Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D74A1AAAF91711ED872D111A4AD9E6FC.roa
File: D74A1AAAF91711ED872D111A4AD9E6FC.roa (raw, json)
Hash identifier: Z5U9RYla2Z1NJvAESt+DGN4VjX5b5qqNhtPNRsbirWs=
Subject key identifier: 0F:3E:0F:09:B6:F5:0F:01:A9:1D:B9:B2:BC:6C:C7:EA:23:5B:8E:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26CA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D74A1AAAF91711ED872D111A4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:13:51 +0000
ROA not before: Tue 23 May 2023 03:13:48 +0000
ROA not after: Wed 15 May 2024 03:13:48 +0000
asID: 399626
IP address blocks: 45.204.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9930 (0x26ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:13:48 2023 GMT
Not After : May 15 03:13:48 2024 GMT
Subject: CN=646c2f6f-b786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:14:1d:58:c9:43:1b:27:a7:f6:d8:c2:1b:73:
46:d4:47:47:24:37:6c:c0:89:c9:c4:37:4d:52:a3:
7a:e1:ea:cd:ee:62:4a:62:af:81:9a:1f:93:bd:bc:
dc:50:a5:37:19:61:ca:90:36:d7:ec:6f:6e:55:0d:
49:f9:63:c1:25:8c:94:91:e7:fc:a1:a1:c9:e8:7c:
a0:3c:19:d0:df:68:a9:a4:ac:9f:a4:9b:a3:55:4a:
d7:ef:a1:c0:43:3e:14:2f:4d:c9:dc:0c:60:59:a0:
1b:90:e7:ba:1e:46:fc:60:9a:e4:26:41:1e:4a:a6:
70:c4:b5:d7:e3:df:2b:eb:69:51:0c:71:a3:ce:a3:
ff:f9:6e:e9:c4:c7:3a:28:a6:6f:49:34:bc:08:b8:
4a:7e:ab:79:66:e2:63:76:3a:bd:45:57:69:80:46:
46:49:44:aa:64:fd:95:48:93:16:27:fe:1c:90:66:
45:5d:c7:f2:b5:62:98:2f:14:cd:01:27:ae:09:4b:
f3:c2:e3:45:42:f5:be:4d:25:cc:c5:44:33:7a:66:
57:48:e7:c5:b0:53:a7:d5:36:bb:84:8b:56:80:61:
1a:41:d4:87:b5:20:51:a8:9d:76:37:02:d2:5e:35:
e0:54:9b:1d:4d:5c:63:64:d5:5c:ec:03:45:74:ea:
a3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:3E:0F:09:B6:F5:0F:01:A9:1D:B9:B2:BC:6C:C7:EA:23:5B:8E:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D74A1AAAF91711ED872D111A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.112.0/21
Signature Algorithm: sha256WithRSAEncryption
12:e1:d6:04:65:4e:39:a2:a5:77:15:3d:9b:53:62:f9:d6:44:
38:4b:5f:a9:39:f0:18:01:c3:79:1c:d1:44:48:27:4d:45:b3:
c3:8b:1c:9d:c9:f0:1f:ce:0d:d1:e5:80:f4:97:f5:8c:c7:81:
24:e3:4f:31:90:18:ee:2f:cf:ba:ce:81:88:16:a0:3a:4d:4b:
99:7f:28:a7:c2:c0:7e:3d:05:4c:57:c3:e1:07:55:cf:99:c5:
92:5a:94:8e:3e:db:53:67:99:f3:d9:c5:96:da:de:7e:ce:e1:
91:e6:7c:73:41:43:55:30:3d:22:3a:9c:b5:a8:ae:65:c9:12:
31:cb:28:16:cd:9d:1d:ba:69:6c:af:19:83:8c:c9:35:28:51:
c9:85:de:bf:41:44:7d:4c:e6:08:89:0e:9a:a3:80:f9:fc:70:
69:02:ba:3e:d8:2a:31:b8:3c:24:02:7f:bd:79:15:9a:9d:9f:
2c:99:70:fb:18:2a:c8:23:89:59:1f:ae:85:8a:73:1e:26:cd:
1e:f9:21:99:2b:69:9c:96:30:84:de:2c:d1:23:1b:ab:19:ab:
3f:a4:30:de:1f:cf:ba:04:87:fc:df:39:89:cc:b1:0c:93:bf:
ce:ad:75:ab:72:b2:de:8a:ec:91:ea:dd:af:60:b4:32:f5:a9:
cc:de:50:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:59 2024 by rpki-client on console-ams.rpki-client.org