Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F00CD1FCC16911EEB5FDD5C3775412E6.roa
File: F00CD1FCC16911EEB5FDD5C3775412E6.roa (raw, json)
Hash identifier: 6k/Ok0rmPs0pwpL4DYfewiG+Hfc0cKvzwUeuPbuut0g=
Subject key identifier: AC:06:D0:3A:0B:1E:CA:CD:DB:04:31:CD:03:87:99:48:BA:20:7C:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C6B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F00CD1FCC16911EEB5FDD5C3775412E6.roa
Signing time: Fri 02 Feb 2024 01:25:24 +0000
ROA not before: Fri 02 Feb 2024 01:25:21 +0000
ROA not after: Thu 08 Aug 2024 01:25:21 +0000
asID: 133199
IP address blocks: 45.207.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27755 (0x6c6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:25:21 2024 GMT
Not After : Aug 8 01:25:21 2024 GMT
Subject: CN=65bc4484-0e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:db:0e:a8:d9:2b:23:67:94:28:09:20:0c:d4:
a5:56:9f:79:34:08:56:99:57:6a:2b:cd:27:14:3d:
3a:b0:a9:59:14:05:bb:ef:a6:6c:9e:5c:cb:8d:47:
33:b3:76:f1:3b:56:ba:39:00:17:3b:8b:bb:e1:83:
64:f4:74:ab:0a:d9:30:43:fc:ba:e8:1d:ce:ef:90:
2b:b3:f2:54:f8:84:4c:fd:6e:62:31:3b:6b:89:83:
82:48:56:2d:13:c5:c4:59:d1:e5:49:eb:20:74:d6:
94:2f:85:51:29:d7:57:42:13:95:d6:85:8b:bb:55:
8c:e8:15:6f:aa:08:da:b1:dd:07:a9:13:3e:4d:ac:
c6:21:14:82:05:3c:c4:11:b0:b9:27:9f:97:63:a9:
7c:20:bc:7d:ae:2b:f7:9a:40:dd:d0:96:ab:77:78:
ee:02:0d:22:f6:11:38:96:42:cb:99:cd:3a:4a:29:
a9:62:86:10:92:23:35:dc:98:b8:69:80:70:cc:47:
82:d2:bb:79:36:d1:68:62:1c:f1:bd:3f:52:c1:1d:
bb:eb:0b:fa:ea:16:07:12:e1:72:78:d8:65:82:25:
2e:a6:3d:ca:a8:0f:f9:2e:0d:9c:10:9d:22:84:4b:
a9:f8:77:38:59:96:7d:41:00:46:1c:ff:d0:68:33:
50:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:06:D0:3A:0B:1E:CA:CD:DB:04:31:CD:03:87:99:48:BA:20:7C:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F00CD1FCC16911EEB5FDD5C3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.53.0/24
Signature Algorithm: sha256WithRSAEncryption
69:fa:89:00:5e:7a:f1:51:96:5f:ce:8b:c5:4e:18:b9:1f:44:
e5:4e:01:cc:8f:f3:ce:0e:00:bb:ca:36:c9:16:7c:dc:28:e8:
83:55:ff:a3:ba:23:82:3d:eb:f6:34:8c:09:97:96:35:c6:57:
5e:7e:eb:4e:8d:21:21:1d:df:73:42:87:0f:b9:91:b1:fe:74:
29:1d:ff:49:04:9f:b2:70:b0:aa:1a:af:a9:e7:67:16:ea:07:
f3:3c:38:d4:58:1c:3a:5d:17:e0:ef:ee:c4:18:89:5f:80:43:
80:cc:22:fd:c9:cd:7e:3f:0f:07:cb:5e:14:87:ce:78:1d:7b:
c3:84:4f:ff:1c:07:6e:fa:e1:f1:bd:c9:9b:ab:b5:eb:22:1d:
79:97:76:0a:f6:00:46:a9:26:1e:96:e5:db:d2:aa:21:2d:19:
74:ae:43:be:7f:90:6a:5d:7e:6f:a4:40:28:e9:5f:f9:8b:d7:
24:46:6d:c3:c1:6e:e9:2d:24:2b:c6:78:c1:89:03:20:06:4b:
2b:bb:e1:c2:f2:fb:cf:82:9f:aa:c9:01:47:aa:87:03:a0:bb:
3c:52:c3:d8:00:17:d3:bb:87:3e:c9:44:f8:1b:62:cb:14:ea:
97:87:ff:cd:73:01:f5:61:a3:63:af:e8:dd:0c:54:5c:4f:4b:
d3:25:b3:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org