Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/296BF0D433A511EE87572A774AD9E6FC.roa
File: 296BF0D433A511EE87572A774AD9E6FC.roa (raw, json)
Hash identifier: K3jKWqhIaA8TWnFHyAfAs2ujt4Ca931X1J3h8tNGVwc=
Subject key identifier: A0:B5:C0:49:B3:C7:BA:F3:87:DA:CC:BD:CD:E7:C2:54:A5:65:67:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3373
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/296BF0D433A511EE87572A774AD9E6FC.roa
Signing time: Sat 05 Aug 2023 15:31:35 +0000
ROA not before: Sat 05 Aug 2023 15:31:31 +0000
ROA not after: Fri 24 May 2024 15:31:31 +0000
asID: 38901
IP address blocks: 45.201.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13171 (0x3373)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 5 15:31:31 2023 GMT
Not After : May 24 15:31:31 2024 GMT
Subject: CN=64ce6b57-52b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d0:a3:38:b5:ce:80:fb:1e:45:41:6b:7b:f2:
10:73:d4:24:d6:9c:8d:d8:d4:f4:d5:aa:4c:98:c7:
60:7c:e6:64:9b:aa:23:7d:37:8a:1b:61:23:f6:7c:
2e:b1:ad:50:7c:8b:62:3e:15:11:8c:4a:01:ea:99:
e4:3f:7c:8a:71:ce:5f:b0:2d:29:77:45:53:31:43:
65:20:1f:97:7e:7e:dd:5f:a3:e0:fb:5d:0f:1a:33:
fb:62:13:b8:ae:81:bd:cb:7c:5b:48:53:95:09:43:
4d:bd:ce:fd:52:0e:d6:02:39:3f:62:18:73:fe:c4:
51:47:f5:f4:2f:d4:b2:6a:82:59:94:bc:b0:a1:c1:
ef:5e:e0:89:58:c3:87:7a:f7:53:0a:dd:95:40:3f:
f2:a2:60:d5:c2:03:00:8b:5d:79:9c:0b:57:33:86:
9e:31:a2:d0:2d:b8:92:f7:50:56:3d:45:fd:ce:de:
c1:ae:c7:88:fc:5e:68:bb:36:7a:4d:0d:ab:48:bb:
47:ee:54:af:32:4f:3a:0e:ea:27:52:4c:50:19:7a:
ca:92:39:c2:a0:07:c5:6d:8b:ab:e4:0a:02:75:9f:
95:0e:b5:86:5a:03:02:6f:18:4f:92:7d:d9:df:6f:
ae:1e:e3:86:76:22:34:bb:1a:6f:d5:cd:55:0f:a9:
69:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B5:C0:49:B3:C7:BA:F3:87:DA:CC:BD:CD:E7:C2:54:A5:65:67:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/296BF0D433A511EE87572A774AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.201.0/24
Signature Algorithm: sha256WithRSAEncryption
10:07:2a:57:a8:71:34:3b:4b:dd:6e:6f:99:c7:a9:b8:16:0d:
fb:d5:82:fd:c6:96:fb:1e:7f:24:db:89:ab:b0:b8:2a:f6:9c:
88:49:cb:a6:e7:d3:15:2c:ab:39:4e:00:5f:53:9d:81:45:c6:
48:07:ce:cd:88:9e:f9:8a:29:1d:23:51:69:4d:a9:e3:74:72:
aa:ee:f1:c1:64:f2:32:d3:6f:be:d2:01:ce:6e:dc:f1:88:d2:
c0:29:57:67:35:8a:6b:31:53:b2:97:35:5f:dd:7a:9f:60:47:
4c:58:c0:87:2e:8b:0f:c2:0f:f8:9b:08:8a:42:3e:65:31:86:
77:89:a5:a4:19:b7:23:fc:c7:78:1d:7b:1e:df:d4:6f:94:a4:
69:f2:54:84:69:1f:78:d6:4e:e2:51:6c:9f:86:3b:49:b8:8c:
1e:19:6a:44:04:a5:d4:eb:41:fc:26:a1:14:b3:36:28:24:45:
d8:cc:e7:3a:cf:40:af:13:93:6d:b7:d2:67:91:30:2e:d5:4a:
f4:a8:e1:9d:ac:a2:89:06:81:22:76:7c:ff:b8:b4:2d:d8:4b:
ca:2e:a9:ff:64:a4:b4:aa:e5:51:0f:06:50:c5:8f:7a:5f:31:
9d:c0:41:59:1d:69:79:a1:47:80:12:2a:2c:fc:59:a5:f1:bf:
69:c6:98:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org