Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C00D95A606CC11EF89D1BB53017001B1.roa
File: C00D95A606CC11EF89D1BB53017001B1.roa (raw, json)
Hash identifier: hecrEFUDnQtlDzMOeEYT90OpqnIDrHnOHdlI+Dfh3mQ=
Subject key identifier: 7D:31:BE:46:AD:AF:83:6D:3A:CE:1C:61:4D:4F:D1:85:D4:72:86:5A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 86BD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C00D95A606CC11EF89D1BB53017001B1.roa
Signing time: Tue 30 Apr 2024 08:36:34 +0000
ROA not before: Tue 30 Apr 2024 08:36:30 +0000
ROA not after: Tue 28 May 2024 08:36:30 +0000
asID: 984
IP address blocks: 45.206.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34493 (0x86bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 08:36:30 2024 GMT
Not After : May 28 08:36:30 2024 GMT
Subject: CN=6630ad92-47a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:28:c6:de:4a:62:46:83:0c:7d:fa:4f:26:e2:
0e:aa:18:ce:25:8a:cf:10:cc:83:69:d7:c2:92:5d:
78:05:f4:f3:8a:cd:ec:47:92:8e:0e:12:8c:d7:32:
fa:2f:ff:41:2c:f6:01:e5:e9:e5:fd:78:8a:09:10:
a4:f6:3b:a6:3b:a0:8f:2c:3d:d5:8a:23:b2:cb:a7:
6e:9a:c0:dc:49:9f:16:11:ea:98:bb:00:c9:fe:aa:
e0:e3:36:91:88:c9:f5:ad:ec:e9:b0:a1:60:85:7d:
c6:b1:d1:f8:6e:00:8d:c3:0c:56:52:19:d8:91:f4:
8f:84:54:43:bd:4b:38:68:69:80:27:ec:ea:38:1d:
0f:13:6d:ea:01:c6:71:43:2a:f6:c9:aa:0b:94:55:
c6:26:0c:a5:9e:da:91:29:4c:c3:aa:43:ea:ad:2a:
24:5d:c0:e0:8a:af:91:55:a2:8d:6c:96:e3:91:db:
f6:73:08:79:7d:5e:dd:2f:bb:ac:ea:c4:37:ce:b0:
dd:5d:e9:65:fb:c1:43:9b:91:d8:98:96:80:46:b7:
0f:58:f8:6a:c0:24:90:e8:f6:79:78:a9:89:99:65:
54:3b:7c:d8:de:54:7e:bb:04:b5:a9:ed:d5:55:78:
d4:cb:b7:14:2c:3f:1b:8f:a5:58:a1:7f:4d:26:10:
4c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:31:BE:46:AD:AF:83:6D:3A:CE:1C:61:4D:4F:D1:85:D4:72:86:5A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C00D95A606CC11EF89D1BB53017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.53.0/24
Signature Algorithm: sha256WithRSAEncryption
35:91:06:86:ff:0f:77:d5:76:a6:aa:f7:b0:f1:6b:b1:ed:50:
35:61:1f:13:3c:48:7e:ec:c8:44:93:0d:44:c8:f7:30:cd:49:
e8:40:63:4a:69:f2:07:43:ea:99:8b:b2:0a:bb:b3:21:53:b0:
bc:bf:d6:3d:39:c9:48:b6:be:09:f0:c7:e7:cc:16:d5:d7:20:
24:7a:21:d3:e5:f9:8a:9d:1e:87:4c:13:4c:34:c6:16:93:a1:
63:02:e3:0d:5f:60:f0:ab:dd:6c:22:c4:da:d7:81:a2:95:70:
cf:f6:27:e0:6f:b9:7c:70:7f:73:ab:49:8a:50:13:0a:8a:2a:
02:7d:04:f1:c3:41:8f:10:0d:a9:d8:11:70:25:71:a1:b4:dd:
27:60:c4:a0:4c:16:b6:bf:7d:a7:fb:33:4c:41:68:a1:6e:53:
64:26:0e:76:d1:bf:b7:60:f2:5e:9f:8d:45:e1:23:b0:00:c1:
6e:f3:f4:72:14:ec:51:d1:06:41:33:22:db:0f:fa:f1:a2:c2:
52:a7:20:22:90:80:f1:c9:0a:cc:0c:20:3e:5c:dc:e4:b0:e2:
f1:dc:2a:0f:85:d6:4f:c2:1e:ce:1f:5f:a3:6b:74:6a:96:22:
f3:65:ce:f1:a4:79:bb:b8:38:54:d5:7a:8c:28:8e:0c:67:a9:
5b:1d:6c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:01:28 2024 by rpki-client on console-ams.rpki-client.org