Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52C9C5B8E46311EEAD06218D775412E6.roa
File: 52C9C5B8E46311EEAD06218D775412E6.roa (raw, json)
Hash identifier: 5YW/KZqEEXEJ0g9gXItKa9JvRxZwmifebJjPn91bvuA=
Subject key identifier: 40:A6:DB:96:13:FB:67:38:4A:AA:D9:81:9D:A4:2C:C8:F8:36:8F:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7E94
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52C9C5B8E46311EEAD06218D775412E6.roa
Signing time: Sun 17 Mar 2024 13:36:14 +0000
ROA not before: Sun 17 Mar 2024 13:36:10 +0000
ROA not after: Sat 15 Mar 2025 13:36:10 +0000
asID: 60609
IP address blocks: 45.200.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 02 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32404 (0x7e94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 17 13:36:10 2024 GMT
Not After : Mar 15 13:36:10 2025 GMT
Subject: CN=65f6f1ce-c705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:78:61:48:65:e3:b1:c8:b9:a0:76:cc:1f:61:
9c:6b:1c:5c:27:8f:33:ac:b5:b6:02:d3:10:41:92:
0e:51:64:15:d9:21:1f:84:86:2e:3f:c3:fb:5a:bc:
4d:89:bd:e7:bf:f1:41:a6:f7:3a:5c:3b:40:74:68:
1a:f4:e3:32:2e:44:88:d9:c4:2c:0e:fa:fc:78:63:
74:b4:7a:75:61:b6:4e:aa:fd:2c:61:41:1b:38:2c:
de:75:e0:74:dc:e3:4d:64:2e:c4:3e:49:cd:f1:08:
b3:b8:6f:ca:e8:29:b8:57:08:77:17:65:74:b5:ca:
0a:43:f3:18:0d:a2:4d:68:96:b6:e1:99:6e:f5:b4:
c5:08:c3:15:78:64:48:0b:30:a5:fe:fe:5e:b0:2c:
8f:56:95:f1:2b:f2:20:37:dd:aa:96:7e:2a:8e:4f:
d0:8c:ea:99:3b:1b:13:ae:93:6c:6c:b9:b7:fc:b1:
61:f2:7e:67:f0:90:33:62:2f:de:d5:78:09:36:2b:
6c:79:2d:9c:43:26:e8:f3:b6:3d:88:ce:8e:ed:f8:
c7:54:89:cd:f6:e9:7b:b2:4d:e0:ca:eb:e7:07:1f:
58:17:9b:10:58:6f:a5:9c:59:fb:71:bf:78:54:3b:
67:2f:f1:23:53:b7:b7:57:c2:b4:9d:9e:53:da:1a:
b3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A6:DB:96:13:FB:67:38:4A:AA:D9:81:9D:A4:2C:C8:F8:36:8F:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52C9C5B8E46311EEAD06218D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.136.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:0c:26:91:37:4c:e2:4d:66:38:d6:5d:59:60:e2:dc:22:af:
4c:92:42:fb:dc:41:b1:16:41:3e:fc:4e:96:ca:75:7b:27:90:
d7:81:91:f2:08:34:96:95:a5:d9:32:b9:35:68:0a:bd:aa:d1:
b6:34:28:96:d5:5c:9f:61:41:b8:93:08:98:a4:6a:7c:56:50:
74:14:a1:25:e2:c2:52:db:57:67:bb:5b:69:37:ef:4a:bc:83:
5b:bf:cc:43:70:d3:bb:30:3f:52:f3:59:c9:f1:ff:54:6b:94:
86:f8:83:79:d9:8b:ce:8e:37:11:6c:06:d3:dd:fe:e8:73:a8:
4f:41:26:2e:1c:bd:07:fc:94:07:f4:56:06:5c:7f:a9:ab:fd:
b5:1a:77:51:76:93:7c:ef:64:09:7e:b6:e8:1e:a0:e2:05:e4:
b7:f6:fd:f1:e0:5c:75:6a:1c:2c:90:f2:10:b5:94:04:7c:31:
3e:97:8f:76:3c:4c:02:af:8b:47:67:42:4b:7d:06:ab:7c:5d:
8d:52:87:c5:de:47:39:35:4c:07:9d:dc:ab:d7:08:99:97:41:
a0:75:7e:05:17:b7:d6:59:85:9d:8d:50:61:2f:87:15:c3:e3:
a3:de:3b:38:5c:1f:f2:31:e0:14:52:63:d0:71:0c:8e:d4:ef:
ca:42:dc:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 10:15:50 2024 by rpki-client on console-fra.rpki-client.org