Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25E7C5067FEE11EE85A578374AD9E6FC.roa
File: 25E7C5067FEE11EE85A578374AD9E6FC.roa (raw, json)
Hash identifier: Hfeag0mjf8CaT6+HZalYYgpFBwbfGaGl5Kk0yIlRgus=
Subject key identifier: B4:DA:E8:9C:87:FC:E6:A6:2F:5B:60:0D:E7:9E:94:E1:88:97:49:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 465A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25E7C5067FEE11EE85A578374AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:25:31 +0000
ROA not before: Fri 10 Nov 2023 17:25:28 +0000
ROA not after: Tue 04 Jun 2024 17:25:28 +0000
asID: 137577
IP address blocks: 45.195.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18010 (0x465a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:25:28 2023 GMT
Not After : Jun 4 17:25:28 2024 GMT
Subject: CN=654e678b-ca58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:06:48:a0:07:9c:83:95:83:9c:9b:88:c1:b4:
55:78:ff:56:c5:8f:c3:c9:97:cd:d8:71:c7:cc:fe:
06:53:1c:dc:24:82:a4:77:be:6e:2c:54:52:3d:ca:
9c:8f:b1:b1:e5:25:bf:a4:ef:27:5e:c5:ec:4b:a5:
42:33:52:8e:bd:3a:d9:24:b5:a8:c3:ee:c3:f4:d6:
aa:b4:50:c9:53:87:44:2b:43:75:94:2d:e8:f7:0f:
e4:23:a4:8d:f8:d9:6f:5d:13:fc:5a:a7:71:5a:04:
21:37:5f:91:e9:19:b6:a6:9d:8a:b1:94:56:21:8a:
4b:3e:16:b3:a0:28:39:9d:49:83:f6:fc:da:e6:df:
ef:ba:17:7e:81:81:3b:0d:b4:07:e8:be:62:de:5e:
48:e4:b7:de:9f:b5:16:e2:6f:9c:00:29:f5:33:ae:
7f:d0:f6:4c:77:14:c0:16:9e:9e:d1:28:82:53:01:
8f:77:61:df:ea:6d:88:f5:43:71:c3:f7:fb:8d:67:
63:1e:eb:a7:a5:a3:dc:2e:ba:d0:ef:8e:ec:d9:32:
e9:cf:63:d3:be:43:9e:33:86:6a:c1:04:b7:3f:e6:
6d:0b:a7:af:fc:b3:32:4b:ac:01:5c:00:9d:cf:33:
16:cc:1b:2b:d8:f7:ce:9b:02:02:f0:82:85:8e:cf:
55:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DA:E8:9C:87:FC:E6:A6:2F:5B:60:0D:E7:9E:94:E1:88:97:49:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25E7C5067FEE11EE85A578374AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.40.0/24
Signature Algorithm: sha256WithRSAEncryption
93:41:3b:fa:93:d8:81:aa:0a:90:8f:ff:6e:5d:0c:fb:bb:f8:
5a:9c:ca:03:0f:d8:b8:47:dd:64:46:e9:6d:65:1a:89:36:99:
41:55:5c:3b:14:df:8a:4f:99:38:6f:1c:93:b9:fb:c9:7a:83:
47:db:9f:e7:87:44:aa:ad:87:50:ed:45:e7:5f:6e:1f:f2:ce:
09:97:12:64:21:50:d8:a2:18:df:23:77:3d:83:72:25:3c:46:
f8:7a:f7:b2:ff:da:78:93:3d:91:d2:d2:5d:ff:bb:b9:e9:6d:
46:30:d0:2f:1d:d6:83:e6:e7:fd:9b:2d:1d:67:d8:04:10:76:
d7:59:95:1b:fc:17:58:ff:93:ee:37:be:d6:55:c6:31:4b:2b:
78:6a:85:c0:a8:15:31:39:42:63:f8:f8:73:50:cb:06:79:0b:
15:8f:5f:be:fa:63:7d:4a:4f:59:58:52:4f:c8:2d:55:2e:a0:
b5:40:48:0e:74:aa:e2:21:e0:be:00:7e:13:b7:92:a3:70:14:
ad:29:dd:c5:e6:1b:03:95:1a:c7:21:89:8f:62:8b:3e:f2:2b:
a9:7a:8f:9a:e4:58:c7:49:0e:87:35:cd:a2:c4:43:47:0c:fc:
bf:cf:e6:d5:ec:a2:09:af:49:14:0a:9b:99:c6:30:d8:86:ed:
e3:d1:a3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org