Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D59888A460D11EEB05D051B4AD9E6FC.roa
File: 2D59888A460D11EEB05D051B4AD9E6FC.roa (raw, json)
Hash identifier: do0GdysbR0QirZSegAFUYBubPzqAxqghyvtG0lDRr88=
Subject key identifier: 91:8B:A8:47:16:F6:40:41:E5:8B:14:CC:6D:0D:9C:D4:80:C6:B8:B1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 370E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D59888A460D11EEB05D051B4AD9E6FC.roa
Signing time: Tue 29 Aug 2023 01:41:30 +0000
ROA not before: Tue 29 Aug 2023 01:41:27 +0000
ROA not after: Sat 31 Aug 2024 01:41:27 +0000
asID: 132513
IP address blocks: 45.207.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14094 (0x370e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 29 01:41:27 2023 GMT
Not After : Aug 31 01:41:27 2024 GMT
Subject: CN=64ed4cca-1701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f5:c4:4c:45:fe:d8:fc:af:d7:5d:57:1b:d2:
74:20:bf:e4:9f:8a:47:56:2d:c9:1d:4f:65:22:41:
0b:ed:12:1a:e7:41:85:db:e5:c7:df:01:78:ba:18:
e7:47:87:25:6d:c4:a7:11:ce:89:7c:6a:df:64:5b:
26:b2:0f:1d:c8:58:0c:e7:68:1e:51:08:b3:25:ac:
90:6f:19:c1:d0:56:cf:9f:67:c2:ad:dd:1c:f9:79:
80:af:3b:00:bf:6a:09:3a:46:8f:63:ff:22:88:da:
41:38:ec:8c:38:20:b7:b3:d3:0d:f9:c3:ae:52:35:
7e:ad:f7:27:86:d6:e0:f9:50:34:43:2b:26:a8:1e:
82:46:85:ca:a0:24:f7:b1:2d:62:4a:67:45:08:ac:
a6:ea:98:a1:c7:52:20:3b:30:dc:79:7d:e0:c7:99:
69:84:b1:70:f9:87:9a:ad:e7:0f:bc:1e:a4:14:32:
6f:c9:38:95:db:a1:80:5a:a5:ea:09:50:15:22:7d:
b4:ed:bb:e1:e0:b7:86:82:91:09:10:4f:94:ee:0d:
15:ac:c9:7c:6e:16:79:9d:0b:4f:85:fa:d7:f4:6c:
56:e0:09:88:84:25:52:f6:c9:84:28:2f:67:47:3b:
57:38:c8:09:e0:fb:78:4f:b7:f2:4a:c5:e8:4b:d3:
9b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:8B:A8:47:16:F6:40:41:E5:8B:14:CC:6D:0D:9C:D4:80:C6:B8:B1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D59888A460D11EEB05D051B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.170.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:81:45:18:0b:dc:72:cb:32:be:05:89:9b:74:b9:54:cb:32:
ad:b6:4b:f9:7e:05:50:3a:cc:1d:b4:93:1b:19:0f:aa:f0:5a:
ee:13:39:30:40:41:b5:e1:16:84:63:54:b4:2f:8e:b7:5e:98:
2b:03:71:23:e7:a7:13:f2:52:7a:9d:0e:4a:ac:89:a5:9e:40:
71:c8:2f:4f:86:80:79:03:d6:f7:86:10:73:55:94:59:75:f2:
e1:c6:e4:b8:0f:86:92:3e:6a:08:c6:59:ba:c7:97:32:26:b3:
01:97:b9:6e:b4:e1:55:a2:b3:a5:98:23:02:9e:d0:06:7e:d1:
b1:0e:3b:04:be:d7:b9:34:7d:ff:97:01:2d:f8:bd:69:2e:e6:
da:92:7d:65:32:15:68:5c:68:c6:96:5c:90:13:4c:3b:9f:2c:
dd:48:b6:4a:c5:e4:0d:0b:ed:82:ae:7b:d0:b5:1c:bd:ab:18:
c5:2d:7d:61:95:cd:b9:97:2c:24:d0:74:c0:88:0e:6d:19:af:
44:d3:96:69:48:85:c3:fe:f4:b4:10:ed:3e:f6:18:e8:a8:02:
6a:f6:5f:73:9f:c8:e0:ae:e6:80:1b:28:71:3e:88:1e:64:75:
59:97:f6:e4:2b:5d:a5:bf:76:4e:25:39:59:2c:49:19:0f:45:
07:fa:8e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org