Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05F0098608F011EE8AFA08184AD9E6FC.roa
File: 05F0098608F011EE8AFA08184AD9E6FC.roa (raw, json)
Hash identifier: tzAhTCCxWaVW8CJKu9mC73+dIz43v/7epcsevVc1jOo=
Subject key identifier: 74:7A:79:07:07:93:74:E5:29:E3:D5:6A:3E:BE:79:AE:23:55:BC:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AC5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05F0098608F011EE8AFA08184AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:09:08 +0000
ROA not before: Mon 12 Jun 2023 07:09:04 +0000
ROA not after: Sat 25 May 2024 07:09:04 +0000
asID: 131178
IP address blocks: 45.201.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10949 (0x2ac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:09:04 2023 GMT
Not After : May 25 07:09:04 2024 GMT
Subject: CN=6486c494-d160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:d1:a1:85:db:b2:7b:33:68:8d:eb:f7:b0:
f0:fa:96:b0:68:04:2e:b5:e5:57:30:9c:72:6d:b9:
7b:d7:7c:94:f5:98:55:eb:e5:f7:b1:90:b0:43:df:
44:1c:67:b1:80:e6:c8:70:a3:33:5c:8b:7d:b1:fb:
dd:60:91:23:34:d6:81:10:6d:fd:83:96:91:cf:d7:
f5:b7:05:b5:07:8c:38:f0:e7:d1:72:02:6c:a3:01:
1b:9e:e2:01:4e:62:27:1d:c9:9d:38:6d:f9:b2:01:
64:f8:71:2a:cb:15:ab:a2:28:d5:83:2c:a8:b2:6f:
7c:4e:5b:41:f5:a6:7d:f6:fe:c7:0c:3c:3e:2a:ec:
bc:b9:a0:25:c3:39:03:10:57:66:c6:30:d9:57:0c:
8b:2c:72:0c:5d:11:e1:8b:b5:cc:c1:29:7e:74:e6:
30:09:0c:38:2e:f0:75:21:a1:82:53:4b:83:33:23:
eb:d7:d1:f1:8d:84:30:df:54:40:f6:08:9d:a0:f7:
eb:21:71:ae:53:c6:1d:5c:c7:c7:52:bd:7e:93:aa:
9a:60:6a:4e:2c:64:1c:91:7e:85:75:98:b3:72:ae:
92:08:78:98:f4:aa:9d:13:c5:d9:fa:78:05:4f:40:
1d:61:a0:ac:f1:7e:ce:a4:b9:6f:89:b2:17:9a:ff:
c4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7A:79:07:07:93:74:E5:29:E3:D5:6A:3E:BE:79:AE:23:55:BC:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05F0098608F011EE8AFA08184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.135.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e7:98:04:37:6f:85:77:2a:53:3e:87:f2:c4:a3:22:4b:8e:
52:6f:19:30:06:b5:25:6f:95:88:13:04:e8:cb:4f:46:80:88:
32:3b:72:45:0a:10:3f:98:66:0b:ef:c5:6d:7e:f6:eb:1c:d4:
62:2c:39:91:f2:59:d1:70:c2:a5:24:d4:c6:89:eb:88:e8:f2:
cd:e0:d0:9e:23:9c:f2:44:fb:f4:6a:8b:a3:e7:76:05:31:f0:
1c:eb:62:10:f9:20:ec:d1:fe:69:bb:99:0e:7c:fd:6b:24:a6:
a5:cf:1a:51:0f:f1:11:a5:71:ea:88:88:c8:e3:da:80:27:63:
ef:c9:2c:be:fa:a1:12:14:81:75:c5:e2:36:e7:03:61:c3:dc:
9e:d6:e7:99:f7:8f:5f:84:f6:a1:db:61:28:9d:fe:e9:f0:85:
1c:76:52:81:fd:b1:82:83:80:94:60:d8:e4:07:f5:a2:75:08:
a7:fd:cf:d7:44:96:69:25:42:47:11:43:bb:e0:72:16:d6:cd:
eb:d5:20:2f:71:6b:11:f3:36:3e:0f:58:64:28:9e:cf:4c:0e:
79:5e:84:db:13:cc:15:66:19:8f:59:54:fa:03:64:0e:d4:cc:
c9:39:f3:30:a4:e7:fb:2a:cf:e7:73:71:e1:71:92:ea:9d:f0:
91:93:14:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:42:47 2024 by rpki-client on console-fra.rpki-client.org