Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AF98B0E4BF011EEB638805B4AD9E6FC.roa
File: 4AF98B0E4BF011EEB638805B4AD9E6FC.roa (raw, json)
Hash identifier: EEEt6NjOROrwrDES7ef7/qe6hEc0bOidiuLv52mYqmI=
Subject key identifier: 70:1B:93:99:35:79:71:F8:6E:E7:12:39:C5:D6:67:0C:16:B8:CE:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3804
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AF98B0E4BF011EEB638805B4AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:29:52 +0000
ROA not before: Tue 05 Sep 2023 13:29:49 +0000
ROA not after: Fri 24 May 2024 13:29:49 +0000
asID: 131178
IP address blocks: 45.201.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14340 (0x3804)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:29:49 2023 GMT
Not After : May 24 13:29:49 2024 GMT
Subject: CN=64f72d50-7511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:85:ef:d7:97:73:ec:1b:fb:85:db:47:7e:78:
be:46:30:ae:98:cf:95:6e:29:1b:60:ee:a7:32:d3:
d9:45:4e:e9:57:1b:c4:05:3d:e0:fe:41:4e:ec:81:
9d:72:c7:04:46:73:aa:9a:e2:97:27:d0:9f:bc:07:
0e:6a:ec:1f:db:c0:25:23:9c:68:c7:e7:8b:28:0e:
d2:a5:6a:91:1c:56:1e:3a:37:f0:2b:5c:bb:32:d6:
c0:db:41:49:7b:d7:bb:bb:c2:a7:b4:8f:ae:3f:d1:
51:c3:17:f9:64:da:91:5e:16:09:74:f6:6e:aa:e7:
d4:28:ee:de:b6:0b:78:55:c8:24:13:03:27:b9:76:
d4:b3:19:ed:50:0d:47:68:f5:2f:c9:4a:de:7b:9a:
37:13:da:b2:ee:04:7e:47:31:ae:87:1a:a3:55:63:
fa:8d:c9:9d:10:b9:25:8c:ee:f1:55:01:e9:58:5a:
f3:e1:1e:e6:7b:d1:3a:43:0c:5a:93:1c:74:6e:cd:
b0:a4:ff:b0:84:4f:0a:cd:23:48:a3:97:49:43:86:
b8:d0:79:90:fc:72:0d:b4:24:64:46:18:8b:2c:3b:
5d:14:d0:4a:92:c8:9e:0f:e3:04:c4:b1:f1:f3:bf:
df:4d:7f:ac:67:9d:b5:4c:4d:de:34:ff:20:2b:ed:
6c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1B:93:99:35:79:71:F8:6E:E7:12:39:C5:D6:67:0C:16:B8:CE:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AF98B0E4BF011EEB638805B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.162.0/24
Signature Algorithm: sha256WithRSAEncryption
47:82:32:9c:42:a5:10:49:45:db:08:01:ff:31:d0:00:7f:e9:
13:3d:e0:97:70:e8:77:cc:42:6c:17:56:55:8f:12:50:70:3a:
1a:ae:5a:f5:6e:42:a4:a6:f6:16:9d:73:4f:f2:e8:dd:08:0c:
10:0d:7d:28:e0:14:30:d5:a7:e3:c9:73:ae:84:8c:4a:78:0b:
b6:b3:81:fa:af:b6:74:e8:cd:a2:6a:ff:8f:b6:61:95:37:f1:
0c:62:d8:a7:41:42:a4:6c:95:5f:66:30:0d:f9:04:f5:dd:b3:
98:69:1b:61:fe:a8:13:22:e5:4a:74:ba:a0:29:a7:a5:61:af:
35:bc:7d:5e:53:c3:3c:13:98:ee:c3:7c:27:19:bf:5f:68:1c:
25:88:c9:b6:7e:a4:eb:a0:4f:ad:7b:d5:a4:1c:b5:7f:a7:5b:
68:45:83:d7:66:70:64:5b:40:6b:06:6f:2d:1e:db:96:ad:bf:
b3:c4:d2:47:e2:0c:fd:d4:9e:aa:92:c3:a9:73:c9:2d:ee:bb:
e8:63:8e:71:d6:27:e6:82:5f:b1:13:78:d2:f4:7f:4e:b7:79:
59:7d:89:e2:9d:5e:ed:e9:c8:62:a1:ac:2d:6d:3b:d6:11:ad:
d6:2f:5a:d3:14:88:77:ea:41:66:40:ca:0c:d0:74:bb:01:15:
dd:4d:28:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:18 2024 by rpki-client on console-fra.rpki-client.org