Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22E21ED44BEF11EE89DC10584AD9E6FC.roa
File: 22E21ED44BEF11EE89DC10584AD9E6FC.roa (raw, json)
Hash identifier: upWvjFTFm0ZQy1oCeGkFSetc1l/HEzBf1guee9mh440=
Subject key identifier: 17:F1:19:34:9B:3A:CD:65:11:DC:3F:04:FE:57:88:03:84:E9:14:59
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 37F1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22E21ED44BEF11EE89DC10584AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:21:35 +0000
ROA not before: Tue 05 Sep 2023 13:21:32 +0000
ROA not after: Fri 24 May 2024 13:21:32 +0000
asID: 131178
IP address blocks: 45.201.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14321 (0x37f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:21:32 2023 GMT
Not After : May 24 13:21:32 2024 GMT
Subject: CN=64f72b5f-6d50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d3:3a:d0:da:66:58:af:ca:b0:5a:02:32:d3:
c8:fa:18:6c:69:32:b6:c6:db:0c:44:23:d2:d2:a1:
ea:82:12:42:99:ce:69:e3:0c:6f:0d:d4:6f:f3:6c:
f9:12:84:c0:82:2a:63:aa:e3:4d:e9:ac:90:f1:11:
8d:b2:bd:31:ee:d1:76:6a:21:59:76:a4:04:9c:d7:
c5:b8:21:6b:ec:a1:5a:26:75:29:48:e7:5f:72:b5:
23:00:71:bb:81:78:f3:36:b5:a2:40:29:0c:2e:38:
13:16:0e:de:a9:c9:8e:05:c6:b9:a1:1d:45:45:b4:
31:ac:3f:4b:48:ce:88:e7:53:ee:50:7d:54:83:1b:
41:d7:d1:68:5a:d0:1f:6c:5d:38:32:d3:d6:ec:a9:
1f:81:e0:96:3b:ab:ce:f6:6d:a5:4c:b1:66:8e:4d:
b9:fc:bb:1d:1d:3c:25:25:fc:a8:b8:60:86:72:d6:
fd:ef:eb:c8:6f:84:4b:87:6c:e7:92:52:cd:16:6f:
b4:bb:25:9d:47:0a:13:7f:d2:f3:ed:67:77:26:6e:
57:c1:55:db:20:33:68:0c:8b:a9:5c:9b:a5:78:f4:
3a:27:51:68:95:ef:2f:b1:52:aa:49:3f:71:87:be:
35:8d:3e:75:f1:8b:89:78:02:e2:c9:96:1c:cf:c7:
48:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F1:19:34:9B:3A:CD:65:11:DC:3F:04:FE:57:88:03:84:E9:14:59
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22E21ED44BEF11EE89DC10584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.171.0/24
Signature Algorithm: sha256WithRSAEncryption
97:9c:ac:ad:5f:a7:56:b0:87:5f:98:44:47:6b:65:7e:0a:61:
a4:32:8f:3c:b4:62:c8:67:8f:3f:e7:ae:16:b1:ad:5f:45:66:
d1:4d:8f:a5:bc:2c:ba:79:97:05:3e:85:7a:9a:11:96:1e:1a:
cd:e0:e0:92:04:2f:4e:ec:d1:3f:f9:03:2d:4d:4c:6e:ee:b0:
58:28:eb:a6:60:6f:61:3e:4b:52:f6:b5:06:a5:13:99:4a:dc:
7f:58:a1:1d:e3:7d:49:71:14:4e:ad:2f:e7:dd:80:ac:c3:45:
3f:fe:58:73:20:4a:46:cf:43:9f:9a:86:92:17:f5:4f:e0:2b:
df:3e:f3:28:97:1a:0e:6e:b9:7f:7d:76:fb:d8:f9:3a:de:86:
4e:bc:d8:43:1b:6f:42:00:bf:12:4b:5c:67:03:ca:14:58:2c:
45:5e:54:35:be:b2:4f:06:e8:fd:72:f3:cc:73:0d:1a:b9:3e:
bc:36:35:f3:59:9a:93:46:0e:4b:a9:2c:15:62:de:fd:9a:3f:
f2:68:e8:dc:6a:05:21:29:17:1f:2e:66:03:e4:ec:45:7c:56:
74:47:73:06:d0:80:7e:eb:3e:43:0a:03:c2:44:64:37:6d:fb:
f2:d6:8f:9f:96:fd:da:ed:23:a3:93:6c:0d:37:f4:e8:d6:27:
23:89:19:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:17 2024 by rpki-client on console-fra.rpki-client.org