Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/868F736AF90F11EDB794177F4AD9E6FC.roa
File: 868F736AF90F11EDB794177F4AD9E6FC.roa (raw, json)
Hash identifier: chyv9aj9KUiWUv6PM8hIPbZSgv/P3L3aVxiTsJBfJpk=
Subject key identifier: FC:25:F9:81:6D:57:A4:56:31:A8:83:52:6F:1E:82:CD:97:81:4B:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2664
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/868F736AF90F11EDB794177F4AD9E6FC.roa
Signing time: Tue 23 May 2023 02:14:20 +0000
ROA not before: Tue 23 May 2023 02:14:16 +0000
ROA not after: Tue 25 Jun 2024 02:14:16 +0000
asID: 135607
IP address blocks: 45.202.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9828 (0x2664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 02:14:16 2023 GMT
Not After : Jun 25 02:14:16 2024 GMT
Subject: CN=646c217b-0d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2f:07:44:64:8d:5a:85:6d:7b:91:96:93:c3:
8c:87:86:db:0c:25:9d:49:08:d8:c0:5c:28:fe:29:
bc:30:13:66:7f:6c:d2:8e:09:59:90:a3:ed:dc:32:
49:7c:ed:62:c2:1f:3d:7b:68:18:0b:d9:3a:21:05:
a0:be:90:77:cd:8f:e5:76:5e:18:52:16:ab:3b:a9:
27:cc:b9:27:d3:1c:fe:52:82:fa:06:e1:51:ad:29:
b0:bc:b8:ae:8c:e6:1f:f4:3a:0a:79:e0:4e:5a:e5:
9c:48:7f:a2:a3:4a:eb:31:47:5a:ca:b0:6a:9e:04:
87:27:f3:5a:02:83:ca:7f:a0:05:4e:c8:b3:eb:53:
7b:e8:f2:53:7d:0c:d9:05:37:6a:34:b4:f9:08:0f:
42:f9:3b:d5:d7:49:3c:c6:db:b0:e2:af:34:ae:b4:
d0:1b:17:bb:e6:73:06:e2:7b:ba:6d:88:66:69:24:
f0:42:8e:d1:19:c2:e4:f0:a8:5a:36:10:7e:76:98:
ea:ab:6a:24:26:17:55:17:ea:17:7d:d0:69:ea:3b:
d3:ef:e9:06:be:3c:1a:f4:f1:98:96:7e:47:31:5f:
47:3b:fa:a8:78:5d:c6:24:16:5e:29:9e:b2:16:72:
19:96:3d:8c:e3:a7:ff:0e:8d:48:20:44:1f:ce:b3:
c3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:25:F9:81:6D:57:A4:56:31:A8:83:52:6F:1E:82:CD:97:81:4B:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/868F736AF90F11EDB794177F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.19.0/24
Signature Algorithm: sha256WithRSAEncryption
36:87:f5:66:61:fb:d9:d9:c5:92:0f:64:ed:c0:f1:82:30:cc:
77:5f:5e:88:46:46:a1:81:b8:c4:b2:01:1f:1d:00:65:69:44:
bb:4f:93:02:78:0a:ee:da:17:02:8f:7d:6b:29:b1:9b:03:6f:
84:66:2b:4d:d2:7d:78:88:b2:92:b9:ba:24:14:ed:56:bd:f8:
37:12:25:09:8b:3c:3b:33:56:7d:43:c1:71:28:d0:b8:b1:d3:
32:7d:55:19:d3:9b:75:64:b4:58:16:47:c8:37:f6:a2:47:3b:
84:db:cb:2a:71:25:f4:e6:f8:d1:9d:2d:37:e1:2d:a7:a1:82:
08:95:49:3b:4d:ef:d7:a2:bc:48:2a:77:53:04:cf:86:00:57:
fe:0a:a1:e6:f3:75:f8:bc:5b:69:64:f0:18:02:52:e8:42:0a:
35:50:d8:d1:4e:53:47:a9:ed:fc:49:26:ba:5e:26:b3:7d:46:
08:28:30:05:86:27:18:0a:63:61:b5:f1:d5:50:b4:c2:1b:e1:
82:ec:22:51:d7:d7:31:d2:5a:21:01:83:9e:ca:89:68:18:df:
68:97:e7:14:87:3e:63:bf:29:55:52:0a:9b:21:92:2e:70:80:
7a:14:9b:20:4d:31:7c:17:2a:f9:b5:d1:67:c9:5d:69:7a:49:
92:a4:85:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:12 2024 by rpki-client on console-fra.rpki-client.org