Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67882990157911EE96A297224AD9E6FC.roa
File: 67882990157911EE96A297224AD9E6FC.roa (raw, json)
Hash identifier: pZgESzqNaJNttN3prvl7PsF8ZVL1lQac2bMY3ZZKrdk=
Subject key identifier: 51:63:4D:58:16:99:60:14:59:BA:AF:87:0F:58:6C:F9:26:B0:A4:05
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2DFA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67882990157911EE96A297224AD9E6FC.roa
Signing time: Wed 28 Jun 2023 06:02:47 +0000
ROA not before: Wed 28 Jun 2023 06:02:43 +0000
ROA not after: Tue 29 Oct 2024 06:02:43 +0000
asID: 135607
IP address blocks: 45.194.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11770 (0x2dfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 06:02:43 2023 GMT
Not After : Oct 29 06:02:43 2024 GMT
Subject: CN=649bcd07-73ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6a:5e:b4:78:89:4a:a7:22:38:bc:06:d5:f1:
0e:3b:3a:94:58:eb:36:77:6b:70:98:b2:84:30:a0:
f8:f2:f0:3b:7e:fa:c9:f3:ba:13:cc:56:18:1f:01:
0b:af:c8:65:bc:5a:9f:f8:49:f6:85:dc:3c:90:f3:
08:01:3e:c5:d6:f8:52:db:ab:bf:4e:99:6c:24:e0:
b4:e7:19:5a:51:eb:d4:68:d0:46:86:b1:df:7d:3a:
7c:59:d2:0b:7d:f3:e7:4d:7c:89:df:a8:24:9a:32:
61:54:3c:2f:e8:d1:eb:11:76:1c:67:61:10:93:60:
01:2c:62:48:ff:a5:4c:28:c6:95:09:1e:fa:a8:e6:
5f:21:6f:17:14:a1:fd:14:11:be:98:df:bd:95:95:
1e:9b:9b:3d:f9:91:1a:b3:e1:b0:da:e1:24:a6:e2:
7d:65:c7:d4:f1:35:f7:20:08:54:7c:39:56:12:31:
6f:95:8f:74:27:71:40:1c:a4:32:a9:0c:13:3e:05:
60:6a:56:c1:07:15:2b:91:d4:05:06:9b:69:1b:7a:
38:cb:05:49:79:4a:a7:e5:cd:b1:63:8b:fa:0e:a6:
45:a2:fb:d7:19:3f:62:89:c6:f8:0b:fd:61:07:ed:
f7:50:60:9e:42:9b:0a:cb:e4:05:64:44:a2:7b:38:
98:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:63:4D:58:16:99:60:14:59:BA:AF:87:0F:58:6C:F9:26:B0:A4:05
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67882990157911EE96A297224AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.11.0/24
Signature Algorithm: sha256WithRSAEncryption
12:39:bb:6c:93:6b:78:b8:8d:39:50:d7:01:3c:40:ee:6e:80:
83:c7:1d:23:97:02:f2:40:f7:a6:09:3f:ab:db:40:6d:39:9d:
32:4d:d7:c8:64:05:c0:04:a7:a5:e4:69:18:fd:e2:81:44:4b:
46:d1:a0:38:a1:e0:b4:75:c3:90:9b:6d:52:56:87:63:d5:d1:
cf:b4:fd:63:35:b8:a5:39:15:39:33:19:93:de:9e:bd:4f:f2:
b6:d9:d7:66:58:af:32:4c:59:f6:d7:a9:24:4c:5d:7b:fa:f1:
b5:a9:a0:14:63:e8:ea:17:89:e0:e4:e4:0a:ee:ec:e0:05:25:
0f:8e:23:2d:be:bc:f6:cb:29:3c:97:e3:95:7d:32:64:7e:ff:
84:a8:3b:5e:2f:11:40:94:ba:66:c1:18:ad:f1:70:cb:05:07:
23:bc:de:94:8e:03:a9:91:03:67:71:4e:4f:70:35:ee:b9:f6:
20:7e:0b:54:69:56:06:00:15:40:85:f9:b6:c5:9e:36:75:af:
b3:f1:bf:4f:63:9d:2d:91:4f:74:2f:94:1a:c9:09:19:47:d5:
91:b7:46:d1:67:9e:54:98:18:98:04:c8:a6:d2:33:1e:9d:6e:
e5:f9:a4:dc:26:9a:2c:2b:ec:84:b7:a6:e2:ab:00:9d:ea:82:
3a:f0:be:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:49 2024 by rpki-client on console-ams.rpki-client.org