Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FC47CFE04E811EFA233EE60017001B1.roa
File: 5FC47CFE04E811EFA233EE60017001B1.roa (raw, json)
Hash identifier: 89BpzjloJYOL+Tp9SLl9eIKM9hzkPN0AD/TCpNg3hZM=
Subject key identifier: 06:51:D3:CC:82:BB:15:3F:0C:AE:1A:38:28:6B:BA:9E:99:49:4F:0A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 867A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FC47CFE04E811EFA233EE60017001B1.roa
Signing time: Sat 27 Apr 2024 22:49:16 +0000
ROA not before: Sat 27 Apr 2024 22:49:12 +0000
ROA not after: Sat 25 May 2024 22:49:12 +0000
asID: 26617
IP address blocks: 45.195.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:16:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34426 (0x867a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 27 22:49:12 2024 GMT
Not After : May 25 22:49:12 2024 GMT
Subject: CN=662d80ec-f30e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7c:03:e1:6a:7d:e4:1c:fc:2e:e3:a9:3d:84:
df:69:8f:65:f6:9d:e1:97:63:5a:6d:a0:73:26:ff:
08:5d:81:3f:ec:b2:ae:cb:45:80:42:88:95:8f:65:
5a:47:23:fc:0f:5f:94:74:eb:cc:99:9a:82:ad:52:
b1:cd:3b:7d:5a:ef:41:c8:0d:41:b2:8f:0a:3a:ad:
ed:25:28:2b:90:b8:91:1b:52:ae:83:e0:b3:56:d8:
e3:07:48:b1:f3:84:20:cd:51:1d:cf:03:44:52:7f:
d8:eb:4e:45:9e:d0:d2:0d:98:04:e7:f3:13:aa:86:
7e:4f:cb:7d:51:dc:d6:26:01:32:6d:de:8c:ac:36:
eb:f0:c6:59:75:bf:be:80:22:16:d3:87:53:4f:42:
f8:1a:eb:89:a9:0a:4d:1d:d5:9a:2d:3d:cc:42:21:
07:6b:92:ab:c1:95:c2:bd:1c:50:7f:34:ca:d4:c8:
7f:b0:06:8a:48:00:e0:e8:5e:3b:1c:7e:d4:63:cc:
0b:80:31:ce:2b:86:d1:6f:fc:8e:5a:39:24:70:d1:
92:d2:2c:f2:33:6a:37:c5:9e:13:66:40:f5:53:40:
72:c4:ea:bd:4e:ca:54:64:2a:4b:5f:f4:07:d9:4c:
eb:44:1d:c2:73:c1:48:21:2b:7f:ce:fc:a8:8a:d4:
3b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:51:D3:CC:82:BB:15:3F:0C:AE:1A:38:28:6B:BA:9E:99:49:4F:0A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FC47CFE04E811EFA233EE60017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.146.0/24
Signature Algorithm: sha256WithRSAEncryption
52:29:8c:0e:34:6a:0e:d8:51:d2:4c:0e:2d:ea:9b:dc:c1:42:
69:ae:1b:66:45:87:44:27:28:27:db:b2:d9:b8:9c:9b:f7:47:
c5:58:d2:54:9d:d7:db:19:80:0d:97:f2:a6:5d:fb:a4:11:be:
44:74:89:24:14:e3:95:49:b0:46:aa:cb:2c:ec:c6:69:5b:e9:
b5:b2:a0:80:db:7c:2b:14:a7:68:28:4c:58:5c:79:bb:a7:05:
42:50:20:1d:32:6b:a2:95:23:14:53:9e:ec:5d:96:41:b8:81:
47:18:c3:23:53:4d:8c:e9:f8:19:fa:fe:b3:d9:a7:36:98:c5:
76:97:b8:e5:75:2d:57:b2:b9:67:d1:6b:09:2c:b4:22:1d:7a:
66:67:8f:47:b7:3b:79:ce:a1:9d:d2:5b:f0:66:75:f5:16:35:
a0:30:71:ea:60:0e:4c:a7:1d:4a:5a:57:54:5f:9c:6b:5d:93:
42:c7:93:60:69:99:7b:7a:a7:a3:9b:1f:e6:ed:f8:de:b2:10:
c3:41:48:f0:88:88:91:cf:d1:f4:46:c1:19:a4:bc:c1:40:55:
4c:61:92:19:02:54:e2:ae:78:97:ac:e2:59:37:39:47:33:76:
ca:da:2c:4d:1a:62:bb:e5:61:53:e0:71:0a:72:88:05:1e:83:
f4:f1:70:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 16:21:18 2024 by rpki-client on console-ams.rpki-client.org