Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/809EF5E2A2ED11EEAAC8CF75D25BE465.roa
File: 809EF5E2A2ED11EEAAC8CF75D25BE465.roa (raw, json)
Hash identifier: 1T48Gq4fnAHaEyNz+OOEMnULSmbflXgMgsvhCnRbMK8=
Subject key identifier: AA:A1:C4:AD:AB:59:6C:E4:A8:BF:CE:73:D7:7F:5B:FB:32:37:D4:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 591A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/809EF5E2A2ED11EEAAC8CF75D25BE465.roa
Signing time: Mon 25 Dec 2023 06:19:04 +0000
ROA not before: Mon 25 Dec 2023 06:19:01 +0000
ROA not after: Wed 02 Oct 2024 06:19:01 +0000
asID: 393294
IP address blocks: 45.199.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22810 (0x591a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 06:19:01 2023 GMT
Not After : Oct 2 06:19:01 2024 GMT
Subject: CN=65891ed8-28e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b3:d1:0a:73:f9:c7:27:a8:ac:9c:98:81:c9:
8e:30:f7:bd:64:df:73:dc:f2:e1:ed:5d:6d:9e:0c:
ec:41:ef:33:01:dd:6e:e0:83:18:b9:d2:f0:69:6c:
d4:64:8d:c4:2c:38:32:64:02:16:84:cc:3e:01:4b:
99:2d:55:02:14:71:0c:34:3c:34:f7:8e:3c:5d:6c:
c6:f5:37:f9:0c:9b:a6:f7:30:ce:57:8e:32:82:48:
d4:a1:58:1d:14:b6:48:17:dd:b6:91:a6:93:1b:30:
22:ab:73:8c:15:fc:d5:e1:89:34:8f:85:50:90:1f:
ca:d7:63:2b:24:ac:05:a7:a4:af:fe:85:e4:d6:db:
62:e8:dd:58:2f:30:f0:87:9d:bf:3f:ba:da:1c:26:
2a:df:13:82:9e:39:87:81:6b:87:c9:38:c5:91:1f:
ab:cc:1a:c6:5e:a1:b7:c4:0c:7a:40:ec:1f:a4:27:
ae:05:e7:a7:08:2d:d5:5b:46:49:a4:03:70:64:1b:
95:de:ff:0f:68:b1:f5:a7:80:01:21:3d:35:19:af:
18:91:4f:f4:be:c8:02:81:72:9f:fd:c6:0b:02:c2:
11:eb:65:80:a3:55:92:a2:10:5c:65:0c:14:00:42:
ec:0e:a8:bf:b4:53:1f:64:fb:8f:ea:b3:45:a9:52:
4b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A1:C4:AD:AB:59:6C:E4:A8:BF:CE:73:D7:7F:5B:FB:32:37:D4:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/809EF5E2A2ED11EEAAC8CF75D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.170.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:83:ea:24:1d:f5:ef:75:a5:41:93:e4:9b:2a:66:34:e7:5f:
51:7b:b8:74:96:7f:6d:ed:2b:80:1f:9c:7e:07:ba:f0:1c:08:
39:f2:5d:cd:64:8e:2a:e6:e7:99:a8:be:6d:ef:e3:4f:9f:df:
28:6c:1e:02:3b:7f:ac:94:74:9f:f4:41:46:c4:b9:47:e4:f8:
fb:49:b9:92:7b:69:06:a8:7c:6e:10:34:73:02:cf:d0:33:6a:
93:1f:bf:d8:28:af:45:9d:86:52:06:c4:e2:ec:17:f0:af:c1:
62:2e:25:68:da:1a:c9:63:76:9e:d5:2a:54:0c:92:e9:eb:23:
12:d7:8a:83:e0:ef:94:1f:bf:9e:04:a2:0e:06:93:e1:2e:f1:
fb:87:e9:d2:ce:f7:e7:a8:d2:1e:70:1a:1e:7a:4a:fa:c2:76:
a2:cb:f3:5f:62:e0:e8:23:c1:81:f2:c0:99:b0:2a:14:09:3f:
a5:a1:71:7e:79:c4:55:0a:ff:fa:2f:9a:1f:a2:9b:34:42:fc:
03:6c:dc:66:7b:56:81:cb:3b:7d:5a:89:1e:4d:bf:7b:6e:38:
05:8a:8e:a4:0a:6c:00:7b:3c:e1:ba:69:cc:9a:fd:eb:4e:ec:
fd:5e:00:6a:92:87:8c:05:77:f7:0a:e3:36:fc:f3:48:ba:2f:
aa:a8:f4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:12 2024 by rpki-client on console-fra.rpki-client.org