Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41C77DF84BEF11EEB3C45C584AD9E6FC.roa
File: 41C77DF84BEF11EEB3C45C584AD9E6FC.roa (raw, json)
Hash identifier: LnVb5b1WE7SJ1bBNE6b6s8dO74IgQxqgQd0ZfuozN0k=
Subject key identifier: B3:FE:C0:59:A3:75:60:30:DC:73:15:D9:E7:64:51:32:86:85:21:D8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 37F3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41C77DF84BEF11EEB3C45C584AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:22:27 +0000
ROA not before: Tue 05 Sep 2023 13:22:24 +0000
ROA not after: Fri 24 May 2024 13:22:24 +0000
asID: 131178
IP address blocks: 45.201.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14323 (0x37f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:22:24 2023 GMT
Not After : May 24 13:22:24 2024 GMT
Subject: CN=64f72b93-0720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:27:b4:99:a5:a3:8c:c2:bc:93:f0:96:85:fd:
94:a5:7a:63:63:ea:73:f8:f3:4f:2f:96:c6:7d:8a:
df:80:ae:f8:d4:dc:29:67:59:0e:de:aa:47:e4:96:
3a:d1:15:6a:53:2e:ef:aa:45:e7:ab:12:f6:d0:90:
b1:d4:36:16:7a:44:79:18:71:e1:3e:46:39:43:7f:
b5:3a:26:fa:f9:0c:e9:93:83:05:52:e2:88:f1:0e:
cc:2b:17:38:0b:a4:35:d8:8f:2e:eb:18:0e:9b:46:
c6:6a:50:9b:ef:c9:8a:74:02:28:85:9c:04:96:cb:
25:30:98:d2:a9:28:67:88:16:28:13:86:b2:f0:5d:
68:02:99:23:c5:e3:3b:39:c6:7c:ea:99:7b:af:4c:
12:65:94:d8:d1:c2:0b:6e:b5:61:a1:55:8d:a0:6a:
2a:f3:6c:2a:13:f1:fd:c6:e2:d8:a0:dd:16:2b:53:
10:84:3f:91:f5:f8:31:93:46:d8:eb:18:9d:1c:4a:
74:0f:76:08:5e:38:40:ac:ad:4b:4d:5f:a1:63:2c:
b5:c5:7c:b8:a9:a4:38:10:6c:59:08:d6:6d:db:bc:
bc:9c:a7:eb:6f:e2:30:f3:48:e6:eb:64:10:6d:11:
48:b4:dc:a2:ed:fc:04:08:c7:dc:2d:a4:e5:8c:96:
01:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:FE:C0:59:A3:75:60:30:DC:73:15:D9:E7:64:51:32:86:85:21:D8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41C77DF84BEF11EEB3C45C584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.170.0/24
Signature Algorithm: sha256WithRSAEncryption
15:59:df:d6:e6:bb:3e:6c:b9:8e:74:c2:42:89:28:6c:7e:c2:
4c:e3:5e:08:67:65:2f:aa:d5:0c:63:d9:14:93:0a:85:e7:40:
b3:bc:5b:9f:64:95:24:a8:60:e7:98:d3:a2:ed:48:55:cf:9a:
a8:75:3e:bd:70:11:7d:62:a2:2c:25:39:65:c1:fd:66:d0:ff:
77:37:79:f2:b4:da:eb:e8:0f:df:44:27:df:1e:68:64:e2:d2:
e9:8f:e1:93:35:d5:b6:24:a5:99:72:39:9b:c3:8c:69:e5:9e:
33:f3:3a:37:e2:8e:c6:14:36:49:8b:7b:df:54:99:0d:47:5d:
e7:a8:a4:0d:7e:5b:15:d9:49:3e:86:b1:1b:98:81:9f:ab:99:
61:d4:5c:64:3b:06:78:e7:89:41:76:97:d5:9a:9b:77:be:73:
f8:12:91:65:e2:23:2c:b7:6d:3e:19:f9:93:ac:9d:e3:f9:9a:
38:46:96:12:72:49:17:20:2f:ba:06:36:6d:1f:3b:6f:59:50:
24:fd:d7:e6:c0:2c:52:a0:1c:4f:20:f2:c6:48:55:2f:75:54:
57:70:98:69:4c:d0:7a:bc:7c:bb:ce:dc:32:84:cb:2f:bf:ac:
9b:f3:75:fe:72:a8:af:9e:b9:ce:b4:18:b3:ca:9b:13:fa:9c:
a8:40:7c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:42:51 2024 by rpki-client on console-fra.rpki-client.org