Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88AFC7B4C16711EEA62D3CBD775412E6.roa
File: 88AFC7B4C16711EEA62D3CBD775412E6.roa (raw, json)
Hash identifier: pjG2nItrSR9MirIan8JeKSVDh/4LC/S2dWyAEI9Temk=
Subject key identifier: E4:35:4F:D8:98:DD:77:1A:63:10:87:24:A9:83:5E:38:56:95:5C:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C4F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88AFC7B4C16711EEA62D3CBD775412E6.roa
Signing time: Fri 02 Feb 2024 01:08:11 +0000
ROA not before: Fri 02 Feb 2024 01:08:08 +0000
ROA not after: Thu 08 Aug 2024 01:08:08 +0000
asID: 133199
IP address blocks: 45.207.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27727 (0x6c4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:08:08 2024 GMT
Not After : Aug 8 01:08:08 2024 GMT
Subject: CN=65bc407b-8797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c5:00:ca:34:f9:d7:87:dc:cb:44:39:f4:93:
fc:20:c9:48:6b:f5:9e:0c:7d:55:a7:70:84:3f:2e:
a5:20:31:d1:89:70:16:39:45:03:a6:10:49:70:45:
d0:bc:2a:97:7e:2b:48:47:05:85:1b:14:ac:ff:f6:
ad:3d:7c:8d:59:e1:c1:21:de:78:db:06:c8:fd:95:
b9:37:51:40:e6:ec:f8:fb:da:7b:c9:2a:18:ac:cd:
c2:eb:b1:06:e7:7b:55:66:b5:e6:fc:b0:94:67:da:
e5:9e:22:fb:68:fc:19:d0:64:8a:c5:2c:0f:d5:5c:
c9:4c:46:8b:44:e3:68:e1:45:60:19:07:40:f3:73:
45:16:76:96:0f:b5:bc:9a:fb:55:62:ad:25:44:01:
c0:8b:ee:40:31:89:81:3d:0b:34:6e:76:f3:0e:c6:
26:b0:d2:4f:e6:33:57:e9:bb:10:c9:b4:60:bd:95:
46:15:38:a2:f0:b8:01:a9:ea:e1:a4:84:ad:1f:79:
26:63:69:d6:27:0d:89:e0:d3:89:c6:86:fc:52:01:
1c:18:63:70:9f:2d:1b:0c:65:82:f6:78:af:be:74:
fb:44:37:db:5e:36:99:41:67:6b:45:10:16:e3:87:
b9:2d:0f:ef:2b:72:42:e7:25:37:8b:10:55:91:45:
ef:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:35:4F:D8:98:DD:77:1A:63:10:87:24:A9:83:5E:38:56:95:5C:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88AFC7B4C16711EEA62D3CBD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.37.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:16:6a:ae:13:54:bb:5d:84:ed:ad:f4:da:f8:97:4d:28:df:
c3:1d:89:67:3f:d4:78:4e:2e:12:8c:16:45:e4:34:07:84:12:
af:a6:af:20:02:81:f9:d2:93:09:af:3a:94:2c:49:d6:30:55:
ff:52:72:fa:c0:2f:27:a0:2f:90:a5:43:68:28:07:59:19:8f:
58:ae:4b:2b:0c:a1:a3:23:9b:4d:e6:0e:7d:2b:b5:d4:de:61:
54:32:fb:1e:d6:94:b4:fb:b7:51:02:bc:41:fd:37:1d:49:2a:
9a:d4:05:a0:ed:2d:0b:50:9d:7f:ae:3d:74:95:0e:95:24:62:
d7:d7:55:e7:45:e1:2a:4e:d7:1c:d0:45:23:a2:1a:b2:0e:69:
14:de:ac:2c:f5:1f:6c:56:8f:c4:0a:7e:50:f1:b7:eb:8e:ff:
bf:98:6c:10:71:62:51:30:a7:d7:c0:a7:11:2c:e5:4b:0b:41:
01:ed:6e:08:6f:fa:17:e2:8c:6b:70:13:61:02:8b:81:bd:d4:
1e:b4:d1:ac:82:39:c7:2e:44:66:dd:e8:22:c4:e0:68:55:6a:
7d:79:41:9b:b4:3c:00:a6:e1:53:de:36:89:59:08:19:95:e2:
6f:a9:cb:23:2a:1f:8d:50:98:1c:97:52:08:57:02:fd:18:2b:
86:52:d1:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:12 2024 by rpki-client on console-fra.rpki-client.org