Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB2116DE8DD211EE8DA482724AD9E6FC.roa
File: CB2116DE8DD211EE8DA482724AD9E6FC.roa (raw, json)
Hash identifier: ROQaJjPLdtuC/pnkHj2cT2dd7zPXsXqm5O74BuCNHno=
Subject key identifier: C8:8A:46:D3:55:E9:F3:A2:E1:F0:43:F5:F3:BB:38:2D:14:B3:DE:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C73
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB2116DE8DD211EE8DA482724AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:44:58 +0000
ROA not before: Sat 03 Feb 2024 09:44:55 +0000
ROA not after: Thu 08 Aug 2024 09:44:55 +0000
asID: 133861
IP address blocks: 45.207.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19571 (0x4c73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:44:55 2024 GMT
Not After : Aug 8 09:44:55 2024 GMT
Subject: CN=6565b69a-33df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:72:e0:ac:68:b9:af:89:c7:0c:71:19:a4:d7:
89:80:9d:27:ae:fd:8a:bc:16:71:e7:ab:bf:85:bb:
39:9b:1b:a8:c9:31:65:b5:19:bd:ed:d1:9a:92:50:
e4:19:7b:3b:ba:5b:b2:33:f5:ad:07:f3:89:ae:03:
04:b0:70:6a:4f:91:b2:cc:2f:c5:07:23:af:0e:b3:
29:ab:a1:3a:7c:19:11:3c:f6:d5:6b:77:02:93:11:
ac:a1:54:17:25:17:5b:75:25:f3:25:cf:78:06:94:
7f:0e:59:d0:02:b3:ca:ec:9a:c0:c8:22:2e:75:cc:
01:b7:89:58:24:3d:90:1b:a3:33:03:92:fa:17:55:
09:41:f3:d9:41:61:53:e5:ba:a2:51:b9:2e:98:0c:
7e:03:a6:2e:22:7d:3b:d9:08:a6:99:d7:05:eb:88:
22:36:7b:44:6c:b6:30:28:b8:f3:39:94:59:eb:4b:
6e:c1:01:d3:12:27:12:54:17:f4:a3:76:48:25:99:
a7:22:c9:d2:25:1d:52:04:e6:ec:86:e4:80:d0:77:
5e:5a:ba:a8:3b:80:83:5f:ea:0f:54:8e:8a:5a:75:
f4:65:83:6a:77:4c:2e:b5:06:fb:30:b0:b0:d2:a3:
1b:ac:a8:a9:1b:75:84:79:25:cf:bf:78:c1:8e:24:
b2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8A:46:D3:55:E9:F3:A2:E1:F0:43:F5:F3:BB:38:2D:14:B3:DE:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB2116DE8DD211EE8DA482724AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.56.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:9e:f4:3e:9f:9e:82:fa:7a:07:ab:ff:99:2c:4d:26:66:85:
32:f7:f1:df:98:80:29:d3:3b:0f:c0:f0:a2:05:ed:51:b3:bf:
3f:1a:89:e9:52:ce:48:3f:f0:21:c0:2d:27:cc:30:7f:0a:74:
e0:8c:5f:33:a6:70:bc:f1:ac:89:47:b5:4e:05:a3:33:bf:d7:
72:9c:77:92:7b:96:a8:63:af:59:96:9e:1f:f2:c6:83:96:9f:
72:89:f4:d7:fd:dd:08:2a:a8:da:b6:f3:be:18:61:97:73:5d:
e1:05:e2:3e:20:f4:fc:a2:59:56:06:da:98:91:04:49:db:ff:
12:4e:19:8f:57:46:c6:ba:6e:2c:0a:ff:ac:8b:b2:50:2c:ad:
c8:65:cd:98:cd:a4:0b:dd:3e:9a:01:87:92:4f:5f:33:48:c4:
3b:bb:67:c7:98:fb:35:d1:44:bb:55:ea:b3:6b:fa:8d:bb:af:
a2:8d:43:1b:cc:71:96:20:3d:fe:e0:d1:a0:1f:5b:40:3d:c1:
aa:71:ed:07:6e:26:a5:f3:1d:4c:6e:9f:c1:42:30:8d:76:0d:
34:bc:01:35:a5:ec:7d:b9:c3:4d:14:be:5d:5a:dd:d7:76:91:
1d:85:7e:c9:d6:d8:19:b7:c2:59:4e:14:69:96:58:27:da:6c:
0e:59:c7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org