Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67B77D4233A311EE8B0EDC714AD9E6FC.roa
File: 67B77D4233A311EE8B0EDC714AD9E6FC.roa (raw, json)
Hash identifier: Yeu59+m4EWAesHjt6vYgamkIRhhUSk1oFKlSA1W5ytE=
Subject key identifier: 66:D2:A7:78:95:75:67:82:45:06:D1:86:6E:F8:1C:34:BD:59:25:6A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3359
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67B77D4233A311EE8B0EDC714AD9E6FC.roa
Signing time: Sat 05 Aug 2023 15:19:01 +0000
ROA not before: Sat 05 Aug 2023 15:18:57 +0000
ROA not after: Fri 24 May 2024 15:18:57 +0000
asID: 38901
IP address blocks: 45.201.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13145 (0x3359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 5 15:18:57 2023 GMT
Not After : May 24 15:18:57 2024 GMT
Subject: CN=64ce6865-2274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e6:38:84:bd:6f:df:2e:51:e7:e9:78:1d:80:
a0:91:4f:eb:9f:d2:35:d9:f0:d1:05:ed:c7:a3:01:
15:bd:1b:86:19:be:8c:f2:32:57:7e:bb:a1:1f:10:
ff:6e:e8:9c:e1:41:0d:d9:c7:3d:34:6e:5e:16:61:
55:c4:a2:69:39:a3:15:68:35:be:45:89:64:03:21:
65:a0:85:97:7d:9a:50:f1:2d:a7:a4:d8:09:3a:07:
56:4e:4a:4e:fa:dc:70:51:aa:8e:04:ef:fa:7c:33:
df:ea:f3:85:cd:3c:33:1a:92:1d:c9:c5:00:51:24:
83:dc:f4:8f:99:7f:23:fd:23:ee:55:92:eb:dc:5d:
f3:4b:b5:f8:32:4f:48:a4:3a:6d:b6:17:b7:1a:41:
43:4b:3e:95:79:00:86:03:88:a2:88:c2:12:d8:8c:
7f:ee:0a:24:9e:5a:bc:b3:ae:35:92:ce:0c:0f:27:
ba:4e:b8:31:73:cf:96:8b:4b:79:81:17:0c:7e:e8:
e9:87:23:2c:fd:60:8e:91:2c:8a:6e:bd:39:3f:ec:
8a:64:11:40:ec:02:be:df:21:a6:a7:24:67:14:0d:
a9:76:ae:f4:7e:9e:a6:ad:3f:02:68:0d:23:9f:63:
5c:00:ae:63:6d:29:cc:49:b7:e6:45:33:ef:c1:aa:
d1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D2:A7:78:95:75:67:82:45:06:D1:86:6E:F8:1C:34:BD:59:25:6A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67B77D4233A311EE8B0EDC714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.208.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:18:69:d6:94:43:00:26:6a:f7:fe:6d:c3:a9:59:64:3f:70:
e5:a8:4c:34:85:6a:61:92:85:65:d9:e2:5a:c1:a3:12:93:5e:
40:21:af:28:63:45:60:9c:24:7c:fa:c3:1d:06:e9:29:75:5c:
ab:d5:58:ac:39:8b:c9:8c:d2:b8:86:f3:20:99:e4:d6:54:05:
50:91:87:5d:94:0b:a3:42:5c:75:40:6f:1e:fc:b1:54:b1:d9:
90:a0:f6:d8:89:31:f8:b2:c9:f0:d8:43:9b:6f:5b:08:c9:92:
fb:ee:04:ae:4a:2d:3d:42:e8:e9:52:0e:a0:e0:b4:4b:76:21:
7f:d9:d1:14:9a:f7:43:5a:83:8b:b5:91:fe:a4:df:5d:91:82:
72:2b:b1:51:8d:83:f0:e5:f4:d1:7a:ed:c4:a6:88:15:10:24:
97:4b:a3:57:ad:6f:d4:e1:ec:98:a0:81:ff:51:ee:aa:a3:5f:
cd:a1:b7:de:3d:cd:78:1e:93:11:e4:3a:b8:2d:2f:72:c9:a2:
3a:dc:c7:9a:26:85:e7:1c:27:ea:9e:c3:e9:5b:5c:50:3e:7e:
8c:a2:8c:f0:a8:d4:05:5f:f3:28:c3:d6:85:77:be:f9:bc:6c:
4f:d3:74:63:2c:01:1e:a4:e4:c1:ff:05:a0:59:9a:c9:29:7c:
4f:84:e5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org