Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2838BF167EBF11EEA9A45C6E4AD9E6FC.roa
File: 2838BF167EBF11EEA9A45C6E4AD9E6FC.roa (raw, json)
Hash identifier: euNKVkC9zHQDkAWx1XMpkf+K1jH7fjRUExwq+lOa1Kg=
Subject key identifier: 1B:E9:6F:28:85:12:18:BA:F7:5F:FA:DF:52:24:09:27:BB:1A:D7:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 44FD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2838BF167EBF11EEA9A45C6E4AD9E6FC.roa
Signing time: Thu 09 Nov 2023 05:16:38 +0000
ROA not before: Thu 09 Nov 2023 05:16:34 +0000
ROA not after: Thu 07 Nov 2024 05:16:34 +0000
asID: 133847
IP address blocks: 45.200.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17661 (0x44fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 05:16:34 2023 GMT
Not After : Nov 7 05:16:34 2024 GMT
Subject: CN=654c6b35-58f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:43:60:84:ac:bd:92:a8:48:0d:9e:a1:87:0b:
21:51:4f:af:ec:3d:87:38:29:c8:cd:1f:1d:5e:bf:
47:0a:41:d4:02:2e:e2:84:98:51:d1:e6:fa:73:2a:
c2:5c:5d:28:8c:43:81:2c:6c:0f:b9:2f:33:17:6c:
f2:07:d8:9d:5c:29:87:02:86:2c:9b:ee:da:5b:5b:
03:57:92:9a:65:e5:40:43:9e:80:aa:48:69:24:be:
46:14:ba:c5:43:8e:b7:33:7c:85:55:46:e4:d1:f4:
52:44:92:4d:93:82:1d:e8:8d:79:e9:32:67:60:c6:
10:ae:dd:8a:d9:b7:fc:d6:98:cc:0a:15:c9:a2:8b:
5a:0b:ba:86:c3:0f:0c:de:9d:ae:b3:a5:8b:a9:b9:
77:74:1d:61:ba:61:30:66:90:6c:db:21:cd:36:1a:
f5:8f:66:f4:b6:5c:7e:e5:3e:10:49:8d:34:6b:e3:
cc:b9:0c:08:c6:7c:d3:e3:16:0d:76:5b:d5:9f:e7:
c8:fa:0f:4d:44:62:76:6a:ed:2b:70:e6:1b:e7:c9:
bb:f8:be:46:26:28:c9:71:77:32:1a:4d:52:eb:ca:
8a:44:9c:55:31:f2:aa:63:e6:e4:80:21:0c:36:28:
a4:df:9b:d1:bd:bd:c5:c7:b2:3e:c1:7b:ec:41:2b:
ea:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E9:6F:28:85:12:18:BA:F7:5F:FA:DF:52:24:09:27:BB:1A:D7:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2838BF167EBF11EEA9A45C6E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.84.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f9:a0:2a:b8:c4:97:05:c3:91:ec:d2:d6:f2:e9:f5:79:25:
bd:83:a5:25:1f:f2:7b:c2:7a:e8:d1:03:23:2c:c0:44:51:c7:
15:c8:23:81:28:08:ed:8a:1e:e1:6b:05:33:09:f0:7f:ca:ae:
66:34:90:c2:9e:45:ed:84:10:4d:63:4d:d2:99:6a:f6:fb:45:
c0:15:81:65:9a:69:bb:f3:b9:ce:f1:a8:3a:ff:fb:49:d0:b4:
16:f5:e0:78:c6:e2:e5:29:8a:3b:96:36:82:ff:9c:c3:38:d5:
63:d4:28:0a:92:02:5e:19:12:50:b2:eb:91:1b:b7:75:c1:d1:
7d:3a:95:01:19:86:fe:f4:7e:42:8a:9e:ee:b4:9a:db:67:01:
5d:cf:7d:7f:b8:3a:e3:6b:59:ca:54:95:70:f7:ee:17:70:4a:
1f:55:7a:4d:86:19:f7:48:ed:60:a4:8b:3f:10:24:04:2d:ca:
fd:1e:bd:bf:24:4d:ae:6e:37:72:45:f1:a2:29:6f:e1:8c:30:
79:23:27:17:c2:5d:cc:e9:7d:85:04:40:ba:bb:6e:38:3b:3c:
7c:66:05:59:56:61:bc:9b:64:21:cc:83:6d:af:5b:51:d5:55:
68:76:7a:78:ba:a7:fc:c5:98:05:1c:2d:5a:c4:f7:56:e8:1b:
e4:2f:b8:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org