33:70:2f:99:
dd:4a:f5:e7:8c:b4:8f:e8:cb:11:c4:44:38:7c:8b:
45:9f:a5:fb:ab:db:00:9a:16:87:59:23:0f:51:ca:
2f:75:21:96:9c:97:70:83:1f:ae:60:e3:8c:83:53:
67:3d:4b:a9:4a:57:8a:79:e2:96:e9:fd:dc:b9:c9:
09:00:00:a2:3b:29:0a:6b:b6:7c:eb:3a:86:04:1b:
ee:14:8b:ef:f3:96:46:d1:81:9c:45:27:e6:8b:e7:
7f:f0:56:bc:b9:f8:37:59:50:4e:33:09:9b:0d:3b:
ee:19:a9:40:39:03:9f:3b:9b:cb:1e:ad:c6:44:ea:
5e:c1:b8:78:9b:07:8e:f8:03:8e:0b:fd:44:b6:3f:
f0:71:64:bf:cc:f2:a8:54:dd:60:3f:a5:00:d7:bf:
29:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:19:7D:2C:D7:00:E9:DA:C3:71:39:FA:37:32:66:18:58:0B:11:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA28CA1CB80611EEBC43AFA9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.53.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ca:6e:ec:04:1f:2d:11:8e:f3:7e:93:ce:90:01:a3:46:af:
b8:22:4e:78:f5:17:a5:bf:9d:92:60:ae:51:73:01:67:0b:70:
72:50:20:d5:f0:b2:c7:5b:5d:09:95:9b:60:e9:8c:ab:98:8c:
d8:ba:38:c7:ac:ee:5d:fb:a4:63:57:64:24:a5:3e:ba:0e:bb:
dd:42:c7:5c:da:1e:be:c8:49:46:1c:2d:e7:9c:6f:17:8e:84:
3b:cc:20:85:d0:ff:65:cd:32:50:b7:a3:f7:2e:93:ab:53:26:
c8:30:0a:13:bb:5d:d4:d8:04:a6:42:ba:24:3e:89:4a:44:7b:
60:f6:24:9f:cf:96:43:3d:e8:32:0d:89:ac:07:f3:27:5b:7f:
75:92:0e:41:fc:07:d6:7d:88:a8:43:92:b7:28:c2:02:0f:26:
20:e6:9b:de:29:07:36:fd:dd:3f:13:68:34:b1:6b:52:44:ec:
f6:38:bd:9a:d7:d6:ee:63:f3:21:84:77:35:1f:0d:be:ce:03:
f0:02:1c:80:5e:59:05:40:2f:fa:23:bb:f6:d3:9b:7e:96:ed:
5d:a9:9f:84:ab:5d:ca:61:f0:3e:dc:a0:13:80:0e:1f:a4:9e:
95:37:7b:9d:32:e1:e3:df:27:c6:e0:40:89:78:3e:3c:d4:95:
ce:e2:e2:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:16 2024 by rpki-client on console-fra.rpki-client.org