Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD87B97A385411EE93AB3A1E4AD9E6FC.roa
File: BD87B97A385411EE93AB3A1E4AD9E6FC.roa (raw, json)
Hash identifier: iLmVXlESHfE0E2nzDNIb0jniwy5O/SYW1xV++pPXOl8=
Subject key identifier: 23:12:D7:45:25:35:10:CA:11:AF:B2:25:FC:D3:F5:4F:AC:47:5B:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 347F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD87B97A385411EE93AB3A1E4AD9E6FC.roa
Signing time: Fri 11 Aug 2023 14:38:30 +0000
ROA not before: Fri 11 Aug 2023 14:38:27 +0000
ROA not after: Thu 13 Jun 2024 14:38:27 +0000
asID: 139811
IP address blocks: 45.195.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13439 (0x347f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 11 14:38:27 2023 GMT
Not After : Jun 13 14:38:27 2024 GMT
Subject: CN=64d647e6-3657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ff:da:60:f7:98:02:76:35:6a:dc:73:ab:7e:
ae:3b:1e:b3:7b:71:4f:10:57:c7:1a:1c:6f:a6:52:
35:83:6a:9b:85:5d:85:07:4e:72:2b:4d:02:44:5e:
fa:b7:ad:41:f1:aa:bf:be:91:7a:99:f9:90:d4:0f:
3d:e5:4f:e8:fb:33:b5:71:1e:ed:7e:c6:71:de:db:
5f:f0:1c:54:43:c6:0d:db:a7:79:f5:23:19:48:9c:
15:30:99:14:df:7a:57:09:da:4b:d0:fb:88:d4:04:
88:17:8b:73:da:da:de:ab:00:99:b5:ec:bd:6d:22:
bb:53:1b:c7:01:32:dc:bf:a9:67:9f:f5:4b:81:66:
77:c2:2d:2b:1f:b4:98:85:60:90:37:7d:86:69:c3:
87:f3:67:5a:5a:e5:f8:45:2a:3d:5d:d7:af:ab:0b:
a3:13:ea:28:ab:c4:93:a7:3a:2a:d5:2f:67:e8:54:
e2:91:6d:0e:49:93:ca:aa:31:74:8d:a4:35:7b:d1:
63:a7:86:f6:75:f3:84:3d:14:26:39:cd:f5:d7:f5:
0e:85:e6:39:5e:77:a4:98:f3:b2:c6:10:8a:ec:14:
83:82:88:6e:d8:b3:78:4c:1c:1e:2a:81:bd:ea:9c:
27:fa:34:19:90:b5:34:16:59:58:5e:95:26:cd:35:
5d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:12:D7:45:25:35:10:CA:11:AF:B2:25:FC:D3:F5:4F:AC:47:5B:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD87B97A385411EE93AB3A1E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.61.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:8e:74:02:60:ad:3e:4d:19:24:dd:07:d6:42:cf:c1:c1:10:
98:eb:b1:29:f4:1f:88:a2:74:e0:67:a0:b3:e0:06:9f:55:78:
1c:99:db:ce:2f:e4:93:b1:70:82:35:8f:14:6b:63:71:c0:ad:
ab:5c:3d:66:1d:3b:46:bd:c6:9d:0b:ea:07:f7:9e:34:e0:19:
ad:61:f7:60:4c:8e:8a:cd:aa:7c:9a:43:17:ee:98:9f:21:55:
31:79:1b:5d:39:a1:2d:50:c6:2a:92:ea:d2:89:af:c1:6c:0b:
9f:88:1a:94:41:d2:7e:36:17:22:8a:ee:74:c9:9a:d2:95:8f:
0e:29:58:08:bb:c2:5f:1f:22:2a:3c:52:00:9d:d4:4f:70:80:
57:b9:7c:6a:f7:30:0e:b3:4d:a2:1f:37:94:29:90:40:c5:52:
17:bc:b6:11:09:08:16:70:6b:50:3e:d4:c3:f2:2e:40:9f:34:
40:6f:46:f9:88:ac:99:3b:10:09:05:36:c2:18:85:05:96:1a:
14:54:ed:58:4e:85:a6:be:b4:93:38:14:0a:81:6b:22:eb:27:
56:3f:1d:c8:b5:dc:0e:4e:2d:f8:71:7f:d3:50:f3:0c:44:4c:
a0:2f:93:fd:46:f4:56:74:1e:64:3e:c3:95:f6:88:f3:1b:fb:
cc:54:bf:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:37:53 2024 by rpki-client on console-fra.rpki-client.org