Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4ECA6672473B11EEA8C51F604AD9E6FC.roa
File: 4ECA6672473B11EEA8C51F604AD9E6FC.roa (raw, json)
Hash identifier: c6gX4yQcKGWb1f2P0CU3uY/IynqYob+t93x7gN3JjzU=
Subject key identifier: 11:1D:9A:F4:0C:81:CF:F3:D2:61:19:03:33:A5:A7:58:AF:92:7A:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3775
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4ECA6672473B11EEA8C51F604AD9E6FC.roa
Signing time: Wed 30 Aug 2023 13:44:15 +0000
ROA not before: Wed 30 Aug 2023 13:44:11 +0000
ROA not after: Fri 24 May 2024 13:44:11 +0000
asID: 131178
IP address blocks: 45.201.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14197 (0x3775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 30 13:44:11 2023 GMT
Not After : May 24 13:44:11 2024 GMT
Subject: CN=64ef47ae-c566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2c:dd:e8:a1:00:08:39:f0:38:db:11:a8:5d:
1b:95:36:a7:49:1e:1a:da:d2:98:6d:41:5d:e8:d3:
55:07:84:8a:6e:34:21:73:75:2e:64:91:b0:b2:b8:
03:ee:01:96:8f:96:2f:de:47:90:e9:a0:56:cf:f0:
31:45:65:ad:c3:9e:47:4c:6c:f8:be:df:5c:b1:30:
8e:3a:85:9a:d8:75:bb:f2:11:07:53:ed:77:63:1a:
30:8f:a6:29:d8:79:d7:ef:b5:8e:bc:b8:48:29:47:
13:d9:bb:79:75:0f:a9:4e:c9:e3:8d:3a:a8:27:51:
a3:d4:22:00:58:9e:dd:69:ec:03:a9:bd:17:04:ee:
f9:e3:cd:b9:b2:5e:c8:c2:a8:35:62:78:9e:42:b7:
47:b0:06:16:25:64:59:2d:48:a1:92:9c:98:33:b3:
3a:19:69:ce:da:8b:ab:24:49:1e:f3:b7:5b:d4:1a:
68:3e:50:22:ec:79:4b:b7:ce:08:dd:a0:3b:4b:59:
b0:46:b1:20:b6:a1:20:ce:9c:b0:95:7f:52:4e:0b:
38:b2:8e:b7:a6:0d:01:77:1e:a5:c5:14:96:90:40:
84:12:41:1a:d5:cb:0e:c2:f9:fb:b0:d1:7e:a8:40:
4e:d6:f7:5c:42:58:b6:5a:a5:be:7d:59:16:51:d0:
71:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1D:9A:F4:0C:81:CF:F3:D2:61:19:03:33:A5:A7:58:AF:92:7A:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4ECA6672473B11EEA8C51F604AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.138.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:75:2a:ad:39:28:86:4f:c5:60:09:0c:f9:cc:81:2a:49:d9:
1b:6b:99:53:51:3c:3b:52:47:72:4a:5d:c0:ca:00:8f:7a:4a:
5d:a9:db:ad:92:b1:8f:7a:c3:fd:fc:82:e4:1d:d2:84:d3:e7:
ab:d4:97:fa:28:44:64:6d:c9:73:4d:ac:c2:68:5a:3f:19:5e:
72:c3:51:9e:e2:75:77:4a:2f:dc:b8:8b:26:c4:62:3a:54:22:
32:0d:8f:44:2d:05:31:1a:d2:fb:f6:6c:eb:18:61:df:b4:c0:
c8:e4:fc:18:ae:39:91:eb:af:dd:51:4a:1a:c4:65:d4:5c:d4:
22:72:c6:38:55:5b:b8:82:a4:24:86:94:72:9f:04:96:e9:dd:
65:7c:cb:3f:d7:e3:91:c3:54:8b:56:54:79:25:ae:7f:5e:4e:
6f:6a:8f:b1:4c:ed:c5:d9:fc:2a:09:19:c3:12:8e:2d:27:c4:
2f:a2:7e:23:a1:2b:e6:85:0a:ec:83:9b:59:da:2f:50:d2:40:
fa:ec:4f:71:b6:2c:5f:7e:be:fd:dd:da:de:a7:32:e3:e8:b3:
43:ca:97:f4:f8:ae:30:05:40:20:d3:14:c6:98:4e:e9:1c:c7:
c8:61:09:6f:65:5d:66:62:c1:36:b2:37:e0:54:cd:b1:8d:e0:
76:ef:ce:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:13 2024 by rpki-client on console-fra.rpki-client.org