Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB954392727A11EE840854444AD9E6FC.roa
File: CB954392727A11EE840854444AD9E6FC.roa (raw, json)
Hash identifier: FKsSseUHGyG8uZ4wAKjXUyJOvEEzbVZYVoPrbyfpV3Q=
Subject key identifier: 0B:F3:91:E6:A4:3D:E9:73:B8:16:96:E0:02:7E:76:19:5F:30:BA:36
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 419B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB954392727A11EE840854444AD9E6FC.roa
Signing time: Tue 24 Oct 2023 14:37:02 +0000
ROA not before: Tue 24 Oct 2023 14:36:59 +0000
ROA not after: Wed 23 Oct 2024 14:36:59 +0000
asID: 210008
IP address blocks: 45.204.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16795 (0x419b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 24 14:36:59 2023 GMT
Not After : Oct 23 14:36:59 2024 GMT
Subject: CN=6537d68e-50da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dd:c9:c4:14:c5:83:b4:0b:3b:e6:d6:82:ea:
8e:e4:61:3a:79:9b:c7:07:22:99:84:e8:38:9a:62:
aa:6e:db:c2:67:87:4f:7f:af:9b:1a:89:c1:67:02:
d4:71:00:c5:2d:43:0e:9b:67:af:fa:3a:af:eb:08:
d7:c3:cc:35:04:cb:4b:fe:e1:c8:6a:a9:15:a1:94:
78:d0:3f:b5:e4:24:d0:fe:93:ca:22:db:69:32:e5:
b7:79:8f:d2:85:13:8f:52:c2:95:56:e2:23:25:b0:
36:18:b9:fb:b3:a7:ee:87:d5:8e:f4:29:7f:1b:f6:
1f:88:5a:33:4d:e6:16:e1:eb:fc:71:e3:29:b7:e0:
40:9b:bd:8e:17:43:2b:00:38:93:db:62:39:66:50:
56:30:83:ce:bd:09:50:fc:53:4f:15:aa:66:10:30:
5e:61:89:66:15:e9:b2:19:20:12:25:0a:0f:b7:17:
17:b6:09:62:00:59:f1:0d:fc:f7:ed:1a:9d:f2:b3:
ba:a7:d3:da:56:13:9f:87:01:e4:04:bc:2b:0f:62:
bf:f3:86:b0:98:1c:2f:ab:c9:c9:b6:4a:2b:15:cd:
78:35:b5:dc:bf:c3:3a:70:12:c9:32:f3:d7:57:f3:
8a:00:f8:0c:0b:4f:34:9e:00:a6:d3:0c:24:b4:47:
02:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F3:91:E6:A4:3D:E9:73:B8:16:96:E0:02:7E:76:19:5F:30:BA:36
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB954392727A11EE840854444AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.70.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e9:77:25:00:28:4f:d9:a4:d1:e3:e1:5c:dc:06:dc:48:20:
dd:a4:bc:d0:ac:64:58:7c:28:a1:00:4c:a6:84:e3:00:47:70:
6d:ae:0a:a4:de:8c:a2:61:b5:19:06:77:bc:0f:42:b8:ab:26:
a6:e1:e3:b3:48:e6:bd:2e:b2:2b:01:61:87:29:6e:a2:62:e6:
4b:29:f9:95:94:ae:5d:1b:38:98:a8:8b:71:d2:70:fa:56:08:
0c:73:26:de:0d:2e:e4:1f:ca:6a:a3:e4:08:42:07:fd:29:2a:
5f:fe:c2:5b:5b:12:2d:f2:cd:78:a3:b2:ac:a5:c2:06:0f:6e:
ad:46:f4:70:54:56:41:26:58:2b:bf:cd:d5:e1:e6:84:0b:e8:
b1:55:97:20:7b:96:7b:7c:48:4a:e5:de:af:c9:cd:46:7e:33:
b0:ef:8d:29:9e:91:90:07:e5:2b:74:ca:53:96:e5:ff:1b:a3:
fa:3e:a9:f9:0b:24:15:76:5c:9a:1f:dc:b6:d7:90:9d:c5:b3:
95:40:14:ae:d1:d8:6d:21:6f:e3:d1:8e:43:48:17:44:f2:a5:
c7:b5:ed:57:dc:86:1d:8b:cc:ae:11:4c:85:3a:d6:4b:8c:f2:
70:d9:90:c4:d1:6b:b6:69:18:14:6f:85:b5:27:e4:3f:82:5a:
f0:86:fe:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org