Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AC51E48157911EE9AD4B0214AD9E6FC.roa
File: 0AC51E48157911EE9AD4B0214AD9E6FC.roa (raw, json)
Hash identifier: 8THxk4BK2nCqp/qohhwZSy+zgo7gxzXms14Zu0GqeQM=
Subject key identifier: 15:B6:21:AD:8D:D0:33:C9:D8:E0:55:AA:49:98:A1:14:87:4E:08:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2DF4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AC51E48157911EE9AD4B0214AD9E6FC.roa
Signing time: Wed 28 Jun 2023 06:00:11 +0000
ROA not before: Wed 28 Jun 2023 06:00:08 +0000
ROA not after: Tue 29 Oct 2024 06:00:08 +0000
asID: 135607
IP address blocks: 45.194.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11764 (0x2df4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 06:00:08 2023 GMT
Not After : Oct 29 06:00:08 2024 GMT
Subject: CN=649bcc6b-56d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ea:01:2c:6d:a3:2e:3b:78:c3:71:47:a7:5e:
4b:b2:19:f5:5f:49:06:d5:98:cb:62:03:fc:1a:bc:
59:d8:84:d8:d3:7a:c5:d5:0c:0f:56:55:a7:b0:63:
1a:13:5b:88:0c:98:a4:fa:ad:9f:db:1d:0d:88:6e:
38:15:ed:ba:e6:3a:fc:2b:9c:5c:4c:5f:e3:04:b4:
58:c1:14:3c:d0:92:c0:a5:6b:c0:c3:4c:03:b4:f7:
b1:1f:60:9c:b6:9d:eb:6a:b1:be:3a:c7:55:13:63:
5e:14:33:ad:78:2f:b8:2a:a3:c6:3d:cf:dc:00:dc:
a6:0a:94:32:44:b9:36:c8:0d:0d:1c:d7:34:49:6b:
2c:23:b4:33:27:c9:26:b5:37:68:43:a2:32:1c:b8:
15:57:3e:d2:20:10:9f:96:7a:00:e8:5f:ae:08:5d:
ac:ce:fb:3a:b2:93:82:05:b8:76:f5:00:e3:7e:06:
f8:4b:ef:0e:21:fa:58:d1:a5:d5:e1:89:1a:e3:03:
6e:e7:29:66:6f:5a:91:2f:78:25:c4:46:ae:f5:d9:
60:fd:04:9c:3b:4d:e0:64:84:19:d8:22:34:30:58:
47:d6:f8:9a:e2:37:09:54:94:fa:38:d8:c7:64:d5:
13:15:ad:22:20:a5:00:b9:b6:fc:57:94:c3:6a:7f:
5d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B6:21:AD:8D:D0:33:C9:D8:E0:55:AA:49:98:A1:14:87:4E:08:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AC51E48157911EE9AD4B0214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.14.0/24
Signature Algorithm: sha256WithRSAEncryption
04:7f:3b:99:93:90:a8:84:7b:10:e5:cd:55:5d:a8:29:76:13:
5c:00:4a:92:5f:e7:ea:12:5b:61:59:94:53:b2:fb:2d:a6:4e:
86:2f:a9:90:9d:2f:be:ca:43:f0:d9:f9:0a:d5:d2:75:df:f9:
26:4f:7e:56:d1:5a:7c:28:98:08:e4:a9:df:78:c2:a0:af:98:
c6:21:3e:12:13:3a:35:f7:b2:a1:ac:60:a9:43:8f:c1:25:97:
17:c6:8b:3c:61:ed:4d:05:08:59:a4:a3:85:6e:a1:6e:92:44:
52:98:46:07:6d:9c:6a:7f:2f:87:87:6d:a8:d5:c5:b5:a2:5b:
69:5f:9a:4f:5a:2d:c3:ff:e7:6e:b6:a4:cf:82:ae:48:66:c2:
99:e8:b2:f5:15:7e:41:b6:3d:b3:55:28:94:f5:ca:59:7b:3c:
c7:be:85:ee:d2:5c:36:0f:31:72:33:09:d1:9e:b0:86:f3:3e:
2e:b1:74:a6:bc:19:f7:58:3c:3c:61:28:12:f6:48:36:b8:7a:
48:a6:71:23:84:25:b0:88:5c:21:7d:8f:0a:dd:17:21:49:9b:
bb:ee:47:af:33:fb:36:b2:0d:22:b4:6b:76:f4:a7:75:48:87:
7b:05:17:94:7e:27:30:01:bc:bd:5f:11:7f:4d:4e:45:d5:ff:
f0:32:db:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org