Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F76DBD7A008011EFAAE781FF007001B1.roa
File: F76DBD7A008011EFAAE781FF007001B1.roa (raw, json)
Hash identifier: YGsWNThPWA+AIECLA7UYUtzytBCAWYQ3t0nJESVOn1c=
Subject key identifier: 66:D2:4A:61:A9:CB:00:2C:18:8D:C6:1B:83:14:19:17:F6:47:51:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 83CD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F76DBD7A008011EFAAE781FF007001B1.roa
Signing time: Mon 22 Apr 2024 08:18:58 +0000
ROA not before: Mon 22 Apr 2024 08:18:55 +0000
ROA not after: Mon 29 Apr 2024 08:18:55 +0000
asID: 54467
IP address blocks: 45.204.112.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 08:18:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33741 (0x83cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 08:18:55 2024 GMT
Not After : Apr 29 08:18:55 2024 GMT
Subject: CN=66261d72-55c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7f:b5:a2:2a:ad:59:e9:b5:63:be:76:59:f3:
be:62:c0:a5:89:fb:14:c5:93:25:46:40:a3:e2:80:
cc:8e:d0:69:bd:d4:23:63:6c:51:6c:43:99:da:3c:
40:90:f7:29:4a:8d:8f:48:e3:a8:d2:22:7d:55:ca:
0b:82:e5:c7:5b:49:a2:58:ff:92:e1:61:a0:38:29:
d8:f0:2e:a7:0c:24:0a:b8:78:14:1c:32:e7:40:74:
50:24:a6:69:71:9d:3b:b3:e4:50:ec:32:38:50:b8:
b2:eb:58:ad:ab:89:dc:d0:28:64:95:17:8f:31:02:
90:eb:e1:af:ae:ea:94:6a:85:7d:82:e8:bb:45:c7:
e3:2f:4d:7b:9a:5c:48:82:2c:cf:f0:0d:d4:6d:7a:
64:f3:a3:eb:a5:a5:fd:5e:3a:a0:6e:b3:92:83:7f:
be:20:79:79:5b:38:a2:3c:14:45:34:69:c4:8b:58:
8e:b0:4d:7f:9e:38:f4:d6:b5:80:09:ea:09:74:86:
4d:d4:d7:6e:ca:e3:12:ff:3a:5a:cf:41:2f:6d:7c:
a7:3b:63:4d:89:0b:eb:e0:cf:59:15:27:ac:0d:fd:
89:03:37:2a:2a:97:c4:62:d6:2d:14:af:1e:d9:92:
c1:0c:83:63:4d:05:e1:fc:75:34:a9:21:a3:d3:70:
4a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D2:4A:61:A9:CB:00:2C:18:8D:C6:1B:83:14:19:17:F6:47:51:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F76DBD7A008011EFAAE781FF007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.112.0/20
Signature Algorithm: sha256WithRSAEncryption
80:3e:35:ac:1b:a1:28:73:7b:6a:82:8e:c9:f2:88:59:4d:0f:
a6:b1:66:d0:1d:02:b6:58:d1:43:a1:82:6a:62:78:fa:e4:97:
cc:26:3b:a4:fd:63:70:7c:70:94:6d:28:8e:de:0b:5e:59:21:
06:28:2a:0e:b4:4f:4d:c6:55:52:80:84:0a:2e:ff:9c:23:68:
de:d8:e4:c4:54:b6:99:bb:f7:0b:9a:4d:15:ca:dd:19:54:69:
36:8a:f8:75:52:1f:f4:30:11:e9:4d:d5:06:46:59:aa:4a:79:
91:1d:c8:95:6e:2a:24:0f:a1:78:aa:61:ca:98:98:1c:4b:b2:
6e:50:84:64:e4:47:59:33:b9:b8:0a:6b:90:a5:51:65:88:a3:
4c:3c:cd:e4:a5:ab:a0:c1:62:b9:a8:ac:5d:93:31:aa:82:4a:
18:58:50:95:db:85:23:61:02:c4:9f:1c:b0:34:7a:86:40:d8:
c8:71:32:73:9e:61:a6:7a:af:02:8a:9d:ad:26:44:51:69:07:
29:95:9a:75:b2:43:9a:39:9c:d3:a4:38:e7:86:46:30:f2:96:
c1:b6:e2:0c:87:1a:73:e5:96:48:2e:19:39:8c:3c:0e:bc:10:
d4:c2:35:e7:67:67:c8:da:f0:45:cc:b2:80:20:13:a9:30:e5:
6b:cf:c5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 07:56:26 2024 by rpki-client on console-ams.rpki-client.org