Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97542530473C11EEACBA23644AD9E6FC.roa
File: 97542530473C11EEACBA23644AD9E6FC.roa (raw, json)
Hash identifier: o1EI2xVO9wYCygEQbfvnYsfkjjFsicByVar8tkHg07s=
Subject key identifier: C8:C2:B3:80:9B:DC:D6:BD:FC:CE:E4:57:BE:76:C6:CC:24:7A:BC:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3781
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97542530473C11EEACBA23644AD9E6FC.roa
Signing time: Wed 30 Aug 2023 13:53:26 +0000
ROA not before: Wed 30 Aug 2023 13:53:22 +0000
ROA not after: Fri 24 May 2024 13:53:22 +0000
asID: 131178
IP address blocks: 45.201.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14209 (0x3781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 30 13:53:22 2023 GMT
Not After : May 24 13:53:22 2024 GMT
Subject: CN=64ef49d6-dc0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:1d:ff:bc:63:d5:ee:a0:0b:81:14:b6:36:
d3:9b:3e:3d:9a:2d:be:ca:2e:a1:62:c6:d4:8e:1e:
9b:d9:47:cb:da:e4:bd:dc:b7:20:a0:4e:ea:5d:3d:
a1:94:31:cc:75:82:4b:79:d3:87:af:6d:fe:36:50:
8b:02:99:cf:39:6a:9d:93:a7:f8:5e:15:df:85:8a:
fc:98:4b:ce:7e:61:49:4e:74:00:93:9b:9d:a9:67:
ca:88:ab:7b:e0:b1:7e:59:1c:e4:a3:4b:a4:4b:12:
19:1d:8f:45:6a:84:c2:87:51:b9:29:04:27:df:40:
fe:7d:7c:cd:1b:5a:04:d2:56:34:f6:37:ed:72:f4:
bd:26:dd:81:17:c1:58:e3:5a:a4:c4:ef:fb:b9:43:
de:86:e1:c5:72:19:6e:d2:fd:c1:f0:c4:3a:98:c8:
4f:58:5b:ca:d3:08:10:8b:e1:2c:8f:91:8a:ae:6a:
20:ae:4a:9e:30:8b:4b:cc:0b:e2:49:99:22:39:53:
62:d7:2d:e0:1e:32:c6:e6:3a:2e:b2:51:8a:e4:44:
17:b9:38:3e:9c:0d:ea:24:96:aa:e3:07:47:ec:5c:
bd:62:f3:78:80:57:2b:32:10:e1:0f:b4:a9:10:c7:
42:ff:ff:47:83:31:c8:ed:5f:2c:e9:98:40:77:6a:
13:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C2:B3:80:9B:DC:D6:BD:FC:CE:E4:57:BE:76:C6:CC:24:7A:BC:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97542530473C11EEACBA23644AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.131.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:ac:eb:8b:d5:37:26:7d:fa:50:b5:10:27:2b:5e:96:af:66:
12:3f:76:7d:49:54:e5:30:d1:2f:4b:66:e1:2c:9f:a9:ad:4a:
5f:ed:bf:47:e0:ca:89:a3:a7:e9:a1:39:e7:17:35:dc:2f:b5:
ce:d2:fe:30:5b:60:24:e6:00:b1:ff:ba:cc:e3:cb:67:4b:00:
0c:5f:be:22:8d:bf:55:54:c6:ea:ec:c7:b1:02:6a:c8:41:95:
c9:01:ee:cc:99:77:6c:38:d4:d5:c3:97:e0:4a:14:85:a1:4a:
db:c0:f8:b6:bf:bb:44:71:1e:e8:f8:47:da:34:e3:c3:33:5a:
77:87:d4:e1:6c:62:ea:22:eb:fa:2f:98:0c:48:0b:e6:6b:67:
d5:1c:69:4d:92:83:df:b9:24:ba:9c:2b:3d:f9:72:3a:ad:1a:
1d:ea:f7:c9:26:2a:d8:74:bf:08:23:bc:cd:97:08:77:5e:b6:
8c:6d:f3:c3:5d:24:db:fa:0a:cc:c4:46:0a:22:eb:28:a8:54:
9d:64:a7:51:fc:60:6c:27:03:9a:a1:c9:bc:f7:8b:7b:ec:cb:
53:d8:c9:57:8b:ac:ef:10:2d:bc:67:50:28:91:be:a6:dc:81:
cc:0a:95:12:9e:4a:3e:67:8a:c3:ba:82:83:df:56:38:85:d9:
a5:37:67:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:22 2024 by rpki-client on console-ams.rpki-client.org