Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72B4C43E08F111EEBAF1331C4AD9E6FC.roa
File: 72B4C43E08F111EEBAF1331C4AD9E6FC.roa (raw, json)
Hash identifier: zkPbPKrVu1nafRHxc6/FCI9hL5iWIw37mxsz9Y9yaWg=
Subject key identifier: 23:23:B0:1E:9B:0E:9D:EF:4E:B6:EF:F4:82:16:40:EC:C9:93:39:1F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2ADF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72B4C43E08F111EEBAF1331C4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:19:20 +0000
ROA not before: Mon 12 Jun 2023 07:19:16 +0000
ROA not after: Sat 25 May 2024 07:19:16 +0000
asID: 131178
IP address blocks: 45.201.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10975 (0x2adf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:19:16 2023 GMT
Not After : May 25 07:19:16 2024 GMT
Subject: CN=6486c6f8-f304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:83:40:3f:25:7e:b2:0a:0e:99:3a:a7:81:ee:
f0:7e:6d:cc:37:67:64:d8:66:d0:e6:2e:34:0e:83:
3f:51:ed:2e:46:7c:8f:0b:36:a2:8d:aa:dc:d1:bd:
92:37:a9:3e:fe:ed:fe:fc:d7:81:df:8b:db:f7:00:
5a:c6:b7:f3:4a:cb:39:bc:30:a2:fb:7d:65:36:5f:
4e:ce:95:82:b4:4c:f3:0e:41:3e:25:30:ea:53:88:
d2:90:7c:7f:33:f3:c7:ee:50:a9:71:2d:7e:ec:1a:
bb:9f:10:c0:1e:fc:c0:b7:4d:1b:a3:a3:64:33:cd:
52:00:da:f0:9f:2f:83:8d:3d:f5:ef:9b:c8:82:50:
29:06:bc:70:a0:28:76:a7:d4:2a:06:27:cd:14:4b:
d9:b6:38:53:cd:6b:e8:29:ad:00:5d:34:59:e5:ba:
b3:d9:4e:95:87:0d:8b:f4:29:9a:cb:70:6a:82:25:
6b:65:34:7f:ea:13:81:36:92:8c:23:db:0b:ca:7c:
be:f6:f9:28:ab:d2:28:87:8c:ed:77:9e:9f:e9:be:
dc:a3:f7:7c:39:bf:fb:a1:f0:cc:df:59:65:20:52:
0e:b2:1d:97:12:13:74:65:08:55:f4:9e:26:e8:30:
5a:60:41:70:15:e9:bf:3f:61:aa:35:3f:d5:8b:85:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:23:B0:1E:9B:0E:9D:EF:4E:B6:EF:F4:82:16:40:EC:C9:93:39:1F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72B4C43E08F111EEBAF1331C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.150.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:de:f4:80:19:f3:a8:17:93:57:69:e5:cd:51:f9:2c:74:22:
d9:ec:83:8d:61:55:e9:17:fe:8a:0b:3a:55:20:be:ea:e5:41:
cd:b7:66:8a:4c:21:58:1e:79:82:0d:da:35:f9:dd:0d:1a:a9:
eb:00:6d:45:03:0b:f1:23:85:ac:e5:d4:b3:d3:82:db:f2:16:
78:a9:79:8b:f7:cb:ab:34:eb:e2:70:38:05:a1:21:1e:08:4b:
82:4a:05:3a:40:ba:59:2a:05:90:04:3a:34:44:55:18:49:db:
8c:8d:46:88:84:d0:16:d2:ea:2f:73:28:90:2b:56:ac:f3:45:
d5:8d:ee:7c:6d:d3:5d:74:ac:c1:1a:3b:ee:4a:6a:4d:69:6f:
7b:22:8e:0f:c2:ec:db:26:fa:94:62:2e:38:41:06:4c:91:4c:
90:9f:d7:6f:33:5c:2c:3e:c5:3f:67:cb:05:b4:f3:54:53:ea:
53:7b:cb:8b:f6:f2:e9:b8:3f:e8:2a:d2:94:21:5e:c7:a0:92:
d0:2f:01:14:1f:ad:ad:a8:a1:df:50:3f:7a:dc:b5:f3:c0:ad:
7a:8c:7c:4b:f6:fb:05:a1:fd:5d:a5:9c:8e:df:b4:b2:75:bd:
e7:74:c7:46:40:f8:e1:29:7e:54:db:cb:9e:de:82:17:ad:fe:
60:db:4c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:19 2024 by rpki-client on console-fra.rpki-client.org