Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/929F526A08FA11EE8D0E66364AD9E6FC.roa
File: 929F526A08FA11EE8D0E66364AD9E6FC.roa (raw, json)
Hash identifier: fK8lNzbb69XBDieP4YlPSOsUGmputMO8b9wR6YLYoyc=
Subject key identifier: 41:BA:F8:80:94:9C:41:37:98:77:9A:DD:01:AF:9B:B9:0D:8C:77:1F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B3B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/929F526A08FA11EE8D0E66364AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:24:39 +0000
ROA not before: Mon 12 Jun 2023 08:24:35 +0000
ROA not after: Sat 25 May 2024 08:24:35 +0000
asID: 131178
IP address blocks: 45.201.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11067 (0x2b3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:24:35 2023 GMT
Not After : May 25 08:24:35 2024 GMT
Subject: CN=6486d647-7263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a9:73:6d:50:4a:ac:16:64:d9:78:03:af:c8:
f1:58:6c:de:b1:06:8b:fb:4b:c9:94:b7:3d:5e:a9:
98:ef:8c:0a:bf:cb:b5:ad:0a:64:88:2e:aa:de:2b:
cc:00:49:28:9c:cb:0c:93:ce:db:37:3f:18:79:85:
e7:b3:90:2b:88:f2:ab:74:e2:fb:58:2b:99:a6:3f:
48:8e:76:aa:31:54:c0:db:5f:1f:3f:22:38:7e:c8:
5a:98:6b:45:ac:30:4a:31:c1:ee:32:74:dc:18:cd:
2b:6e:4d:f9:a9:74:77:36:7c:0a:98:47:99:a2:25:
36:3f:2f:34:ca:1d:12:0b:f8:28:2f:27:d6:5e:16:
a4:2f:5c:12:2b:bd:fe:ec:55:95:9d:ed:df:c9:03:
c2:4e:93:5c:d0:48:f5:fa:f2:48:d7:ed:ad:d0:4a:
89:3e:b0:ce:7d:02:18:36:19:fc:78:a0:1f:37:66:
21:3f:ab:2f:81:bb:32:e5:15:c7:5f:3b:f5:82:10:
e0:56:4e:66:1e:47:4d:a4:b9:19:f3:a8:7b:e9:09:
04:40:b0:77:41:da:09:ba:2f:26:ff:92:29:d2:5c:
b5:ac:2a:8a:98:25:13:a6:7c:06:5f:1a:0f:f0:d8:
0d:85:fa:67:d5:35:82:92:e4:d5:4e:5f:47:32:84:
bc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BA:F8:80:94:9C:41:37:98:77:9A:DD:01:AF:9B:B9:0D:8C:77:1F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/929F526A08FA11EE8D0E66364AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.199.0/24
Signature Algorithm: sha256WithRSAEncryption
73:fd:35:fe:cc:08:f4:ec:ef:90:57:7b:46:26:ff:4e:55:ca:
0a:57:8b:56:e6:4d:c6:50:c8:40:ab:5a:8f:c3:9e:da:29:8a:
32:68:b2:98:bc:fc:5a:ba:08:07:a4:a9:45:de:32:a4:cc:cd:
ac:48:ed:bf:9f:b5:7b:6f:a1:18:f0:38:8b:96:85:7e:8f:ba:
88:e5:2c:7a:f4:d2:d4:53:ec:04:36:f7:44:cf:42:ba:29:e6:
ce:f4:e1:60:1a:d1:8b:47:c0:b6:b7:6c:23:f7:77:5b:81:03:
fc:8d:37:de:4d:af:a7:28:78:59:6a:4a:a6:f4:ac:63:b0:4c:
7f:ce:de:b2:15:8b:50:5e:04:f0:8c:b5:c9:cc:11:c5:0f:99:
d9:80:eb:16:55:62:ef:b1:ec:6e:31:9f:c7:70:f4:35:ae:d7:
30:1d:23:ac:e8:a5:e1:22:36:09:42:51:28:20:b9:55:a8:14:
a4:f2:8d:4f:a8:eb:06:31:a4:01:d1:2f:2e:f6:48:9c:00:0c:
6f:42:8a:15:87:93:ed:00:15:11:3a:dc:11:cc:84:bb:04:a0:
15:54:b2:01:61:f4:2a:c9:16:25:9a:62:d4:52:0e:d3:e3:8d:
d4:55:79:86:15:ce:0a:05:1f:ea:79:47:80:64:5d:77:2a:5f:
f4:bd:30:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:15 2024 by rpki-client on console-fra.rpki-client.org