Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D4E05688DD011EEB2123F6A4AD9E6FC.roa
File: 2D4E05688DD011EEB2123F6A4AD9E6FC.roa (raw, json)
Hash identifier: WQbERtMfyURcgySxuuAu03jK1bXpVf2DRrWfpnutsbE=
Subject key identifier: 8E:55:32:8A:D0:8D:BF:07:5F:2E:79:AD:4F:B3:70:21:57:05:F8:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C51
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D4E05688DD011EEB2123F6A4AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:26:15 +0000
ROA not before: Sat 03 Feb 2024 09:26:11 +0000
ROA not after: Thu 08 Aug 2024 09:26:11 +0000
asID: 133861
IP address blocks: 45.207.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19537 (0x4c51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:26:11 2024 GMT
Not After : Aug 8 09:26:11 2024 GMT
Subject: CN=6565b237-1700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:cd:d1:a5:5a:24:cb:2a:75:09:4a:4c:72:3b:
28:e4:74:ad:4e:82:a0:ea:37:06:bf:3e:36:01:9a:
0c:90:be:5d:25:1b:2b:de:b8:65:cb:6f:6b:42:e0:
2d:83:ab:f3:db:d4:f9:ed:d4:14:75:43:57:c1:ce:
37:30:01:3d:40:fb:e8:32:e8:0e:36:ac:45:4f:15:
d9:01:f9:cb:c5:9e:1f:9e:d4:ca:61:cf:e0:38:a5:
7b:81:76:2a:50:06:00:29:a8:b0:9d:29:91:32:90:
6c:73:f5:8f:b6:04:e8:35:d7:86:b4:0d:6d:64:81:
51:02:22:0e:fc:bf:93:8f:a8:fc:7f:a8:c5:81:fa:
20:13:17:ed:63:e9:29:bc:4f:ab:15:91:03:65:a6:
45:6e:e4:8f:08:bb:48:a7:3c:4f:79:ac:27:a9:2a:
3d:1d:21:e1:e8:be:a6:c6:05:fc:06:78:cf:46:70:
96:f9:75:19:8d:96:ba:ef:70:57:03:b7:72:95:b9:
cc:a5:29:32:48:12:70:d9:50:89:68:cd:17:a3:06:
ba:65:5f:72:08:77:f3:6c:ba:43:ba:98:c2:b5:24:
b6:f2:21:43:7b:3f:d4:65:76:19:52:5b:c0:9b:75:
b0:20:5d:ef:f6:f3:c1:32:4c:c4:67:b4:db:f9:fa:
7b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:55:32:8A:D0:8D:BF:07:5F:2E:79:AD:4F:B3:70:21:57:05:F8:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D4E05688DD011EEB2123F6A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.36.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:43:48:93:1a:c6:97:d5:67:fd:a1:67:6b:9d:dd:86:36:59:
0d:cc:e3:cb:9a:06:7d:41:0b:1c:7f:17:a3:3f:15:5d:8b:84:
e7:c2:79:fa:1b:52:63:3e:70:05:ae:27:11:b1:ce:54:24:42:
e2:c1:0f:f9:5c:90:8d:ea:28:96:7b:33:3e:ce:02:85:23:1b:
15:c0:ec:f6:b3:d2:2f:44:91:cf:87:64:be:83:20:63:38:96:
94:99:ad:66:62:1e:e3:93:f4:9b:38:7b:db:7e:97:d2:b7:dc:
fc:96:34:75:0c:31:d0:ac:b7:58:93:26:54:18:19:01:73:ca:
68:d0:93:61:a5:51:f9:05:da:82:78:4f:0d:e6:88:e2:f3:0a:
98:9f:2d:14:7b:f5:52:4b:df:46:03:28:80:56:9d:10:b8:d0:
1f:78:79:05:10:17:a3:fe:ff:c7:67:26:25:ae:be:83:66:2a:
cf:52:88:82:54:92:f7:f8:6c:c3:96:f0:12:df:ac:ea:39:b7:
56:3a:47:87:4e:1c:6c:ea:b5:a1:83:8b:d9:c3:b1:a7:48:a4:
6b:47:bd:79:9f:10:41:8d:f0:63:ce:a1:29:83:0b:0d:23:58:
60:be:fc:ca:0d:a3:cd:5c:cd:f0:bf:5c:08:2b:db:60:9d:e2:
28:6f:ee:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org