Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/836167244BEF11EE894F06594AD9E6FC.roa
File: 836167244BEF11EE894F06594AD9E6FC.roa (raw, json)
Hash identifier: gY71/X8HUUc4ICOx0Cd+2OhddylCx7HZ/C89bMziOiQ=
Subject key identifier: 79:2E:A8:5A:50:4E:08:5B:3D:F0:7F:23:72:5E:F0:B6:E1:EC:9D:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 37F7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/836167244BEF11EE894F06594AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:24:17 +0000
ROA not before: Tue 05 Sep 2023 13:24:14 +0000
ROA not after: Fri 24 May 2024 13:24:14 +0000
asID: 131178
IP address blocks: 45.201.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14327 (0x37f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:24:14 2023 GMT
Not After : May 24 13:24:14 2024 GMT
Subject: CN=64f72c01-9808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fd:ae:35:b4:94:e9:70:59:b7:4e:eb:a0:8e:
71:a7:24:d1:bc:d7:fb:c0:02:8e:67:72:2d:68:81:
49:fd:4e:49:6a:52:ab:92:31:9d:c9:ca:41:c7:0e:
30:7a:96:ac:16:16:88:01:07:ba:87:63:d5:21:c8:
2e:22:4b:6a:b9:40:26:a2:9f:a4:07:ce:28:12:89:
24:2f:03:ce:b9:8c:53:6a:af:99:68:21:99:4e:20:
1e:91:5e:89:5e:4b:db:67:75:8d:53:70:6a:1b:12:
9f:6d:10:ad:83:0a:76:4e:48:74:7b:d3:bc:c9:a5:
52:97:15:8e:d4:2c:1e:4c:c4:ed:dc:48:f2:c6:3c:
e8:3c:73:c5:d7:df:0e:2d:a6:e4:00:a3:81:e8:e3:
c4:ca:ff:f4:31:81:e1:42:89:b7:cf:8d:b3:fe:e9:
ce:c3:bd:f2:ec:72:df:c0:d7:7a:47:40:c7:fc:1b:
6b:4d:26:b4:d8:b4:db:9b:2f:d7:32:31:34:d0:00:
3c:1b:a6:4a:bc:d6:bc:74:eb:01:fe:ab:d5:98:7e:
23:24:9d:37:60:1e:e9:ad:e4:55:85:e4:ca:09:e6:
db:9d:cd:9e:28:c1:f1:32:0b:b1:6c:3c:6b:6f:2a:
c5:33:db:b7:e3:23:92:1e:a2:39:7c:4c:a5:4e:8c:
73:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2E:A8:5A:50:4E:08:5B:3D:F0:7F:23:72:5E:F0:B6:E1:EC:9D:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/836167244BEF11EE894F06594AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.168.0/24
Signature Algorithm: sha256WithRSAEncryption
48:eb:fc:4b:02:4e:1a:ae:9e:b2:fc:3d:39:3e:60:66:9c:53:
74:40:b2:e9:c3:2f:dc:0c:fe:0b:cc:e9:54:a8:30:73:4a:80:
06:e4:b2:ba:b3:0a:35:7b:52:32:d3:76:fd:fc:d9:e8:ce:5b:
ac:23:ef:81:7e:8a:6f:e4:02:91:de:31:86:97:06:67:18:43:
b6:54:37:b2:4f:2f:71:a4:bd:ac:62:7c:c0:97:e5:b2:d0:3d:
ad:53:a4:3f:07:92:39:08:4e:8b:45:ae:44:86:0c:68:79:6a:
ee:ec:b0:86:27:e4:89:0f:21:66:08:5d:b4:a5:e4:0b:a8:ea:
65:f1:5c:43:e8:c1:59:6f:eb:b3:01:95:b6:57:0e:e2:20:5a:
04:c1:fb:2c:46:c3:b0:a6:fa:04:41:69:0c:f7:c7:ec:a1:bf:
d1:41:a0:5f:e1:1c:16:60:4c:4b:7a:8f:b8:63:a9:f6:b2:6d:
b6:9b:91:79:1d:eb:bf:24:27:18:08:56:39:de:b6:13:55:2d:
48:af:13:41:fe:86:7b:fe:3a:8a:e5:97:5e:9f:27:c3:f1:7d:
8c:0a:91:4b:0a:64:40:29:6f:be:a6:b4:2c:1e:7a:9a:10:89:
5e:55:3e:46:a6:fe:4b:e7:08:12:36:79:a4:ff:db:4d:35:74:
76:a1:0c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:41:22 2024 by rpki-client on console-ams.rpki-client.org