Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9546696B80311EEBAA170A3775412E6.roa
File: E9546696B80311EEBAA170A3775412E6.roa (raw, json)
Hash identifier: dwM8r+35bvpMiKvhWAEa5256LFbGF/oni6dKUuBw2Yc=
Subject key identifier: 85:8F:86:C1:BB:B1:1F:0D:10:DA:BA:2F:E0:18:71:8F:D7:BD:12:89
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 641A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9546696B80311EEBAA170A3775412E6.roa
Signing time: Sun 21 Jan 2024 02:22:23 +0000
ROA not before: Sun 21 Jan 2024 02:22:20 +0000
ROA not after: Thu 08 Aug 2024 02:22:20 +0000
asID: 133199
IP address blocks: 45.207.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25626 (0x641a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 21 02:22:20 2024 GMT
Not After : Aug 8 02:22:20 2024 GMT
Subject: CN=65ac7fdf-9f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:06:09:15:ef:c0:f1:77:f3:34:aa:69:c6:3c:
12:54:0b:42:6c:62:7f:d3:8f:67:8d:7a:aa:e6:96:
3e:68:c8:07:ef:8d:61:d7:38:ed:1c:a0:85:3a:8a:
8c:ed:ed:32:b0:23:5f:cf:fa:c3:6c:c4:48:bd:a9:
e7:00:78:d1:fc:0c:fc:91:6a:77:50:d3:fe:89:07:
85:c9:93:70:93:dc:53:26:3b:df:4b:d1:65:bc:4f:
29:e7:0a:05:b6:25:96:88:05:14:4a:05:28:68:1b:
82:ea:67:b5:35:60:7a:12:39:34:67:2b:50:27:54:
b8:67:98:d1:65:9c:f7:99:2c:05:bc:58:15:43:7f:
29:09:b2:3d:ed:84:18:22:dd:69:21:2a:84:ed:b4:
ec:06:34:e9:90:42:97:00:27:bc:b3:25:b6:9d:c3:
27:3b:91:72:d0:3f:6e:25:b8:28:e1:b7:73:80:9d:
fb:35:24:0a:d0:c6:39:d7:ae:9b:f9:35:b5:76:43:
ab:f5:fb:4a:6d:e9:a6:47:b4:e6:90:86:be:c7:94:
d7:69:ca:13:a4:fc:c5:2f:e3:d7:e6:bb:12:0e:31:
d5:86:da:ec:c3:1c:39:5c:5f:d2:63:d3:4b:02:0e:
f5:29:d1:7d:c5:7b:25:04:d2:fe:87:ad:80:11:0a:
b5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8F:86:C1:BB:B1:1F:0D:10:DA:BA:2F:E0:18:71:8F:D7:BD:12:89
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9546696B80311EEBAA170A3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.33.0/24
Signature Algorithm: sha256WithRSAEncryption
95:99:c3:57:ac:da:63:1d:5a:52:e9:fa:83:54:40:f3:87:d3:
69:4f:12:61:8c:fc:ff:a8:6c:a1:c9:a3:c3:1a:5b:2e:d9:5f:
de:c4:de:04:fc:8f:27:40:04:e6:ba:47:5f:2e:12:fe:06:db:
cc:cf:0a:67:2f:03:fe:42:f4:d0:27:68:4f:0a:fc:32:f9:db:
7c:11:53:63:3e:4f:b6:92:fa:cd:f6:d3:9f:40:a6:89:9b:1e:
60:fc:5d:fb:29:58:b9:ea:ea:df:e6:98:53:58:32:82:22:00:
1d:91:cb:a8:03:df:f0:19:0c:5b:d1:25:c2:a4:31:dc:4e:2a:
81:5c:91:39:17:ed:6e:cb:43:c5:2a:de:40:0d:6b:ab:14:39:
5b:fe:b1:69:cf:f8:57:71:2f:c0:84:31:1c:6c:54:b8:1e:4a:
5e:b9:4b:da:ff:2a:fd:89:29:a0:17:51:80:ad:2f:9a:21:cd:
6c:fd:ed:45:f8:f0:9f:d0:03:55:7c:1d:b1:f8:24:d1:5b:69:
0d:e6:73:1d:b6:56:12:6a:aa:6d:50:ec:48:13:a0:c0:d6:ec:
6b:f1:55:f1:3d:e6:5e:ac:d6:f0:49:e9:e9:99:e1:98:b0:86:
03:7c:8f:c3:4a:ab:09:56:7e:d1:dc:18:fd:f5:37:81:fc:87:
c4:36:1e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org