Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/290370FC16FB11EE981B6E384AD9E6FC.roa
File: 290370FC16FB11EE981B6E384AD9E6FC.roa (raw, json)
Hash identifier: IOGMpfR8B36jUWcc6pNBih8VXkcUhbM/xcJg+GJtwqU=
Subject key identifier: A1:BE:0E:6F:88:B5:79:AA:C5:B5:F1:37:A3:21:6E:76:84:38:10:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2E3B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/290370FC16FB11EE981B6E384AD9E6FC.roa
Signing time: Fri 30 Jun 2023 04:04:08 +0000
ROA not before: Fri 30 Jun 2023 04:04:04 +0000
ROA not after: Thu 23 May 2024 04:04:04 +0000
asID: 59134
IP address blocks: 45.195.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11835 (0x2e3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 30 04:04:04 2023 GMT
Not After : May 23 04:04:04 2024 GMT
Subject: CN=649e5437-3246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:43:2e:85:3c:af:92:8f:46:77:fe:6f:e0:8c:
da:77:e8:e9:20:3d:15:ff:de:09:7e:4d:13:a9:94:
4d:ec:b3:74:ec:60:2f:ba:9e:1f:72:2b:b0:27:a5:
e1:be:a1:78:9b:01:a3:17:af:68:dd:17:d3:21:e6:
d2:cc:1e:56:21:b0:fe:60:37:ca:e4:0d:bf:df:eb:
36:97:a0:46:a5:fc:b1:44:5b:21:65:d3:ee:84:51:
b3:76:a3:4e:b7:78:8c:23:69:27:01:4c:b8:c1:7d:
be:de:0f:71:be:3c:07:eb:81:2a:85:01:b5:da:bb:
ae:4a:8a:fd:d3:cd:6e:e0:be:d1:e4:a4:0c:48:3b:
c3:87:1a:88:71:eb:06:11:34:53:ec:2a:9c:f5:27:
fd:52:05:a3:93:8b:4d:fe:89:d4:3c:72:95:6b:d3:
76:c7:f8:ca:81:30:06:90:02:1a:87:dd:2e:ca:66:
ff:f2:8c:c2:4c:1b:88:1c:0a:47:67:8b:0b:19:99:
af:6e:d6:05:b2:2b:31:bf:ed:69:de:99:d7:ae:18:
54:75:86:fa:0b:5b:38:5b:4d:60:13:f1:7e:d1:c2:
eb:6f:f3:00:14:75:8c:eb:cc:32:5d:f9:d0:06:5f:
31:5b:87:1f:37:45:00:fa:28:3c:fb:fa:d0:11:24:
1a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:BE:0E:6F:88:B5:79:AA:C5:B5:F1:37:A3:21:6E:76:84:38:10:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/290370FC16FB11EE981B6E384AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.248.0/24
Signature Algorithm: sha256WithRSAEncryption
52:77:e9:e5:b7:62:be:f8:8a:33:56:16:ac:0b:fa:f8:be:70:
f4:75:d2:66:12:9f:7c:bb:7a:e2:0f:3b:05:58:6a:d2:19:49:
44:08:32:03:25:10:54:79:93:fd:cf:06:ef:f2:5e:d9:d8:91:
fd:9a:bf:53:ce:19:9d:12:44:35:00:af:f1:0b:ae:7c:94:de:
50:38:d1:93:73:7f:58:6b:70:b9:bd:28:ea:ba:e5:9b:ad:8c:
89:ca:95:eb:c1:cb:57:d5:b2:b0:ea:17:44:6c:af:ea:c4:5f:
25:c3:a7:ad:4b:8a:99:e0:7e:6e:a8:76:da:e1:8b:03:05:d4:
ff:e5:8f:d3:73:dc:98:5d:83:b9:03:28:46:9d:c8:cf:6b:7a:
db:b0:72:40:4d:bf:84:f1:9f:3f:27:73:3e:28:e4:27:da:2e:
7a:2b:85:3e:7f:ff:71:b9:f9:69:94:98:c0:7f:76:56:c9:19:
94:2a:16:a7:49:c6:6a:06:d3:5e:82:ff:1e:b1:1f:98:73:98:
ca:2f:f7:93:d5:92:6a:c0:89:f9:90:9b:68:4e:29:00:65:63:
70:7f:49:42:99:ad:b0:86:31:f6:a7:2a:34:f2:18:ed:06:77:
b2:02:8b:15:56:d3:4d:6c:77:ba:43:2f:cc:dd:ee:56:76:8f:
3b:42:6b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:53:03 2024 by rpki-client on console-ams.rpki-client.org