Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71996D0A33A511EEA0DD02784AD9E6FC.roa
File: 71996D0A33A511EEA0DD02784AD9E6FC.roa (raw, json)
Hash identifier: e+UJ1+bD/gKHzBaibAxMKedo2ObpomQdPlWuCJiOWHw=
Subject key identifier: 60:29:FC:83:E0:B7:22:97:AB:AB:AC:0C:22:52:BD:D5:6F:1A:D0:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3377
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71996D0A33A511EEA0DD02784AD9E6FC.roa
Signing time: Sat 05 Aug 2023 15:33:36 +0000
ROA not before: Sat 05 Aug 2023 15:33:33 +0000
ROA not after: Fri 24 May 2024 15:33:33 +0000
asID: 38901
IP address blocks: 45.201.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13175 (0x3377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 5 15:33:33 2023 GMT
Not After : May 24 15:33:33 2024 GMT
Subject: CN=64ce6bd0-f081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:86:05:b9:4f:88:ea:9b:35:fe:e3:03:c8:e1:
1e:4c:8c:fa:31:14:e9:0c:89:a5:e1:70:a1:b9:f7:
53:9c:49:ef:15:22:6b:1a:f3:3c:94:96:2b:ea:04:
70:ee:b9:26:9e:5b:c6:26:8c:d5:6f:12:96:3e:6e:
f1:67:55:6a:df:e4:6a:b6:13:5c:d1:eb:37:f8:56:
3e:29:80:1d:10:2f:ed:30:76:59:a7:10:c6:0e:0b:
2b:b9:c8:a8:ac:ba:ee:0f:aa:10:ba:d3:5c:63:32:
01:20:fe:d7:04:02:b0:53:31:9a:79:da:15:cc:dc:
ff:3b:1b:0d:41:56:96:52:70:18:79:2a:4b:50:1b:
bb:15:ea:0b:a7:91:c6:66:4f:de:48:bb:4f:3b:f2:
96:b7:88:fd:2c:26:86:ac:ac:e2:0c:2f:8e:c6:5c:
2c:69:cd:87:e2:a6:17:9d:7f:f1:e4:39:b8:4b:98:
e6:53:98:b4:e3:30:84:c7:27:31:c4:da:ed:f9:95:
1d:5f:cd:aa:56:48:34:f9:7d:6c:57:56:b3:ee:b8:
b6:e8:62:4d:1e:dc:b7:be:e8:c1:62:cb:0a:25:f6:
dd:4a:35:78:1f:b1:38:88:01:39:ff:60:e9:0f:fa:
48:2b:0f:f1:c1:0f:79:45:44:d2:2f:94:58:46:e4:
0a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:29:FC:83:E0:B7:22:97:AB:AB:AC:0C:22:52:BD:D5:6F:1A:D0:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71996D0A33A511EEA0DD02784AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.203.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:57:4d:de:4d:7f:55:ed:a5:14:8c:0b:5c:3b:97:9b:3a:82:
d3:ef:46:97:14:91:15:0a:77:98:23:60:0a:bf:5e:b2:34:5a:
db:59:a6:68:bd:45:ba:3f:24:a5:03:ca:39:17:5f:f9:f4:a4:
1c:81:c7:9e:ec:04:8a:27:a3:a1:e5:28:c3:79:ed:b2:4d:0b:
ec:d2:cd:a6:df:9d:6c:cb:2d:27:ab:71:3b:c2:a8:f0:8f:e3:
9e:f1:bf:ed:68:2d:a7:d3:e9:78:07:4b:d8:ff:9e:23:9d:98:
f5:ba:08:f2:c4:81:a1:03:80:bb:04:23:4f:59:34:4a:84:4d:
4e:10:60:a3:e9:7b:fc:15:4e:71:f3:cc:5f:44:ba:33:83:1a:
86:a0:50:b2:56:72:18:0a:1c:44:d3:3a:50:20:50:fc:cb:a0:
4e:67:ce:d3:b4:d6:1a:9f:7c:92:9a:a7:27:61:01:c4:cc:7f:
62:f5:8f:28:f4:8b:55:1f:7a:04:01:f1:22:df:ad:18:8e:7e:
9a:52:28:bc:b0:54:c4:7e:e1:2e:2f:33:13:0f:5d:ed:5f:9b:
ae:f6:e6:a4:e9:bc:45:68:97:9a:dd:d4:21:18:fc:45:67:85:
9b:a0:4e:f6:4e:2f:c1:50:53:47:56:81:1b:8f:2d:07:9d:5e:
b4:e8:e0:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:54 2024 by rpki-client on console-ams.rpki-client.org