Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85FBD10A6D5E11EEBEA842684AD9E6FC.roa
File: 85FBD10A6D5E11EEBEA842684AD9E6FC.roa (raw, json)
Hash identifier: Bl+CE2Mw2ic5LE9DUAbMfiuGZx3QgmNUkbQRFkllaC0=
Subject key identifier: 37:73:03:85:CB:1D:EB:22:69:09:67:B2:67:C7:DF:EE:9A:E1:A9:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3EEB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85FBD10A6D5E11EEBEA842684AD9E6FC.roa
Signing time: Wed 18 Oct 2023 02:32:04 +0000
ROA not before: Wed 18 Oct 2023 02:32:01 +0000
ROA not after: Wed 18 Sep 2024 02:32:01 +0000
asID: 132513
IP address blocks: 45.204.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16107 (0x3eeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 02:32:01 2023 GMT
Not After : Sep 18 02:32:01 2024 GMT
Subject: CN=652f43a4-1d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4a:10:07:ef:e5:a5:67:b3:9e:7a:50:a7:37:
17:f6:86:a9:19:08:d8:15:92:c3:45:23:1f:bf:f0:
d8:1d:5e:9c:40:84:4f:c0:d9:f9:6f:37:bd:d7:53:
99:d8:70:86:d1:7a:d3:50:61:1d:4c:e3:b4:d7:ac:
ea:59:65:23:eb:12:18:ee:59:8f:78:62:85:9b:1d:
2a:26:d9:90:78:07:41:ae:cc:5f:3b:6c:e2:fb:21:
d0:cc:ec:e9:08:ea:ef:fc:06:2d:64:a6:36:e2:89:
34:94:83:42:c5:fc:03:e8:3f:0c:71:31:26:91:e6:
7c:0a:2a:97:4c:7b:81:a4:c8:83:28:b8:56:62:2c:
da:2b:4b:db:77:dc:2c:18:10:98:a3:5c:d1:f8:de:
25:b8:28:72:92:31:df:47:62:41:ec:98:a6:df:a8:
68:0f:05:87:f5:61:b4:b0:77:d2:96:24:d1:dc:ec:
b4:92:d2:03:6d:2f:03:59:70:48:e1:bb:b8:47:ab:
21:4d:c6:3e:2f:f1:c3:a2:c2:14:61:cf:3e:70:3e:
f6:04:9b:01:9e:95:d0:5e:c8:75:44:26:6b:fc:9a:
3b:0d:34:59:ab:08:d6:c8:3c:4e:e5:7e:b3:d0:72:
f0:70:06:ed:ca:cc:e5:77:38:0e:aa:5e:b7:96:4c:
d6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:73:03:85:CB:1D:EB:22:69:09:67:B2:67:C7:DF:EE:9A:E1:A9:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85FBD10A6D5E11EEBEA842684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.67.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:05:d2:40:21:c8:8b:77:fd:53:82:bf:fd:52:da:c3:22:0a:
8b:b1:d1:4f:c7:6f:1f:e6:e3:98:96:f3:d2:6f:bc:2c:6e:3e:
ff:47:e6:0b:91:df:37:7c:ee:ad:94:4b:ad:3f:de:47:89:b1:
03:63:34:30:56:66:50:59:89:39:8b:0e:3e:73:fd:63:4d:2c:
d1:a1:b7:3c:d2:4c:ea:53:b7:65:02:9a:d0:bc:4e:f6:0e:27:
31:cb:ab:fc:a5:be:36:fc:4b:2f:39:12:93:e3:9f:ad:54:0c:
61:59:78:15:45:dc:eb:5a:af:bc:01:16:45:18:76:e6:09:54:
5c:e1:4c:35:a0:be:76:fd:03:e8:fa:12:a6:16:a4:c0:3c:74:
50:ca:f6:25:83:09:08:49:20:63:43:04:6e:2b:4e:ac:57:8b:
4e:bf:62:ab:29:39:66:1d:6c:72:56:d4:9b:b6:12:7f:f4:e6:
ea:3b:d6:2e:96:f5:64:63:89:fc:b5:dd:dc:bc:2d:e4:33:d9:
eb:e8:4b:78:fd:bc:c3:9e:49:6b:8d:2c:cb:09:d9:39:54:b3:
f1:d8:4f:7a:d7:23:1c:dd:e8:cb:4d:bd:d2:3e:57:17:c1:f9:
7c:45:14:1b:ac:10:24:2b:4b:c9:11:9e:21:0f:57:64:85:d0:
3b:e3:d7:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:12:03 2024 by rpki-client on console-fra.rpki-client.org