Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5057DBE60F1411EE9EF563414AD9E6FC.roa
File: 5057DBE60F1411EE9EF563414AD9E6FC.roa (raw, json)
Hash identifier: xHTd9AZLBFzMRR+osQFK51kbF233Pe45RtpUNvuwfM8=
Subject key identifier: DF:37:7C:48:0C:FF:C8:A1:28:30:04:6A:40:B2:CA:7F:D3:D5:A7:B6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2C78
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5057DBE60F1411EE9EF563414AD9E6FC.roa
Signing time: Tue 20 Jun 2023 02:44:02 +0000
ROA not before: Tue 20 Jun 2023 02:43:58 +0000
ROA not after: Tue 18 Jun 2024 02:43:58 +0000
asID: 24875
IP address blocks: 45.199.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11384 (0x2c78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 20 02:43:58 2023 GMT
Not After : Jun 18 02:43:58 2024 GMT
Subject: CN=64911272-8bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:07:44:a5:49:19:fe:07:33:bb:87:ba:59:b0:
90:bd:fa:93:a5:70:9a:b1:4d:97:2a:4a:f1:3f:c4:
d3:96:ef:40:a8:ac:6b:88:1a:67:b3:22:5a:dd:4d:
60:91:24:ac:3e:ae:12:8d:8a:16:6b:de:0a:77:97:
5d:54:df:54:21:5d:ec:26:65:3d:ce:d6:33:70:81:
d2:88:1e:e0:f2:63:04:3c:e1:f0:69:22:37:0d:a6:
fa:ce:7a:d8:04:fd:20:83:aa:82:47:7d:60:9a:50:
a6:aa:64:5d:1b:0f:df:bb:30:d8:91:75:6e:84:d8:
f2:f6:bb:91:da:f9:85:21:ee:9c:d0:81:aa:f9:67:
3a:4c:02:ee:bd:57:75:02:9b:7c:db:60:ca:e5:43:
fb:68:5e:b2:31:89:3a:70:af:7d:30:c4:d6:09:96:
35:9b:7d:86:ab:0e:a8:ed:9e:90:5a:aa:ac:3a:e5:
28:35:50:3b:81:8b:3b:a9:bf:e4:0d:23:ec:ca:71:
45:19:36:39:a4:ee:96:72:e7:da:a9:72:a2:0c:48:
d6:d9:d5:e3:7d:9f:ac:01:b9:88:95:ce:04:95:a9:
d1:50:f0:07:e6:06:f3:df:8f:dd:38:89:a5:dc:d0:
a1:c2:7c:05:0b:cf:96:73:01:b0:c2:8e:93:0c:af:
5d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:37:7C:48:0C:FF:C8:A1:28:30:04:6A:40:B2:CA:7F:D3:D5:A7:B6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5057DBE60F1411EE9EF563414AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.138.0/24
Signature Algorithm: sha256WithRSAEncryption
03:5e:de:83:08:ac:8f:ca:0a:0a:51:0e:3c:00:a1:4f:f0:c9:
e7:ed:dd:a6:94:64:06:7a:57:bf:01:93:9c:9d:11:05:0d:c5:
c0:12:e8:94:e3:6e:da:4e:67:73:58:19:2e:4d:dd:29:cf:93:
f9:db:54:26:fc:96:98:b9:e0:17:ea:8b:62:a4:4a:2c:26:2a:
2f:0e:96:0b:f4:e4:10:76:b7:ec:dc:92:a0:98:64:eb:87:f5:
f3:7a:0f:fa:3a:18:c3:7c:a2:93:ca:d0:b6:e6:06:be:1e:37:
86:a3:05:98:53:7a:9d:1e:ff:b8:ed:54:c4:80:1a:0a:fb:c9:
b0:67:6d:60:65:dc:9d:ad:6c:86:fa:7a:84:5e:ed:6d:80:f7:
a0:13:cf:91:d1:9b:6b:37:18:4f:c2:00:02:8e:ef:18:01:80:
b2:1b:4c:1f:86:aa:fe:1a:bd:51:cb:8e:13:7e:a4:f0:f1:23:
6d:a3:e5:35:0f:87:cb:5c:32:f3:c4:bf:b0:27:79:e5:f0:4f:
8b:6a:27:27:e7:da:e9:1a:fd:c5:4d:73:a0:9e:3d:2b:2c:63:
6b:47:e9:62:ed:3c:47:93:db:26:76:c7:c9:53:36:bd:71:ac:
02:83:26:05:8c:c0:39:b7:0c:e2:75:83:e1:48:b6:9a:1f:6e:
02:ca:74:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:08 2024 by rpki-client on console-fra.rpki-client.org