Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D0410984A39011EEA8FDC218D25BE465.roa
File: D0410984A39011EEA8FDC218D25BE465.roa (raw, json)
Hash identifier: /403Vr5cXYeu3X7rmhyWZnYsDr1U7xwiQJDRQmLZSVo=
Subject key identifier: 08:C3:F8:13:A0:6B:EE:22:33:44:67:A7:F5:B1:0D:2B:1A:87:C2:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 593D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D0410984A39011EEA8FDC218D25BE465.roa
Signing time: Tue 26 Dec 2023 01:48:06 +0000
ROA not before: Tue 26 Dec 2023 01:48:02 +0000
ROA not after: Wed 02 Oct 2024 01:48:02 +0000
asID: 393294
IP address blocks: 45.199.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22845 (0x593d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 26 01:48:02 2023 GMT
Not After : Oct 2 01:48:02 2024 GMT
Subject: CN=658a30d6-1dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5a:ec:ad:45:3a:62:02:ce:11:c2:3c:d7:d3:
a6:73:c2:4e:35:ad:1d:6c:af:bf:16:d1:e2:09:5b:
67:dc:1e:c3:ec:5a:a2:c1:91:e6:f5:2b:2e:6f:50:
ae:74:33:cf:01:2b:53:d7:c1:63:61:ca:11:bb:0a:
2a:dc:c8:6e:61:56:53:8e:c2:fa:9c:29:f8:68:07:
91:39:5d:94:8b:f6:2f:72:6b:4f:17:06:44:ac:2e:
e4:85:24:14:1d:9c:8a:14:36:49:46:9e:77:d9:86:
e1:7a:65:4b:3b:21:71:e9:4a:41:84:c0:7b:9d:62:
c2:20:9d:61:b4:11:e1:1d:d2:41:62:d6:69:7d:6b:
9e:9b:f7:56:95:d4:92:c7:c0:db:42:29:0e:70:80:
e5:3a:bf:a9:7a:c9:a6:de:08:ec:16:b6:7f:d8:78:
4f:53:e9:53:f2:78:c5:19:2e:e5:a2:e3:91:35:0a:
e5:79:23:ae:09:15:a8:33:5f:15:cf:e0:f3:dc:b7:
0f:7a:77:84:e3:70:b0:c2:a6:5d:60:32:45:0d:e1:
5b:ea:15:bc:f9:17:6a:1e:87:8b:d9:7d:6e:aa:6b:
52:75:76:06:a9:ff:6d:20:53:47:37:f9:ca:aa:ce:
c2:d6:0c:98:56:1d:87:c6:82:b9:f2:28:fe:59:15:
f7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C3:F8:13:A0:6B:EE:22:33:44:67:A7:F5:B1:0D:2B:1A:87:C2:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D0410984A39011EEA8FDC218D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.175.0/24
Signature Algorithm: sha256WithRSAEncryption
49:c3:24:43:e4:f3:a1:3a:ed:e5:d4:08:6c:ac:da:8a:91:14:
02:67:fb:82:79:1a:22:db:46:22:04:e5:e7:39:31:6d:f2:6a:
92:35:ee:23:a9:c8:81:9a:28:1f:a9:28:d8:f8:d3:a3:f5:63:
60:4a:c2:d6:3e:b2:d6:45:31:86:c0:2b:1a:3e:1f:c7:df:c8:
e0:3c:00:8d:e9:1c:58:79:fb:12:d7:9b:a8:75:de:d8:45:09:
1f:22:c1:d6:76:3c:a6:d6:42:42:3d:e6:cb:74:b6:b7:cf:54:
77:8b:e7:6d:e5:ad:c5:19:b6:34:e1:c7:ec:ca:1f:76:0d:d0:
d8:f0:ac:b2:2c:e1:ba:4a:43:58:91:c7:b5:6d:59:00:80:a4:
0d:b2:11:a1:f2:1d:36:be:8b:81:c9:ee:c5:55:82:18:af:68:
21:8a:c8:28:9e:a2:b4:27:e3:f3:f9:01:10:d6:6e:f2:80:e7:
4b:82:81:38:7f:54:e0:3a:09:9e:98:f4:3e:23:d7:db:39:26:
d3:ba:96:f0:5f:01:bb:2b:d9:2d:8b:b6:c6:12:c7:f2:ad:1b:
26:20:a1:82:5e:b7:c8:60:99:4f:36:33:8a:84:c5:50:7e:cf:
10:3c:6b:c0:4e:9f:e3:40:87:5d:7e:69:0c:a7:66:1b:b5:88:
6e:d8:85:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org