Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33DC4AFA08F311EE9D1336214AD9E6FC.roa
File: 33DC4AFA08F311EE9D1336214AD9E6FC.roa (raw, json)
Hash identifier: 0M6kKVF+ZVHa2GCsMo+6jwbTNz300NNJkHFle054eZk=
Subject key identifier: E4:13:DB:C3:6B:DE:9D:28:C6:6E:4E:D2:86:9C:94:B0:C4:D6:24:20
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AFF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33DC4AFA08F311EE9D1336214AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:31:53 +0000
ROA not before: Mon 12 Jun 2023 07:31:50 +0000
ROA not after: Sat 25 May 2024 07:31:50 +0000
asID: 131178
IP address blocks: 45.201.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11007 (0x2aff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:31:50 2023 GMT
Not After : May 25 07:31:50 2024 GMT
Subject: CN=6486c9e9-1b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8f:31:8f:86:d2:f9:5c:85:52:5e:69:91:8c:
28:1d:e7:a0:9c:d3:90:3b:70:4d:1c:55:69:12:f0:
a8:b3:aa:0b:fb:76:55:f4:63:b4:bc:70:e4:9e:67:
75:b9:46:69:c8:37:62:e8:96:86:e4:f5:d6:e7:ec:
46:d4:74:fe:14:f0:6a:c2:72:38:81:13:b7:ab:cc:
c3:c0:0e:03:b9:b2:b8:d3:cd:68:c6:f6:85:6c:0f:
cc:11:d4:8a:4c:96:26:a6:bb:c0:0c:72:fc:ab:83:
13:33:92:a9:62:87:7e:21:f7:c0:4c:97:4a:24:b2:
8e:c3:6c:2e:cb:16:13:a5:dd:75:84:27:8d:12:4c:
a9:57:02:41:84:e9:99:2e:23:3c:51:18:88:5d:24:
1a:6a:6d:8c:7d:eb:b7:0b:15:9f:03:a5:65:bb:b1:
c8:1d:b5:f9:8b:98:83:84:f2:29:ba:30:4b:f1:14:
36:2c:5d:f8:52:8c:06:d9:02:4e:48:67:a8:05:d1:
94:d9:57:fa:c4:86:fa:b2:c1:eb:8b:cc:69:1e:88:
4e:8c:b3:63:38:a3:7b:fd:b4:fe:f2:98:77:cf:c6:
2c:36:c3:34:04:e2:fa:9b:55:20:ed:af:ce:ad:55:
ab:65:49:77:51:fe:7b:31:d4:4f:a7:6b:87:a1:5d:
4c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:13:DB:C3:6B:DE:9D:28:C6:6E:4E:D2:86:9C:94:B0:C4:D6:24:20
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33DC4AFA08F311EE9D1336214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.166.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:21:af:86:92:53:7d:7d:54:f7:50:20:9b:42:3b:13:fd:42:
9c:3c:9f:80:1e:0e:cb:07:67:98:38:60:ef:84:34:e2:b2:e9:
24:b0:00:bc:6f:f3:b8:03:3d:6f:4c:f6:c2:00:16:64:99:1d:
99:4d:e0:a5:54:22:29:31:a2:82:6e:a3:8c:c5:99:80:36:a2:
e7:5e:4f:51:88:c4:40:d5:e7:7e:46:4b:93:94:7d:9b:7c:81:
40:3a:cf:7a:43:03:a3:d1:f3:9f:0d:05:8b:e3:93:39:3c:ee:
f9:13:73:f3:dd:b9:3a:f4:40:2c:f6:b3:43:3e:79:79:8f:39:
dd:59:c2:df:86:39:c9:66:bd:9d:13:e7:38:67:35:55:23:cd:
bb:38:b0:19:ed:de:41:d8:0a:d7:bd:a5:c5:77:5e:f0:d0:e7:
6e:85:f6:f2:fb:a1:c1:eb:7e:3e:11:84:0f:da:2a:61:d1:20:
82:c8:61:e6:72:77:24:9d:cd:d6:42:2d:9f:76:4c:c3:aa:85:
d7:24:77:17:0e:23:12:6e:5e:ce:91:d4:56:18:b2:03:ab:91:
eb:60:bc:8d:62:dd:ba:a8:5c:a7:c3:4e:61:ba:9b:36:e0:41:
96:2c:ac:89:93:e0:f6:2f:99:b1:1c:11:a0:68:58:87:98:f1:
5d:ab:a2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:42:50 2024 by rpki-client on console-fra.rpki-client.org