Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E05D38EFB8611ED8380FA7E4AD9E6FC.roa
File: 5E05D38EFB8611ED8380FA7E4AD9E6FC.roa (raw, json)
Hash identifier: ks+KZhD95BLn2zLfeO1YOcpugIAxC4L3NA21y1+laQM=
Subject key identifier: DE:C2:18:FA:AE:9A:37:5F:54:C1:89:B8:11:6D:3F:75:8C:9D:65:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 27C0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E05D38EFB8611ED8380FA7E4AD9E6FC.roa
Signing time: Fri 26 May 2023 05:30:04 +0000
ROA not before: Fri 26 May 2023 05:30:00 +0000
ROA not after: Sun 30 Jun 2024 05:30:00 +0000
asID: 984
IP address blocks: 45.198.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10176 (0x27c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 05:30:00 2023 GMT
Not After : Jun 30 05:30:00 2024 GMT
Subject: CN=647043dc-c656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a9:e7:7b:c6:db:89:d3:6e:49:03:f3:f5:ad:
2f:78:ec:c9:34:9e:62:62:1b:7b:e8:8a:af:31:0d:
5d:20:42:5b:26:32:fb:40:45:2f:b6:19:71:f9:da:
1f:af:95:d2:9b:d5:25:5d:c0:ea:2f:7e:10:75:8d:
9a:c7:2c:a8:b1:21:ec:9f:84:6a:ce:9a:db:52:e9:
ef:31:74:88:d3:5c:43:fe:3c:c1:09:78:95:93:70:
00:0a:f5:80:6b:b8:71:dc:79:6b:b7:5e:05:06:d6:
90:8b:83:f9:80:b1:1a:7b:7f:6e:4e:3d:9e:55:8f:
e5:0a:1a:43:60:63:43:a9:77:39:6b:6f:4d:64:9f:
ef:73:ea:3e:2f:ca:54:bd:ef:80:ca:f4:2c:64:80:
a3:0d:1c:89:b5:a6:75:3e:70:ef:ce:0b:0c:3b:8f:
32:a3:25:75:15:ac:4c:56:ea:49:08:1a:13:62:bb:
f9:05:30:99:4b:71:1f:61:02:21:a2:dd:3b:70:33:
69:0c:3e:ff:e6:55:f3:f8:73:0c:77:25:d5:72:d9:
d7:16:13:6a:8b:a2:9e:ce:ec:55:ec:95:aa:fb:00:
d4:71:ad:02:e0:3c:17:f9:a6:ec:ac:d4:7b:40:1f:
61:39:d8:08:0a:00:ee:6f:21:a9:2c:bd:a2:96:0b:
e9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C2:18:FA:AE:9A:37:5F:54:C1:89:B8:11:6D:3F:75:8C:9D:65:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E05D38EFB8611ED8380FA7E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a7:11:dd:10:73:ba:48:ce:92:da:c5:fc:2e:09:29:ab:95:c2:
4f:d7:e9:58:62:5e:a6:89:ed:9c:53:b3:c6:0b:bd:c3:e8:9f:
49:01:af:d9:5d:f7:47:c6:6c:30:9f:0f:d0:6e:6f:7e:66:75:
2a:94:0b:49:11:a9:4b:36:fb:20:05:87:13:61:dd:3a:27:e7:
21:dd:18:c1:0a:21:d9:7b:24:a8:0f:82:71:06:81:e6:71:ab:
db:ac:d2:e2:b7:ea:cf:73:4a:17:7c:b8:99:f6:1c:ea:9b:dd:
79:a2:bd:47:31:be:86:cb:34:95:9a:46:b8:6d:3f:20:73:94:
9d:68:78:26:c1:a4:ef:17:e3:e3:5e:b8:de:58:26:9f:79:4e:
ec:09:58:36:e5:c5:57:44:5e:ef:66:7e:a4:bd:2b:f5:9e:87:
c9:0a:f7:89:70:1b:94:9b:b0:42:04:cb:82:b3:25:b2:7b:27:
5e:22:27:45:4d:c8:27:87:9a:56:d2:c2:6e:61:97:e3:99:b2:
89:ab:74:9d:e3:08:47:c3:bb:31:93:31:3f:a2:0a:c0:b1:94:
1b:3b:55:10:8d:af:a3:56:c8:bf:6a:96:8c:9c:23:58:e7:88:
95:fd:ef:06:97:a2:73:1a:87:e4:61:d3:76:89:01:0d:f4:fc:
71:10:f2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org