Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C10758808F911EEA7353D334AD9E6FC.roa
File: 8C10758808F911EEA7353D334AD9E6FC.roa (raw, json)
Hash identifier: w59TaK4sgkQ3ax9IrVmpL2j1VxtROdbyFaOHocu7Lb0=
Subject key identifier: B7:F1:EB:F9:FB:E5:3E:32:43:88:67:16:AA:C5:DF:FE:D0:BD:24:1A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B29
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C10758808F911EEA7353D334AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:17:19 +0000
ROA not before: Mon 12 Jun 2023 08:17:15 +0000
ROA not after: Sat 25 May 2024 08:17:15 +0000
asID: 131178
IP address blocks: 45.201.188.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11049 (0x2b29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:17:15 2023 GMT
Not After : May 25 08:17:15 2024 GMT
Subject: CN=6486d48e-e72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cb:ac:87:3d:6c:ce:66:3b:11:4c:ba:ba:ed:
f6:ce:3a:7e:73:41:58:54:5a:b7:38:73:cc:9f:58:
4b:f3:47:6e:0e:d5:3d:92:0b:e5:3d:0f:80:aa:23:
1e:b2:68:2c:c0:ce:81:7d:17:f8:bb:7c:dd:e8:49:
ba:0d:ac:fd:0d:ff:4c:fa:30:c8:c7:b2:3b:56:07:
af:02:a3:6f:8d:dd:77:b9:4e:57:48:fd:3b:10:94:
ec:dc:79:1f:35:cd:bf:71:0a:c8:bc:80:13:6c:34:
03:d7:c5:16:f0:d1:68:5d:4f:7f:fa:19:d7:77:f8:
5d:d9:96:cb:69:fb:33:2f:ba:d9:20:73:52:a9:b4:
6a:35:a1:4a:61:58:e5:45:3a:97:f9:0b:c4:6c:ce:
c8:ab:dc:eb:0a:5a:ed:da:d4:c6:b7:89:9c:37:d1:
74:de:95:19:45:e1:f1:5b:5e:76:57:07:a6:ef:cd:
ec:c7:0a:ff:e2:06:35:91:24:38:bc:d1:61:7e:22:
53:1d:b6:75:52:32:a3:66:ba:7f:1f:7b:d1:53:49:
5d:bb:81:51:63:ca:75:8f:7a:87:2a:eb:e0:3c:5c:
40:69:4e:8a:98:33:22:82:57:f0:57:28:99:8e:94:
b2:5b:f3:57:49:f3:92:00:6e:de:10:72:5d:bb:a6:
cb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F1:EB:F9:FB:E5:3E:32:43:88:67:16:AA:C5:DF:FE:D0:BD:24:1A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C10758808F911EEA7353D334AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.188.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:de:65:21:8f:6e:75:96:d5:cd:f9:44:62:a8:86:a5:4d:31:
da:16:16:97:9b:32:ea:ca:af:b8:c2:4a:de:a5:92:dc:e5:b8:
7d:bd:7d:ea:d1:0b:66:86:1a:03:ab:e9:44:47:8c:b0:01:64:
10:ff:0d:61:4f:65:ae:a0:55:68:c6:1a:fc:29:b5:c8:74:ac:
ea:6c:ba:ff:17:d5:05:9f:65:f6:9e:fb:33:75:a3:59:4e:35:
37:08:2a:23:8a:e8:47:78:fd:aa:04:c2:e4:a5:29:6f:2e:9e:
52:9e:fe:4a:f8:2b:bf:05:73:15:36:20:c2:e8:b5:b9:37:08:
f7:b3:9c:18:82:31:8d:01:7b:26:a2:1a:11:48:8e:e7:9c:91:
e7:ed:aa:42:92:9c:ae:0a:f0:e5:d3:1b:b2:e0:40:0f:95:e5:
86:cb:e3:66:db:53:f8:f7:12:53:f1:a5:61:03:05:53:0c:f6:
b7:c5:7c:d5:53:3c:02:18:78:25:44:a3:07:01:91:f8:d3:00:
3b:d5:57:71:19:dd:46:37:f3:0b:b6:b0:e3:e6:9c:d7:82:42:
60:df:69:04:09:ab:47:44:a7:83:55:af:50:c5:65:4d:7c:1a:
37:37:99:74:dd:ca:a5:c3:d4:05:25:9b:35:c8:77:94:11:85:
2e:82:5c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:41:22 2024 by rpki-client on console-ams.rpki-client.org