Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41AC6FF27FEF11EE84C3FA3A4AD9E6FC.roa
File: 41AC6FF27FEF11EE84C3FA3A4AD9E6FC.roa (raw, json)
Hash identifier: OuePl3GZwHUTlH2ElI1eq9R/VBCRxl/pX6tkjJQls+Q=
Subject key identifier: 7A:45:60:50:5B:F7:3C:55:B7:D8:FB:58:D5:89:DD:AE:5D:9A:04:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4668
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41AC6FF27FEF11EE84C3FA3A4AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:33:27 +0000
ROA not before: Fri 10 Nov 2023 17:33:24 +0000
ROA not after: Tue 04 Jun 2024 17:33:24 +0000
asID: 137577
IP address blocks: 45.195.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18024 (0x4668)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:33:24 2023 GMT
Not After : Jun 4 17:33:24 2024 GMT
Subject: CN=654e6967-9842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:de:bb:51:c8:84:e1:24:dd:4e:99:52:16:
83:1c:0a:3d:5e:62:0d:13:ac:a5:39:03:8d:c9:af:
26:c1:af:cf:95:9a:e3:74:b5:94:02:80:87:b4:ad:
99:65:71:10:3e:30:ff:09:6c:28:12:be:aa:70:b9:
10:1b:5f:62:84:d0:91:1d:6b:da:f8:d4:30:ab:80:
8d:92:11:3a:5a:01:b3:44:ed:b9:80:ca:4a:b0:16:
33:45:a1:17:3b:14:bc:06:20:74:90:a0:d2:15:e9:
85:30:7c:98:bc:4a:48:d5:a1:67:98:3b:62:73:35:
1a:52:ac:2c:c1:61:86:49:8f:72:f4:be:46:f5:f2:
3e:22:73:9e:5c:42:43:f8:6b:64:2f:a0:fa:db:2a:
f0:1c:05:5c:12:92:f7:16:b1:b5:ef:32:bc:a4:dc:
45:6d:bd:0b:1a:f0:b4:65:ee:9c:62:0f:19:48:b2:
eb:2d:b6:68:17:ed:fc:42:fa:29:59:d2:95:a1:7b:
a4:92:65:44:5b:26:6f:d5:78:29:da:f3:4f:7a:59:
cb:03:ea:af:07:46:48:55:26:9a:88:db:df:50:36:
45:a4:58:89:fc:4f:90:7b:08:e4:f2:c7:b0:e6:f4:
f5:6e:6b:6a:14:bf:db:b2:b7:21:7b:05:55:4b:2f:
20:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:45:60:50:5B:F7:3C:55:B7:D8:FB:58:D5:89:DD:AE:5D:9A:04:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41AC6FF27FEF11EE84C3FA3A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.47.0/24
Signature Algorithm: sha256WithRSAEncryption
93:9f:7f:2d:a9:4e:be:83:6a:13:81:0b:64:a8:73:7b:aa:cb:
4c:c6:39:e7:d2:3b:d7:c0:ee:ba:5c:27:f6:60:82:3d:01:1f:
26:4a:4b:43:9b:a9:3c:3f:95:5c:69:78:fd:84:b7:3b:e6:7f:
e9:8e:e6:3f:8a:27:58:42:53:ae:95:0f:aa:65:ed:6e:7e:05:
fd:1e:74:52:20:fa:b8:ab:e8:ea:97:ee:04:09:d1:51:fc:bf:
13:ee:13:3c:1e:a0:11:34:25:a5:f2:e3:ac:65:93:28:08:de:
15:b2:bf:39:2a:da:dc:ba:2e:4a:91:8d:3a:33:11:cf:15:c3:
02:78:e4:15:30:b3:08:d6:89:43:f3:bf:fd:7c:0b:79:a8:50:
39:66:05:b4:3a:6e:f4:1d:92:c8:c1:96:38:b6:b5:4e:9e:f5:
56:05:9f:1f:b7:d2:57:54:2e:f4:f8:1c:99:70:a6:ed:08:3d:
fc:db:31:64:b9:3f:31:3f:3e:24:5e:56:45:59:b7:09:e3:d9:
e1:13:ab:46:df:d1:07:e7:42:c7:66:23:92:d2:60:62:37:46:
f1:fc:89:b6:85:6d:43:4a:e5:d1:7f:79:fe:14:8d:5c:a7:70:
20:cb:73:95:d3:ff:a5:7d:c2:19:a7:9d:32:b3:1f:52:26:09:
2d:b4:8c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:07 2024 by rpki-client on console-fra.rpki-client.org