Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/09299616207F11EEA63A8A2A4AD9E6FC.roa
File: 09299616207F11EEA63A8A2A4AD9E6FC.roa (raw, json)
Hash identifier: t8Z0YE4vPpWNj87WgWiOjMar6U3dyt7n65h/9RKeB7A=
Subject key identifier: EB:01:20:6A:22:71:96:2A:55:70:27:35:C0:7F:8F:64:0C:86:E7:05
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2FA3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/09299616207F11EEA63A8A2A4AD9E6FC.roa
Signing time: Wed 12 Jul 2023 06:40:48 +0000
ROA not before: Wed 12 Jul 2023 06:40:44 +0000
ROA not after: Fri 24 May 2024 06:40:44 +0000
asID: 38901
IP address blocks: 45.201.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12195 (0x2fa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 12 06:40:44 2023 GMT
Not After : May 24 06:40:44 2024 GMT
Subject: CN=64ae4af0-9f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c2:77:f3:07:a5:0d:3b:3b:bc:cf:a0:38:ec:
36:af:51:7d:0c:eb:f4:01:56:31:bd:e7:d3:65:eb:
9a:11:46:68:22:21:70:10:da:b8:83:eb:3a:e6:f6:
fb:7d:4c:44:64:50:52:15:fe:a0:e4:ec:4e:bb:60:
85:6e:62:92:5a:df:9e:96:3f:81:61:c7:5c:ac:05:
52:f3:87:29:20:97:a3:6a:72:e4:90:a7:0f:c7:94:
1f:e6:88:b3:7d:1a:9b:4c:d1:33:c8:3f:44:a4:00:
56:fb:24:07:2e:b6:f5:54:4c:6c:0d:74:57:cf:dd:
66:f8:a2:55:31:16:72:2b:74:62:3b:64:24:33:18:
71:d2:0b:ee:f4:92:02:be:5c:9f:a6:6d:30:45:60:
56:0c:06:c7:aa:9a:16:b5:37:f5:1a:e4:72:a0:bf:
6c:f9:25:bd:83:81:9f:63:8e:9f:3e:b6:43:69:39:
83:bf:da:e9:3b:83:f6:56:8b:fd:2f:de:1d:c3:d0:
ad:4e:1a:7d:86:25:b7:90:e7:42:da:d6:60:5e:7b:
d1:e5:86:b7:ba:5e:7f:ba:66:1b:5e:48:cc:34:00:
2d:05:38:ee:6f:7f:9c:ee:33:56:df:f6:3b:c0:ca:
22:97:82:bd:1d:1c:78:51:9d:7b:41:be:72:0e:a6:
e8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:01:20:6A:22:71:96:2A:55:70:27:35:C0:7F:8F:64:0C:86:E7:05
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/09299616207F11EEA63A8A2A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.208.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:f0:aa:ef:94:e8:07:d0:77:25:d4:c3:bf:9c:4b:58:a8:9a:
d5:81:c8:75:76:04:07:37:6f:ab:16:22:02:33:ea:0a:a3:82:
be:87:08:02:92:99:3e:0c:12:c4:02:96:0f:d5:ef:9b:ac:3c:
ec:6b:e8:c4:1c:c7:2e:cb:b6:31:76:e3:e8:f6:7c:4d:12:90:
17:c1:61:ba:a5:dd:91:d3:da:d5:65:3f:d2:8b:59:8c:02:61:
98:27:c2:60:eb:44:63:6f:47:b0:0c:1d:79:de:c1:18:ec:6a:
5a:bf:24:72:58:38:f5:d1:a1:65:3b:eb:28:73:60:5a:eb:35:
5d:3d:ba:85:0a:69:ba:ca:b1:c6:d5:39:f4:83:f0:bb:a7:ae:
d9:9f:1a:25:be:96:e4:f6:d4:03:94:60:63:e1:f5:1a:f9:61:
53:0e:6a:db:42:b2:fa:09:33:c6:1e:55:94:f4:cb:88:15:a7:
fa:f2:55:8f:90:c6:d1:2c:8f:f6:df:24:14:e1:2a:aa:1b:de:
7e:d3:18:1e:7d:59:3a:bd:d6:d9:a1:ca:59:0f:0a:c5:3a:ac:
09:79:a6:ac:5e:e9:7f:68:88:52:3b:c7:b6:3f:6f:41:17:b4:
e2:78:7c:a1:ec:7a:e3:fd:76:75:ff:c9:01:f7:02:1d:86:86:
84:53:d6:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org