Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EA5124A33A411EE9E2DB0744AD9E6FC.roa
File: 5EA5124A33A411EE9E2DB0744AD9E6FC.roa (raw, json)
Hash identifier: sA09x2KQW2i1qtV9o0jM0mB3AvpGbGlRNsnlZupHzuc=
Subject key identifier: 03:F3:94:7D:94:A8:8B:29:2B:E1:93:51:25:04:64:1F:B4:B4:7A:4E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3367
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EA5124A33A411EE9E2DB0744AD9E6FC.roa
Signing time: Sat 05 Aug 2023 15:25:55 +0000
ROA not before: Sat 05 Aug 2023 15:25:51 +0000
ROA not after: Fri 24 May 2024 15:25:51 +0000
asID: 38901
IP address blocks: 45.201.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13159 (0x3367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 5 15:25:51 2023 GMT
Not After : May 24 15:25:51 2024 GMT
Subject: CN=64ce6a03-2356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:de:1a:16:ee:1c:30:02:7f:08:8f:fd:e2:23:
b7:ba:3c:cd:5a:d7:9c:75:af:5c:85:42:81:92:d7:
37:3b:0d:1a:75:0b:be:9a:dd:2a:ae:77:05:7e:b2:
a6:cf:24:7b:24:23:f2:45:f3:b9:4b:c5:48:a8:4e:
9b:48:2b:37:2e:1e:6d:66:f2:e8:ce:09:20:41:33:
c4:20:83:8a:81:33:42:fa:ec:ce:9e:e4:26:cf:5a:
52:b9:a9:95:55:c8:2e:20:ae:b3:96:15:55:2e:b0:
53:93:ff:20:7b:c8:4c:71:b6:97:23:7d:ae:91:62:
1c:cd:fc:c9:6f:04:6e:0d:4e:0b:4e:6c:1c:cd:2e:
4d:d2:33:b4:fe:c0:ec:8b:a6:d0:32:18:e1:39:57:
b7:46:9b:5f:1e:11:04:9a:aa:57:2e:fd:dd:97:53:
e6:8a:f5:96:20:96:18:d8:54:e3:6d:02:e6:f8:25:
6b:2b:7d:ff:eb:8a:7f:86:e2:d2:7c:25:78:db:43:
5c:6c:14:76:90:7e:6d:1f:c2:e6:2f:f2:ee:cd:83:
4a:42:c7:e8:ac:83:6f:0d:62:0a:69:02:5d:e5:2a:
c0:22:4a:89:8c:f6:86:26:43:7e:73:fd:1f:24:32:
f0:50:14:99:40:06:b6:3e:9f:b1:16:29:32:88:21:
b0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F3:94:7D:94:A8:8B:29:2B:E1:93:51:25:04:64:1F:B4:B4:7A:4E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EA5124A33A411EE9E2DB0744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.195.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bc:9f:19:ae:d2:45:f1:1a:4d:d0:70:01:77:41:19:bf:05:
dc:ed:b7:28:dd:3b:50:34:4e:1e:17:d0:b5:f3:1b:72:f1:90:
1a:5e:2e:b4:2f:2f:a6:a9:a5:8c:07:2d:7d:39:6a:84:33:b8:
f7:33:dd:e7:8b:77:20:e3:a3:bf:15:b7:d5:94:3f:27:9b:70:
26:3d:fb:5e:82:fb:64:79:8c:9a:99:0e:6e:e4:5c:4c:0a:59:
e8:3d:3e:90:9e:32:01:22:ea:11:3b:c2:d0:47:ed:44:2d:52:
93:d5:55:34:dc:e8:3b:06:cb:e9:1a:08:d2:7a:3f:f2:52:f5:
ae:36:e0:c7:73:63:02:96:3f:14:5e:ce:f6:42:4b:ce:54:e0:
a5:2d:f4:80:44:48:77:4e:4d:77:5b:66:63:c5:04:dd:e9:15:
3c:7e:61:53:fc:28:89:23:af:56:5d:67:65:89:97:12:ec:58:
b8:11:62:6b:e4:57:43:dc:bd:f1:51:d3:6c:4d:5c:44:92:94:
1c:72:14:e3:98:e7:78:8c:78:ee:5f:3b:f4:b4:56:ae:e0:48:
0f:5c:2f:62:33:f8:b3:e7:56:68:d0:05:e0:9e:82:62:41:fa:
b2:7b:9e:cc:33:a8:fa:2a:38:d4:2f:cc:d2:d0:76:88:97:93:
64:27:16:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org