Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CECF58E08FA11EEBA3944354AD9E6FC.roa
File: 3CECF58E08FA11EEBA3944354AD9E6FC.roa (raw, json)
Hash identifier: yGGmgs0jrrpO72IxSuR/8OOCT1oJvqDnnT4iXrGDV9s=
Subject key identifier: 05:B5:65:92:E9:49:51:15:43:76:DE:52:0D:3B:F6:E9:C9:66:B0:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B35
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CECF58E08FA11EEBA3944354AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:22:15 +0000
ROA not before: Mon 12 Jun 2023 08:22:11 +0000
ROA not after: Sat 25 May 2024 08:22:11 +0000
asID: 131178
IP address blocks: 45.201.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11061 (0x2b35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:22:11 2023 GMT
Not After : May 25 08:22:11 2024 GMT
Subject: CN=6486d5b7-cb82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:07:17:7a:a5:74:1a:df:fc:6d:6c:bd:76:6d:
d1:db:00:41:db:81:1a:2c:c3:4d:1b:39:7a:d3:e2:
78:68:4c:4f:49:00:9f:3a:cd:27:9e:08:aa:87:32:
fa:77:f7:ea:50:ab:c5:b7:3f:d0:38:9d:82:6e:ea:
cc:dc:41:57:8e:4d:6e:cc:bc:db:5a:4b:2a:4c:dc:
42:6a:6c:2c:e3:12:aa:32:7c:0b:3a:1f:20:e6:80:
f7:c0:5b:db:f5:af:7c:b5:08:cc:0b:e1:0d:eb:1c:
75:97:10:04:43:3b:79:43:0d:81:b0:ae:e4:f5:67:
42:d2:0c:06:67:0d:90:61:e3:ba:e9:69:ca:84:cd:
fd:8a:4c:35:ac:f8:c0:31:18:15:9e:e0:6a:e4:85:
04:00:6e:20:7d:fc:31:fa:a3:0a:74:d1:27:d6:d2:
6d:76:33:e8:24:bf:59:87:46:cf:80:48:b5:43:b1:
18:6f:e0:77:a3:f8:f4:0d:db:3d:2c:91:8a:b7:75:
b2:75:57:51:0d:ad:28:35:b4:4d:c9:50:71:41:cf:
f8:74:a8:da:25:c8:b4:64:93:77:58:f9:65:66:d6:
47:8d:99:c0:1e:64:3a:b1:a3:5d:f4:20:78:63:87:
3d:f2:18:08:64:3a:c8:ed:3f:8d:1e:95:f0:8a:f2:
1f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B5:65:92:E9:49:51:15:43:76:DE:52:0D:3B:F6:E9:C9:66:B0:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CECF58E08FA11EEBA3944354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.196.0/24
Signature Algorithm: sha256WithRSAEncryption
27:9a:ee:c0:ec:4d:3f:63:49:8c:8d:37:c7:43:17:08:fe:bf:
cf:64:b5:e5:2a:66:0a:cc:b4:0e:bc:03:f7:3a:f2:7c:11:41:
0f:f4:d7:26:bd:19:28:b2:e6:d8:68:7c:59:00:5a:a6:fb:4c:
be:53:1e:fb:2f:df:2d:1c:d8:60:2d:09:5a:cd:ad:47:01:6d:
45:b6:6d:62:14:5b:f7:7c:6a:cd:42:f0:92:f3:e9:51:3f:f8:
d4:6e:e1:a2:58:eb:13:b5:ec:42:6c:c2:4c:0b:31:d2:c6:34:
b7:18:0c:ab:e4:c4:94:df:2b:f2:b9:e7:41:cb:09:5f:59:e2:
7c:62:1f:2a:86:64:fb:61:a7:5e:d5:a8:d2:c8:83:82:87:88:
56:ca:41:b7:c5:a8:56:9d:79:d0:e0:7a:4d:f8:7a:88:3c:bd:
57:5c:25:ed:4f:16:d8:b2:63:6c:58:87:2f:cc:9f:43:83:f3:
bb:53:51:5d:11:c2:f6:ba:4a:a9:27:af:7e:d5:4b:f6:dd:e8:
46:d4:01:d6:26:c5:e1:31:68:9a:11:e2:b6:d8:b2:87:12:fb:
a8:dc:ed:39:3e:a6:fe:36:ec:41:a3:e6:d1:b0:59:00:59:9a:
00:ce:db:61:c5:67:44:18:d5:4f:4a:5e:08:12:0b:b2:e5:8d:
27:72:3e:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:12:39 2024 by rpki-client on console-ams.rpki-client.org