Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6172A44E08F011EEA153E4184AD9E6FC.roa
File: 6172A44E08F011EEA153E4184AD9E6FC.roa (raw, json)
Hash identifier: SBa4bbjvXStqS4mwR6yl+3YzOAF0TMwY3puSrYjdxW0=
Subject key identifier: 37:2D:91:CF:E4:FE:20:96:1E:E7:33:D0:F0:A1:F7:2E:DB:60:4D:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2ACB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6172A44E08F011EEA153E4184AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:11:41 +0000
ROA not before: Mon 12 Jun 2023 07:11:38 +0000
ROA not after: Sat 25 May 2024 07:11:38 +0000
asID: 131178
IP address blocks: 45.201.138.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10955 (0x2acb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:11:38 2023 GMT
Not After : May 25 07:11:38 2024 GMT
Subject: CN=6486c52d-e6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:31:87:09:8f:fe:94:58:cd:e8:0e:92:ab:df:
ea:89:1f:34:24:b8:56:cb:e3:92:e9:c4:c4:02:d4:
19:47:74:0e:5c:62:ec:bb:f9:17:23:c6:38:2f:96:
74:f2:72:a2:a1:ae:cb:1e:14:44:de:0b:bd:33:51:
0d:83:65:af:ff:98:e3:c2:51:2d:cb:0b:0e:2f:0e:
25:81:04:c4:0b:0e:42:f1:92:9b:71:b0:d3:ba:cb:
34:e8:e4:40:3e:e9:d5:67:98:1e:29:01:16:b4:08:
b9:44:e9:d4:15:b7:fd:52:91:ae:b1:4c:c8:33:16:
8d:bb:3d:61:2a:6b:6b:82:e0:8e:c2:06:49:3f:38:
f1:16:85:a2:2c:72:08:55:fc:63:11:6f:fd:8f:5c:
f7:77:77:45:34:a5:e1:03:0e:00:48:4d:12:6c:ea:
55:21:8e:29:c0:06:ca:8b:9c:e5:f7:f2:aa:71:8c:
74:b8:1b:a2:f9:29:47:88:2a:46:1b:a4:19:bd:d7:
b5:b2:69:0e:5b:01:26:c9:3f:98:83:07:84:2d:40:
c8:aa:ab:00:73:01:a1:4e:bc:e3:b9:f9:68:6e:de:
3e:d0:2e:a4:4c:7b:b7:4a:06:58:be:7d:a5:52:49:
85:d1:e8:68:1b:44:42:6d:1b:c3:5f:6c:77:72:7f:
a0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2D:91:CF:E4:FE:20:96:1E:E7:33:D0:F0:A1:F7:2E:DB:60:4D:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6172A44E08F011EEA153E4184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.138.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:21:df:f2:80:d6:9f:91:6d:15:16:29:6a:90:f1:6c:b2:04:
1d:ff:c8:6c:90:4d:57:46:d6:87:0a:dc:bb:9c:ee:34:4a:38:
39:66:fc:a1:fe:16:9b:1f:3c:e3:44:87:0e:af:5b:e6:91:a0:
ac:40:05:d1:ba:01:14:e0:da:86:8b:46:82:99:46:1a:3c:97:
22:8b:21:57:60:c5:34:67:f9:3e:f8:6c:c9:0c:88:4f:5c:97:
24:ec:c6:bf:e0:9b:e4:96:f0:e2:bb:2e:09:12:4e:9c:38:26:
74:69:cc:3a:84:e5:bb:78:dc:6a:dd:a8:28:eb:94:6c:63:d4:
cf:96:62:36:ae:a5:fc:88:ee:06:5b:a2:ea:dc:31:ef:05:3a:
88:09:37:8b:d8:c3:ff:a1:1f:d0:8c:51:09:81:0d:64:cd:00:
a2:5c:53:27:29:50:5a:3f:b8:f0:c1:6c:77:6e:61:7a:f4:51:
94:f3:ef:a8:fc:db:45:27:2f:02:6e:84:8e:0b:97:9d:32:f5:
d8:73:f6:aa:e2:0b:11:41:34:7f:4a:7c:e9:81:ef:ee:25:e2:
db:8d:bd:16:d7:cf:a5:6b:ca:b8:94:27:c0:70:3d:fb:86:ad:
6e:da:f1:57:9e:2b:4f:e7:17:01:3b:dd:39:46:a3:f5:6a:b8:
1b:21:ab:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:21 2024 by rpki-client on console-ams.rpki-client.org