Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A830A38417C11EE9B1D5E144AD9E6FC.roa
File: 5A830A38417C11EE9B1D5E144AD9E6FC.roa (raw, json)
Hash identifier: K5orRYxD9BB/Enk5Qq9ouq1Qh3ZD/O1NXT45Noh4QoI=
Subject key identifier: 4F:F8:0D:51:8D:80:5A:45:6D:87:4E:06:BA:32:0D:C4:7C:1C:72:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 36D1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A830A38417C11EE9B1D5E144AD9E6FC.roa
Signing time: Wed 23 Aug 2023 06:14:44 +0000
ROA not before: Wed 23 Aug 2023 06:14:41 +0000
ROA not after: Sat 21 Sep 2024 06:14:41 +0000
asID: 147019
IP address blocks: 45.194.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14033 (0x36d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 06:14:41 2023 GMT
Not After : Sep 21 06:14:41 2024 GMT
Subject: CN=64e5a3d4-e118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:63:8b:ee:43:50:07:34:e9:70:6b:64:71:
d6:fb:a7:6c:5b:f2:4b:4b:5d:50:81:71:a9:6c:61:
de:a0:33:dd:ae:44:93:4f:73:16:92:81:97:45:33:
55:5e:c4:db:7c:10:12:72:d8:f3:39:3d:20:df:9c:
ae:73:a8:32:4c:84:87:5a:45:5c:95:3e:0b:64:1c:
b3:59:35:14:a4:43:f9:b8:65:63:f7:91:16:a0:88:
1c:36:59:1b:32:58:b5:cf:6d:86:e5:d8:c7:3b:0d:
63:04:be:41:22:e8:cd:49:69:6e:84:2a:d3:4e:5f:
15:e6:59:8c:5d:2a:fa:b4:76:af:c3:97:e9:1d:c3:
74:28:7f:14:24:30:01:cc:08:72:da:f1:90:3d:66:
a5:47:9e:d9:29:f0:cf:5d:8b:16:f7:d4:2f:27:30:
af:d6:a9:66:e1:fd:15:42:3e:d2:79:3a:9c:75:70:
48:ca:c6:60:e5:bb:98:f3:32:3e:2d:81:c3:b4:46:
fb:e6:d9:be:eb:78:ae:37:31:48:7e:78:ed:29:d0:
4e:bc:91:a8:3b:0b:7b:4f:57:93:80:0a:ae:46:41:
59:11:0b:d6:63:a0:36:f1:5b:39:1f:43:19:2e:92:
ce:8a:e4:9f:a9:42:4f:84:35:c6:bc:c1:59:03:cb:
f1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F8:0D:51:8D:80:5A:45:6D:87:4E:06:BA:32:0D:C4:7C:1C:72:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A830A38417C11EE9B1D5E144AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.56.0/24
Signature Algorithm: sha256WithRSAEncryption
18:98:7d:51:0e:d0:23:17:d4:73:3e:3a:c5:52:dc:c6:a7:18:
2e:4d:0c:58:28:90:b9:10:1c:bd:44:14:a3:45:3b:b2:e9:ce:
55:a6:09:96:61:43:4f:b1:42:90:4d:64:9b:12:c9:33:2f:a3:
02:9e:f5:1d:d0:be:19:32:50:ca:0e:d7:5d:fc:14:1e:ca:5f:
11:53:1c:87:fc:78:ed:29:25:8d:36:cb:85:78:db:95:ef:02:
79:a0:4f:a8:86:8e:90:de:43:22:5a:d0:b9:84:9f:e4:45:e0:
1e:b0:53:7b:5d:d3:ae:fe:d5:3c:a4:87:73:0d:c2:4b:55:ca:
a6:36:de:81:2e:7c:6b:17:1b:38:ab:60:e6:97:68:76:f3:c4:
71:1f:3a:a2:80:e4:9a:47:44:69:40:b8:4b:84:bf:2a:c5:41:
6c:c2:3f:c5:1f:bf:08:e9:d3:14:0b:aa:14:69:1d:73:71:d6:
a3:03:eb:cc:91:5d:74:4e:df:1d:b7:68:c8:34:22:fa:7f:38:
ef:b9:e5:b3:61:71:97:c4:67:21:2d:09:28:6f:a6:b9:d2:0a:
06:b8:18:61:fa:80:ec:de:3f:a3:73:e7:80:c5:73:d2:f8:30:
8a:cc:42:de:c9:de:ee:8a:f9:38:56:ac:4c:ba:43:28:74:4d:
6e:d5:a3:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:09 2024 by rpki-client on console-fra.rpki-client.org