Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/38817336A2C311EE99AABF1FD25BE465.roa
File: 38817336A2C311EE99AABF1FD25BE465.roa (raw, json)
Hash identifier: L7ebODOaptfM7eNB5GO5upx7N5QP+k+dF1QDZphB66U=
Subject key identifier: 1C:31:FE:E5:08:B6:D7:1E:F8:2B:E3:40:11:F5:41:2A:D1:89:90:32
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 58CE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/38817336A2C311EE99AABF1FD25BE465.roa
Signing time: Mon 25 Dec 2023 01:16:25 +0000
ROA not before: Mon 25 Dec 2023 01:16:21 +0000
ROA not after: Fri 03 Jan 2025 01:16:21 +0000
asID: 139057
IP address blocks: 45.200.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22734 (0x58ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 01:16:21 2023 GMT
Not After : Jan 3 01:16:21 2025 GMT
Subject: CN=6588d7e8-ff55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:d1:3e:c3:b3:97:ac:22:e5:72:32:56:60:
9a:00:73:98:3f:0d:9b:12:04:2e:c5:23:aa:43:75:
25:74:6c:af:6e:9f:11:64:f7:5f:51:74:94:16:a6:
e8:c6:f0:a3:0d:03:c9:28:b7:c1:ab:a9:92:62:f2:
80:ec:a6:06:44:1f:2d:bb:8d:f4:2b:59:a2:88:44:
59:f9:b1:fa:38:b6:bc:3e:bb:17:40:dc:82:e2:f0:
73:84:05:75:0c:e4:e2:22:70:37:1c:4d:bf:07:d8:
7a:f3:64:3e:51:1b:f5:a8:6e:3c:45:64:0b:b6:31:
f2:0e:f5:33:0e:72:b1:a4:f0:13:df:54:5c:c9:63:
85:ac:e7:b8:44:03:e5:d1:64:73:e7:53:01:44:ef:
b4:79:b5:4c:7f:98:ab:7d:2b:28:9e:68:a6:ce:81:
59:70:5e:c7:03:11:0c:a5:ad:87:c8:8c:c4:2e:c3:
07:f6:9c:0d:86:97:d2:bb:0a:c2:71:34:48:11:96:
48:d4:92:e0:eb:95:83:84:da:17:5d:12:91:0d:62:
05:e6:27:b8:e4:45:98:44:aa:d9:f4:3c:f4:d1:0b:
c7:74:b8:0e:62:b1:aa:84:f9:a8:c7:0d:ea:cc:66:
48:ce:28:0a:ef:b4:85:47:29:f5:3c:dd:b7:42:16:
96:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:31:FE:E5:08:B6:D7:1E:F8:2B:E3:40:11:F5:41:2A:D1:89:90:32
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/38817336A2C311EE99AABF1FD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.108.0/24
Signature Algorithm: sha256WithRSAEncryption
49:64:92:4e:4a:6d:1f:43:92:9d:b6:96:bd:27:80:98:ee:6c:
95:77:95:ca:1c:b9:03:4e:b3:d3:54:4b:76:72:1b:41:37:4a:
9b:f8:ee:33:1e:db:6a:84:35:7b:3a:bc:fc:e2:19:6f:7f:2e:
6f:af:87:2d:80:b2:59:c9:38:5c:4f:79:2b:6f:dc:5f:94:6f:
cf:c0:4f:0d:01:7c:82:b8:2a:49:84:e3:13:37:b1:e1:5a:fe:
15:2a:88:ef:db:a2:14:cc:96:44:23:5a:86:d8:6d:27:4d:a4:
59:2e:53:45:79:c9:82:8b:28:60:82:44:6e:5d:36:81:30:c0:
96:d6:fa:da:94:f2:54:5b:82:d7:b3:b2:98:58:21:69:7e:e1:
e9:e3:fa:a5:e7:3f:f2:42:a0:1d:d5:11:f1:ba:d7:72:36:e0:
3f:9a:ad:ed:c0:9e:02:38:f7:d0:ab:85:dd:3a:df:b4:30:fb:
a8:c2:98:98:37:d8:00:ea:c8:d8:79:cc:fc:51:85:9a:c7:2d:
42:61:33:3e:45:b4:31:88:be:b5:0d:be:dd:f3:a4:bd:38:fb:
65:6b:ce:c7:48:56:65:16:ec:6e:64:4d:92:f0:08:63:21:63:
04:47:42:46:c4:8b:c7:97:60:da:ae:38:73:9b:fb:75:a4:1a:
e1:1a:51:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:07 2024 by rpki-client on console-fra.rpki-client.org