Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53F602EE08F911EEB2A1A8324AD9E6FC.roa
File: 53F602EE08F911EEB2A1A8324AD9E6FC.roa (raw, json)
Hash identifier: Gghwsb5eF/Pu7MqQEHWA/z/2ExMIWQz9cxXFrhtRc1Y=
Subject key identifier: 89:62:CC:FB:C0:DC:10:4B:61:70:F4:5B:A4:52:E6:37:99:F4:C3:13
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B25
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53F602EE08F911EEB2A1A8324AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:15:44 +0000
ROA not before: Mon 12 Jun 2023 08:15:41 +0000
ROA not after: Sat 25 May 2024 08:15:41 +0000
asID: 131178
IP address blocks: 45.201.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11045 (0x2b25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:15:41 2023 GMT
Not After : May 25 08:15:41 2024 GMT
Subject: CN=6486d430-6888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1a:37:31:7d:a0:0a:c6:35:65:9e:2d:b9:5f:
12:be:1c:41:c8:bc:5f:e0:32:0c:9d:20:19:44:60:
58:2c:50:30:39:d5:4a:db:6e:37:60:11:8b:9d:8a:
63:cb:c1:ae:c5:b4:6b:48:9a:ea:2e:03:bc:f6:71:
30:1e:cf:9e:69:9a:f8:84:f9:43:7c:54:2a:7b:09:
b1:b7:2d:b6:b5:39:52:38:36:a7:36:e5:d1:33:61:
46:93:ed:64:11:13:3d:51:e1:35:05:a5:67:01:6b:
54:49:95:3e:60:48:7e:dd:fe:5d:75:e8:ea:10:40:
15:14:af:18:00:32:91:45:e8:c3:6c:27:27:cc:0a:
0a:32:eb:b4:b2:13:79:58:6f:bc:ab:f6:52:d9:70:
94:29:0e:70:76:a2:2d:e8:ea:59:86:3c:03:b9:b4:
41:ed:ce:9c:35:50:19:ac:08:2d:e4:42:92:05:bf:
a2:a4:ab:ea:81:05:1c:c0:38:62:f3:7d:85:45:ee:
2d:71:e0:b0:5a:d7:04:ad:74:3d:80:36:88:9a:e9:
35:42:1a:5d:0c:d9:f6:ef:fa:c4:9f:a7:99:1f:50:
dd:a4:1c:75:c0:ad:de:79:6b:9b:93:ab:b8:cd:0d:
1a:df:1c:41:f3:5b:7b:92:29:0f:d8:b5:5e:a8:5c:
c8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:62:CC:FB:C0:DC:10:4B:61:70:F4:5B:A4:52:E6:37:99:F4:C3:13
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53F602EE08F911EEB2A1A8324AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.185.0/24
Signature Algorithm: sha256WithRSAEncryption
29:b9:05:3f:3a:a9:ff:40:14:83:c1:e8:64:23:72:22:67:c6:
de:a6:20:d6:83:cb:f7:a6:12:9e:05:b5:65:66:e5:b6:92:30:
e8:00:38:61:d6:12:ec:6b:20:82:dc:e0:0a:6b:79:6b:d8:f7:
62:84:7d:4d:35:e2:2c:32:99:96:a9:24:a1:9b:db:8e:9b:bd:
e1:a7:b0:cf:c6:be:c6:86:ac:f2:6a:52:55:b0:00:5b:00:83:
69:11:ba:a0:dc:f8:55:8a:6c:f3:7a:8e:eb:f7:0a:c3:07:6b:
cb:0e:1e:5c:1f:0e:1b:c5:fd:9d:8e:66:d0:14:73:b8:7b:33:
42:d5:22:2a:d6:bf:77:b9:28:65:95:49:03:f2:b7:48:53:30:
c2:ff:46:fb:2f:0a:0f:bf:3b:8b:a5:14:28:42:1b:69:81:4e:
e5:90:d5:42:50:13:19:72:ef:0e:c0:10:20:11:0d:87:1d:4a:
54:6a:2c:90:16:85:37:2b:34:0f:55:2d:c0:33:14:dd:1e:13:
7f:e9:ae:61:7b:89:8c:8c:0f:1c:92:d8:fe:fd:c3:1d:52:1a:
3c:88:6a:bc:5a:f1:e7:44:3e:73:50:a9:38:5a:6d:e0:6c:e6:
1e:2f:45:a6:75:4c:ab:d2:48:a4:82:dd:02:2f:68:a0:9f:9e:
e3:f6:07:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:21 2024 by rpki-client on console-ams.rpki-client.org