Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA4D17808F111EEBFCC581B4AD9E6FC.roa
File: 3BA4D17808F111EEBFCC581B4AD9E6FC.roa (raw, json)
Hash identifier: 3+DjAIXktIVhH4CvPxvVovtzDhUy2kpA7my5wsBHz+M=
Subject key identifier: 6E:62:DA:8D:2E:D4:66:6C:2D:C8:39:6D:5E:95:04:7C:75:06:98:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2ADB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA4D17808F111EEBFCC581B4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:17:48 +0000
ROA not before: Mon 12 Jun 2023 07:17:44 +0000
ROA not after: Sat 25 May 2024 07:17:44 +0000
asID: 131178
IP address blocks: 45.201.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10971 (0x2adb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:17:44 2023 GMT
Not After : May 25 07:17:44 2024 GMT
Subject: CN=6486c69b-e700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:10:4a:b5:dd:23:f4:a6:ec:ea:b3:a8:93:04:
be:f6:3a:f4:89:87:d9:35:d3:d3:97:c6:15:6d:45:
1e:87:7c:4e:f3:52:cd:6c:6e:d8:df:44:45:56:97:
e9:37:41:5e:21:69:4e:0f:2f:11:06:05:65:35:39:
54:ef:58:8f:b0:e2:cd:e9:c0:2c:91:22:af:cf:eb:
04:53:47:52:9e:13:7d:75:36:a9:31:b7:3b:8a:e3:
49:01:e8:0c:fd:9d:b4:95:7e:d7:52:32:9b:11:bf:
81:ef:1d:19:37:6e:27:a2:a5:3c:dc:c9:23:3b:0d:
77:8c:3b:bf:f0:24:fd:07:fb:a9:6c:dd:de:13:c3:
78:8f:be:79:6f:9e:7e:d7:04:bf:a4:bc:94:5d:2f:
5c:f0:05:f1:f9:59:11:68:f7:70:69:1c:fa:a6:67:
e6:df:8b:93:a9:bf:06:30:d1:6a:4f:cd:d7:99:f2:
ef:a0:e8:ed:ad:af:ae:a3:73:6a:00:e2:f6:94:f1:
d3:86:92:2b:d7:68:30:89:e3:df:80:96:6d:50:26:
87:91:f9:46:40:40:a6:cc:4c:73:39:48:37:dc:97:
14:b0:10:20:93:ef:46:60:34:9c:99:1d:c9:99:c4:
18:4e:c4:87:c4:7b:a8:7c:0c:b6:e8:0b:cf:6a:0f:
d9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:62:DA:8D:2E:D4:66:6C:2D:C8:39:6D:5E:95:04:7C:75:06:98:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA4D17808F111EEBFCC581B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.148.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:20:bb:ba:28:63:3b:26:53:fe:d5:5c:4a:da:cf:55:70:49:
d8:a1:00:9c:67:f5:3e:15:a3:83:01:d3:07:47:75:e2:ab:08:
4b:0e:93:09:0d:51:3b:ba:59:bd:26:a1:d4:99:07:07:48:14:
ba:d2:7c:7c:fc:76:44:c7:5f:62:22:da:a5:ed:d7:9c:c6:a6:
92:90:91:90:67:99:2a:a6:70:d8:12:50:fa:42:1d:f1:96:4c:
5e:0a:32:9b:cf:0b:34:6f:ae:73:fc:2d:c2:3d:b4:0f:a9:54:
6d:f1:15:30:fc:c1:e9:f0:1a:8e:40:a9:e8:f1:62:6a:11:63:
3d:c1:e7:0b:26:1e:5e:b6:78:88:74:ef:35:1e:ff:19:13:f1:
84:e1:8c:84:aa:ab:f4:85:71:96:88:2b:b4:9f:6b:0e:ec:c8:
9e:02:0c:4f:95:01:a4:8b:52:80:e3:23:8a:c3:92:ae:41:d1:
c8:0c:08:b9:91:25:04:9a:b0:06:71:05:0f:f3:e6:26:52:4c:
72:81:03:82:96:ea:b3:d6:35:b5:55:04:7c:2b:07:d8:f5:85:
49:f1:f8:02:4e:58:48:72:75:07:ee:80:71:eb:da:60:3e:76:
3b:2f:05:2c:2e:31:69:7e:9f:58:fe:ed:fb:18:ce:5f:9b:0d:
59:6c:ec:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:42:51 2024 by rpki-client on console-fra.rpki-client.org