Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB05D0A4BECB11EEBA68B879775412E6.roa
File: FB05D0A4BECB11EEBA68B879775412E6.roa (raw, json)
Hash identifier: T1sIuSefYogYxgBEHGMaGLHrwx5YP1/IID5eX9+e1Qc=
Subject key identifier: C3:F9:78:5F:9B:31:B5:05:77:0D:F3:6E:0F:5E:4D:47:0C:C0:D2:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6A6C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB05D0A4BECB11EEBA68B879775412E6.roa
Signing time: Mon 29 Jan 2024 17:29:39 +0000
ROA not before: Tue 30 Jan 2024 17:29:36 +0000
ROA not after: Mon 05 Aug 2024 17:29:36 +0000
asID: 3320
IP address blocks: 45.195.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27244 (0x6a6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 30 17:29:36 2024 GMT
Not After : Aug 5 17:29:36 2024 GMT
Subject: CN=65b7e083-a89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fc:fb:a2:de:fa:d3:3e:24:51:3a:0f:85:52:
cd:24:a9:14:1b:83:18:38:fc:6f:5a:98:1a:12:11:
f9:e9:6c:a5:79:d6:fa:de:3f:2d:24:22:21:f6:e4:
4f:0a:e1:3a:b3:8f:94:7f:82:b6:4a:1f:29:dd:a7:
da:f4:9e:c8:f5:c1:f3:9d:a3:ce:d8:ef:8b:a3:91:
19:af:ee:47:a1:37:69:91:02:b4:20:25:60:7b:89:
22:0f:a2:e3:18:f1:02:b1:2d:b5:63:18:13:3e:82:
a4:69:24:a2:48:83:10:2a:99:e4:2f:0e:8b:e0:4c:
f5:f1:3d:69:7e:11:b8:e6:fc:e4:19:77:44:07:3e:
8b:d3:aa:e4:ae:0c:32:0a:2f:ea:64:81:e2:f6:7d:
cf:99:24:c5:02:5c:ea:70:c5:7a:8b:8f:33:d4:f0:
01:ec:e2:48:e8:3b:e0:b4:2a:c1:aa:86:95:03:43:
ef:14:ff:ab:49:5c:cc:4e:0c:46:9e:42:8e:44:4f:
69:c3:3d:cc:75:da:d0:7b:37:eb:a3:a7:1d:0a:77:
c4:8f:33:fd:ca:e5:52:68:64:78:95:84:e9:67:6d:
44:14:d3:dd:04:34:96:2c:00:30:ef:97:89:ab:07:
6b:c7:af:48:38:6d:9d:c1:9c:01:51:93:f6:c1:4e:
49:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F9:78:5F:9B:31:B5:05:77:0D:F3:6E:0F:5E:4D:47:0C:C0:D2:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB05D0A4BECB11EEBA68B879775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.80.0/24
Signature Algorithm: sha256WithRSAEncryption
70:68:da:13:16:0b:39:46:45:93:d0:3a:8f:91:93:a4:82:8b:
76:1e:d9:67:65:d3:71:b2:27:f5:4f:f0:50:13:13:10:5c:57:
7d:3f:30:85:5c:ab:12:c6:d9:40:bb:c4:f7:e3:55:5d:34:67:
06:c5:84:26:24:f8:8b:a8:4a:7d:3b:53:bb:d0:75:0b:85:49:
87:2c:95:19:2a:c7:05:f8:ba:d0:ac:35:d0:31:b6:f4:5a:1a:
8b:e7:ef:3c:71:78:dd:da:f6:7f:e6:e6:5e:20:2e:74:b5:29:
5b:57:8d:86:cd:42:d2:d6:e6:fd:bb:fc:11:3e:f0:b4:41:39:
e8:30:28:d6:93:63:dd:87:3f:a2:5a:36:f1:c2:f6:75:f2:da:
96:39:36:14:09:1f:65:02:58:ec:ad:9e:ef:fc:0c:c2:1d:c0:
0f:d7:3d:99:76:10:5a:eb:0b:7d:0e:ab:70:d8:16:98:e9:10:
66:7c:af:9d:59:80:69:8f:b4:58:c7:0d:2f:81:62:86:8a:1c:
16:52:fb:c5:54:90:a1:0e:a6:35:c3:51:a0:cf:43:11:e7:fe:
84:b7:bd:a6:51:9e:26:bb:3c:32:a5:97:04:32:c1:29:85:50:
a7:ba:6c:4f:2d:2a:36:08:cb:69:51:da:ff:72:80:c0:e4:59:
53:1a:38:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:05:01 2024 by rpki-client on console-ams.rpki-client.org