Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3ACDC6C87EC711EEBB875A874AD9E6FC.roa
File: 3ACDC6C87EC711EEBB875A874AD9E6FC.roa (raw, json)
Hash identifier: h1ead29/kRcLNQs4Sb11ZhErz3LByhViImHF8RFtbTQ=
Subject key identifier: 56:1F:5E:49:9C:A3:E4:B7:3D:A0:17:A6:EE:03:39:24:28:65:3A:4F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4521
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3ACDC6C87EC711EEBB875A874AD9E6FC.roa
Signing time: Thu 09 Nov 2023 06:14:25 +0000
ROA not before: Thu 09 Nov 2023 06:14:21 +0000
ROA not after: Thu 07 Nov 2024 06:14:21 +0000
asID: 133847
IP address blocks: 45.200.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17697 (0x4521)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 06:14:21 2023 GMT
Not After : Nov 7 06:14:21 2024 GMT
Subject: CN=654c78c1-1db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:98:cf:03:7f:58:d8:84:8e:dc:ec:74:d9:9c:
29:a1:71:ff:a4:5c:94:09:e7:d7:05:ff:3d:74:b0:
90:a6:40:21:91:fa:98:b6:54:29:1f:31:1a:40:f0:
e5:a9:2b:53:29:f7:f3:00:7b:f2:70:ab:ed:a5:c2:
a6:16:f7:6e:75:32:be:80:d1:14:3b:80:67:d5:7b:
15:ec:c1:f1:f8:22:cb:59:bf:6a:c4:3b:c7:f4:76:
5c:ee:45:c2:e1:74:18:3a:17:cd:53:f9:6f:db:0c:
50:0a:8b:cb:96:5a:66:bc:29:78:47:be:c5:b3:86:
1f:52:04:0a:50:77:2e:03:10:5b:a6:90:bb:a7:45:
c7:26:6c:03:89:bd:8e:41:3b:23:9f:6d:e0:e2:0b:
d4:14:d8:c7:e7:61:aa:a5:95:bf:08:81:16:80:d7:
87:d5:8e:be:c0:60:f3:2f:a7:da:5a:b3:ba:e2:1d:
96:c4:e4:a0:94:0d:65:96:b9:cd:f3:b6:77:48:5f:
42:ce:61:a0:32:09:56:e3:3f:0e:a6:a1:3d:16:f6:
d5:11:2e:80:7c:50:b3:c8:08:65:c1:03:08:5a:42:
d6:5e:ec:88:34:b9:78:49:e0:e4:fd:f8:72:fa:c9:
16:b2:a0:f5:9e:3f:b6:79:bc:aa:77:f5:32:9c:fe:
25:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1F:5E:49:9C:A3:E4:B7:3D:A0:17:A6:EE:03:39:24:28:65:3A:4F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3ACDC6C87EC711EEBB875A874AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.70.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:73:31:99:76:b2:62:9d:fe:66:e4:30:02:06:bf:de:4e:c8:
8b:9b:49:7e:e4:65:fb:7b:f1:49:9d:42:a1:e0:c1:54:5e:80:
c7:33:0a:4d:68:f7:42:3c:3c:d8:c2:de:df:1e:86:ba:69:b6:
27:bb:39:4c:3f:9e:99:33:10:50:8c:8e:8a:72:5e:ad:0a:a5:
c2:a5:72:a7:9f:e1:71:f5:86:c4:06:e5:a7:dc:0c:48:26:80:
6f:b8:5d:4c:32:a7:7b:33:77:65:ef:ed:0e:2a:2f:1d:04:cf:
b2:c9:5b:a8:df:f3:8d:29:d0:80:6f:37:2a:18:0d:92:c6:7a:
f0:6c:18:ab:76:61:c4:9a:1c:e4:96:be:24:99:f5:9e:60:55:
ca:d8:19:f3:90:23:a8:be:ff:71:af:0e:ea:4b:93:11:70:d2:
8c:21:f1:94:39:b1:29:e0:d2:44:e3:ab:9a:90:72:cb:82:1e:
d1:2a:09:94:8a:a0:3d:9b:69:e6:8b:d7:f6:22:5e:8e:f1:13:
99:24:49:91:79:28:3c:41:86:20:5f:5c:ec:83:ac:2a:d0:b8:
d2:80:d2:f1:71:50:f4:d1:39:ee:4d:56:6c:59:5d:11:34:34:
e2:b2:0c:ff:57:1c:cf:b4:67:b3:e8:d3:5d:0a:cf:a0:2f:b2:
29:48:d2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:51 2024 by rpki-client on console-ams.rpki-client.org