Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C7814CC07FEE11EE85A16E394AD9E6FC.roa
File: C7814CC07FEE11EE85A16E394AD9E6FC.roa (raw, json)
Hash identifier: IeH3uI7JE4S2MS/uK1cmZePL1JSMdVzw/QdM3BcS8KM=
Subject key identifier: 7D:F2:C2:49:EB:D2:1E:5C:F5:DE:63:EE:C7:FD:7C:D1:7F:46:41:C7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4662
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C7814CC07FEE11EE85A16E394AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:30:02 +0000
ROA not before: Fri 10 Nov 2023 17:29:59 +0000
ROA not after: Tue 04 Jun 2024 17:29:59 +0000
asID: 137577
IP address blocks: 45.195.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18018 (0x4662)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:29:59 2023 GMT
Not After : Jun 4 17:29:59 2024 GMT
Subject: CN=654e689a-32bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fd:97:e0:6b:81:91:3c:69:a1:77:e2:7a:d6:
0c:34:d7:58:78:a8:06:f6:9b:e3:2d:a4:09:8f:1e:
ec:ca:0b:ec:03:b5:be:70:45:b4:26:1b:27:7f:d5:
d0:1e:d2:60:0b:21:f9:b1:e5:0b:a2:0c:34:ff:94:
cd:37:04:d3:ab:0d:dc:0c:50:85:f5:be:e2:a4:d1:
3c:aa:51:23:e8:b6:9d:a2:64:dd:44:f2:d1:8d:2c:
37:50:3f:49:cf:55:22:94:b4:a9:c9:ed:7c:01:29:
e1:fd:88:74:64:35:9e:b5:e3:a1:e6:de:1f:10:4e:
27:8d:da:8e:66:f8:37:29:98:2c:36:9f:50:2f:e4:
95:be:71:1b:8e:39:db:f9:63:b4:65:0f:ac:74:ce:
78:d5:03:3c:59:7f:c0:99:57:29:a9:51:71:29:2a:
9d:b0:f9:0d:41:7a:0c:8c:3b:9a:42:ba:17:64:15:
3b:11:7a:3d:7f:7a:13:68:0f:be:b3:74:06:9f:6e:
36:dc:f4:0f:2b:49:61:76:ec:30:e6:1e:05:07:a1:
b6:69:5b:f8:22:e5:f5:f0:a9:c9:96:57:bb:3d:7f:
14:95:61:b2:dc:ec:b2:79:ed:06:46:9b:cc:0c:31:
b9:50:a6:09:7b:40:ec:8d:bd:e5:db:11:a3:98:16:
34:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F2:C2:49:EB:D2:1E:5C:F5:DE:63:EE:C7:FD:7C:D1:7F:46:41:C7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C7814CC07FEE11EE85A16E394AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.44.0/24
Signature Algorithm: sha256WithRSAEncryption
46:75:4d:55:5c:4e:45:9a:d0:2d:fd:bc:e9:1c:e6:0b:e0:77:
73:40:94:5f:60:2d:c1:00:35:a7:ee:ca:13:f8:e5:1a:11:a2:
43:a7:c2:c7:b7:86:60:01:30:15:67:f7:6c:c7:a0:42:d3:ce:
4a:e8:a7:e3:0a:53:fe:58:0c:1f:0c:c0:23:f0:b6:a2:07:50:
c7:7e:4e:cb:1f:7f:1c:ae:65:99:9a:9c:b0:84:9d:c8:65:10:
5c:e4:85:f7:01:5c:e5:a9:a9:25:de:2d:bc:80:32:ff:8c:a0:
dc:f2:08:2d:36:6d:96:0b:ab:52:53:c8:e9:f1:fa:23:8c:17:
65:ed:7b:1e:7e:a1:74:48:24:fe:07:82:f0:40:e7:db:8d:c9:
cd:db:8e:04:1d:d3:d8:70:52:d1:87:d6:f1:69:0c:e9:02:ef:
f4:5a:b2:10:05:1c:a1:62:cd:d5:0b:cc:b0:1a:ac:e1:ec:7e:
cf:62:52:66:d2:74:75:dc:52:74:f8:38:ab:0b:50:32:76:31:
52:77:f5:03:a4:6e:80:f2:9e:24:b4:5c:89:46:2a:43:e4:14:
42:83:c0:77:2d:26:69:9f:f6:4d:a5:e0:92:59:fa:c5:5d:d7:
9d:26:38:11:87:14:cf:5f:06:77:a0:32:ac:92:ec:08:cb:73:
ac:fa:cf:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org