Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2100984808F111EEB2CF191B4AD9E6FC.roa
File: 2100984808F111EEB2CF191B4AD9E6FC.roa (raw, json)
Hash identifier: K3NevZ2X8RcWl5SGxZLK64tCK9w0YnLucnX+U2modJ4=
Subject key identifier: C8:F0:2F:C7:5B:5D:37:FC:BA:A3:99:ED:7E:3D:A1:2C:20:95:6F:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AD9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2100984808F111EEB2CF191B4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:17:03 +0000
ROA not before: Mon 12 Jun 2023 07:16:59 +0000
ROA not after: Sat 25 May 2024 07:16:59 +0000
asID: 131178
IP address blocks: 45.201.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10969 (0x2ad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:16:59 2023 GMT
Not After : May 25 07:16:59 2024 GMT
Subject: CN=6486c66f-5457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:41:77:27:14:c8:de:69:bf:13:81:21:a0:d2:
a2:fa:3f:b2:54:22:d4:85:64:5d:b3:15:e6:6e:ca:
83:44:25:d0:93:3a:02:43:c5:07:20:d5:79:64:b6:
db:f2:ae:d0:36:22:6f:67:4b:c8:ea:7c:c7:1b:da:
a2:e4:5d:f4:4f:4e:fa:98:95:fa:e3:39:52:6a:f7:
17:aa:36:75:6a:56:69:2a:5c:54:6a:87:39:46:d2:
41:29:df:b6:6c:0b:79:0d:34:ad:fd:e6:dc:b4:85:
41:50:0e:df:64:87:64:c5:5d:72:1d:66:0e:35:1c:
75:2d:d4:d0:7e:12:8d:48:94:0f:db:32:26:67:a2:
f4:c4:ff:91:4f:f4:e0:ba:f7:c5:fd:67:dc:fb:40:
90:ba:93:64:c7:a8:10:3a:55:58:23:44:49:68:84:
d2:4e:30:47:c4:33:02:11:fd:f2:29:ae:30:9b:ad:
04:b2:ea:4b:4a:af:33:8e:20:ef:90:81:b6:3d:7c:
fe:1d:a6:fc:99:9f:b3:a8:f9:6b:f7:74:5f:b0:36:
88:64:dc:72:99:ea:ba:6e:07:41:a0:a3:f9:fd:05:
86:23:03:ac:d2:a8:92:4e:b1:14:90:b6:41:1c:61:
ad:04:1d:7f:13:cf:d4:74:62:8f:4b:ac:7b:8f:6c:
f1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F0:2F:C7:5B:5D:37:FC:BA:A3:99:ED:7E:3D:A1:2C:20:95:6F:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2100984808F111EEB2CF191B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.147.0/24
Signature Algorithm: sha256WithRSAEncryption
19:47:88:c0:1e:af:56:4b:28:7e:c6:4e:bf:24:5a:68:e8:4a:
40:e7:cb:6d:2c:e0:60:cf:b2:b2:40:a8:c8:8f:4b:40:f9:c5:
95:d6:39:4b:3e:56:24:37:5c:87:fe:ff:8f:7e:a5:f9:48:59:
91:d5:28:dc:f7:2c:82:cd:ba:a8:3a:cb:0f:30:f1:91:0b:cc:
40:15:50:69:74:d7:d1:da:16:56:c9:f3:c8:f8:80:41:36:74:
93:e2:db:7f:f8:b3:e4:54:56:f0:23:a4:24:fb:af:db:47:cb:
9d:ae:d6:90:89:d3:71:40:2b:40:ac:41:44:8f:96:02:f7:62:
15:40:fa:95:87:12:11:2e:c8:18:02:7e:4c:da:c1:08:99:b3:
23:5a:90:3f:9c:a5:63:f9:d6:00:b9:60:e4:3f:ab:b2:26:84:
29:d0:b6:a9:ae:32:af:bc:68:2b:07:4d:c7:e9:ef:b1:92:4d:
6b:66:08:45:b0:c0:5b:8b:38:e1:50:d3:c3:05:ee:21:3a:61:
a1:8c:23:96:33:90:a9:ae:61:b6:90:77:a6:8d:59:4a:2c:a8:
16:bc:fe:83:76:4f:d1:19:bb:a8:a4:f2:10:6a:88:4e:ce:cb:
f3:b4:a1:c0:20:f3:df:d2:6c:b1:02:8b:a6:b1:47:ec:3b:60:
8c:38:2a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:20 2024 by rpki-client on console-ams.rpki-client.org