Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B5CC73E7EC111EE90F7EE744AD9E6FC.roa
File: 3B5CC73E7EC111EE90F7EE744AD9E6FC.roa (raw, json)
Hash identifier: OGHoPlDDouVZ3vcL2zMqgmuvVYxUCKurriNDmtzNO58=
Subject key identifier: B2:08:3F:5E:67:B6:9B:45:51:67:E3:F3:6E:B4:38:B5:0F:54:2E:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4517
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B5CC73E7EC111EE90F7EE744AD9E6FC.roa
Signing time: Thu 09 Nov 2023 05:31:29 +0000
ROA not before: Thu 09 Nov 2023 05:31:25 +0000
ROA not after: Thu 07 Nov 2024 05:31:25 +0000
asID: 133847
IP address blocks: 45.200.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17687 (0x4517)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 05:31:25 2023 GMT
Not After : Nov 7 05:31:25 2024 GMT
Subject: CN=654c6eb1-cc77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cd:8d:4c:7c:8e:00:2d:5e:c1:25:f7:ef:30:
0f:14:21:2b:ba:df:ce:a5:5f:87:35:d6:a3:c0:57:
a0:7f:a2:3b:88:ed:63:95:05:ed:b1:8b:9a:46:61:
bc:f2:08:30:65:39:24:8c:b8:b0:34:e4:8f:13:eb:
17:85:f8:a2:4a:d6:0a:22:97:b0:49:6b:eb:27:4a:
e8:ae:4a:3f:f2:e0:e3:f9:3d:fd:a3:5e:35:03:59:
fc:4f:a1:33:26:b6:dd:a0:11:c9:4c:b5:96:f5:15:
d6:b6:63:41:a6:41:a2:04:92:03:1f:a8:98:fb:51:
27:da:e0:c0:8a:be:37:55:60:c7:f7:c6:11:ee:7c:
88:cc:a9:4f:7f:57:af:01:d5:96:1d:e2:9d:10:6b:
01:98:48:59:2f:f3:7c:69:78:82:30:43:77:aa:dc:
8f:43:6a:ed:56:7f:f8:4f:7a:50:0d:c8:f5:53:06:
4e:03:d1:db:0b:73:c1:26:d6:11:de:a1:8b:22:13:
ab:82:90:45:aa:d1:37:41:bd:37:7e:3f:2e:91:eb:
e0:00:9d:42:9a:9c:0c:14:e4:e4:3d:17:a2:ea:c8:
03:5d:bc:35:f8:a9:05:e4:f3:0c:7e:c0:39:fa:12:
af:89:6b:80:ba:91:ae:92:62:7a:56:e2:79:f3:69:
3a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:08:3F:5E:67:B6:9B:45:51:67:E3:F3:6E:B4:38:B5:0F:54:2E:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B5CC73E7EC111EE90F7EE744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.83.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:ea:66:95:91:a5:5d:29:ab:6c:fd:87:dc:2f:4b:06:67:22:
bd:2f:60:77:1e:e9:d6:35:f9:0a:63:15:70:d6:de:db:ba:b6:
66:e8:7a:65:7d:09:43:2a:c9:81:a2:69:fd:da:81:a9:80:48:
2d:77:26:51:03:58:a8:66:eb:40:74:05:3f:4c:c3:3c:03:81:
8a:6f:25:da:41:c1:79:9a:6b:2d:5a:07:a5:2b:0c:2a:17:92:
3b:37:c8:27:8a:03:dd:2b:fd:a2:e5:dc:62:75:da:dc:b0:b0:
6a:b4:e9:69:fc:61:e2:09:b8:a3:87:cd:aa:e5:37:27:74:27:
51:32:12:6e:2f:2c:f5:30:94:06:12:e1:65:95:43:a4:76:3d:
71:9b:85:c6:8f:6c:c5:9c:da:5f:f5:20:23:5e:3b:31:07:cb:
10:96:61:55:de:de:d7:aa:60:6a:d0:ae:a6:6c:50:37:cf:83:
e9:4d:33:e3:c7:a9:ed:26:fd:cb:57:56:46:37:fe:06:3b:3d:
6a:61:b2:23:08:38:24:94:a1:00:01:06:e0:b5:26:df:39:60:
b3:18:c2:ec:a7:ab:f7:eb:dd:d9:12:ac:81:15:b6:0f:6b:34:
b2:38:77:95:b7:b6:64:60:0a:a5:14:7d:46:f5:51:9e:b7:56:
66:2f:14:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:51 2024 by rpki-client on console-ams.rpki-client.org