Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/639870044BEF11EE8B0FAF584AD9E6FC.roa
File: 639870044BEF11EE8B0FAF584AD9E6FC.roa (raw, json)
Hash identifier: VStrVLqpxsRgANnTolGQ/rd3u+QKOAzw3C3DLtHSBA0=
Subject key identifier: 11:16:30:6E:A0:B0:A9:DE:18:A8:23:4F:27:A0:D3:78:E4:D9:91:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 37F5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/639870044BEF11EE8B0FAF584AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:23:23 +0000
ROA not before: Tue 05 Sep 2023 13:23:20 +0000
ROA not after: Fri 24 May 2024 13:23:20 +0000
asID: 131178
IP address blocks: 45.201.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14325 (0x37f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:23:20 2023 GMT
Not After : May 24 13:23:20 2024 GMT
Subject: CN=64f72bcb-e727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:10:89:42:eb:1a:2b:e7:b1:6a:92:a2:bb:2d:
a5:b3:77:d0:2f:77:65:7b:68:85:bc:b6:a3:60:8f:
9d:08:8a:a4:72:24:d0:24:26:d7:30:5a:5d:04:e6:
39:4e:fe:f5:11:92:b2:aa:43:7b:b0:9e:ca:91:4e:
40:58:e6:45:12:fe:64:80:ed:6f:72:2f:23:0a:d1:
36:36:b9:79:c1:bd:a5:13:7a:13:05:29:f4:de:26:
2c:4b:61:08:1c:b3:ef:83:10:98:c7:3b:77:2a:e1:
d4:31:ff:55:96:09:2d:cb:5a:e8:2f:3c:42:82:57:
a3:2d:fd:d9:97:95:c8:bd:c5:ac:48:ad:4a:91:bf:
43:35:ef:e0:44:d7:b0:86:90:57:00:b9:8e:f1:bd:
2f:56:29:1e:ce:34:1a:cc:18:bf:1a:39:b8:37:9e:
3b:56:c8:66:94:5b:fe:6f:d6:38:e7:2a:6e:74:e9:
47:e4:12:84:45:d2:8d:85:9a:9d:8c:5e:e2:78:f1:
06:7b:d8:11:f9:c1:b4:97:17:82:55:25:d1:06:d9:
21:ee:77:db:6a:7d:8e:f8:17:46:60:6d:67:ee:a3:
14:53:51:d8:9c:e2:19:58:d3:40:c3:94:d2:77:e6:
a9:cc:45:33:a1:4f:6b:a9:80:8d:9b:fe:36:ee:68:
cc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:16:30:6E:A0:B0:A9:DE:18:A8:23:4F:27:A0:D3:78:E4:D9:91:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/639870044BEF11EE8B0FAF584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.169.0/24
Signature Algorithm: sha256WithRSAEncryption
70:4e:5c:84:f0:a3:7f:71:15:53:26:62:79:85:97:25:3f:70:
70:ff:39:f4:94:87:cf:85:e3:73:48:48:d6:43:89:21:8b:a9:
ae:dd:8e:4e:9d:30:6d:5c:54:2a:67:60:66:3e:a9:83:46:34:
e1:8a:91:32:2c:a4:6d:a8:2a:6f:c9:82:2e:05:fd:c0:e2:be:
8d:10:e8:77:9a:e9:1f:6d:2d:a9:2f:cd:ae:58:30:08:3c:8e:
bc:e9:48:e0:3c:b6:db:97:47:ef:d8:75:28:bc:34:77:0a:77:
35:35:05:a8:16:6d:f2:57:bc:ce:a1:29:b2:c5:82:37:44:92:
78:f3:b7:f4:bc:36:7f:a8:7a:c1:3e:fe:ec:db:87:a1:1e:8e:
8a:b0:24:e6:03:46:00:a6:11:b8:23:ee:92:f9:b1:75:61:22:
6a:b0:37:2a:aa:a6:3d:64:fe:46:82:97:c7:2e:62:4a:9e:45:
97:68:7a:6f:e2:99:d9:19:7e:56:fe:af:7d:b0:5f:47:fc:be:
1f:00:03:2c:22:ae:2c:cb:55:34:9b:f8:9b:fe:d7:b6:d3:9c:
32:5c:d8:20:ff:57:01:b0:fb:f0:ab:8b:ca:fc:09:8f:44:ec:
53:e7:8f:43:9c:9e:5d:06:9b:93:80:a3:da:23:1b:fe:03:66:
2d:dd:6a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:21 2024 by rpki-client on console-ams.rpki-client.org