Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABD7FCF808F711EE8539E62D4AD9E6FC.roa
File: ABD7FCF808F711EE8539E62D4AD9E6FC.roa (raw, json)
Hash identifier: ZAwK70uondYmUG155YGVGgIUuKch0WaUJ83tg9AS1Ys=
Subject key identifier: 6E:2C:3B:2E:8A:E9:42:18:77:64:86:33:31:3E:DB:85:EE:75:4D:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B0B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABD7FCF808F711EE8539E62D4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:03:53 +0000
ROA not before: Mon 12 Jun 2023 08:03:49 +0000
ROA not after: Sat 25 May 2024 08:03:49 +0000
asID: 131178
IP address blocks: 45.201.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11019 (0x2b0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:03:49 2023 GMT
Not After : May 25 08:03:49 2024 GMT
Subject: CN=6486d169-6f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:53:2d:5a:57:90:2f:c7:84:e0:19:c2:a5:49:
d1:26:3e:71:e0:33:5b:d5:1b:97:54:b4:5a:84:03:
5b:47:de:1c:15:33:72:d2:29:2e:a9:c0:b5:55:d8:
1a:f2:82:3c:f6:f6:0d:f2:52:93:91:21:91:09:c3:
91:60:e2:50:4d:7f:2d:7b:bd:21:35:4e:67:ea:48:
d1:45:5c:46:c8:d4:30:77:16:eb:0b:95:c2:b0:b5:
3f:f6:93:5c:0e:27:dd:34:c6:67:e0:c3:e7:04:33:
6e:07:fd:14:11:d6:f2:9e:ff:00:bf:7c:d3:07:6f:
40:ab:ae:86:59:47:a6:a7:30:45:04:69:f9:23:db:
25:95:4d:51:52:4d:89:c5:1d:ca:21:ea:69:b7:4c:
3b:02:82:5a:dd:3a:57:78:44:5f:7e:9d:0d:60:01:
e0:df:e9:72:ef:ad:80:7d:b9:fe:d9:09:5d:ee:32:
fb:d7:56:87:ad:38:0e:0b:49:50:92:c9:4a:02:92:
42:35:14:dd:de:05:00:ef:fd:cd:2a:57:14:2f:ea:
5d:82:1f:f0:aa:2c:9d:e2:11:2f:be:58:38:dc:e2:
8c:af:cf:d8:80:8b:7f:e0:c7:70:d0:50:06:97:65:
0a:3b:23:16:fc:05:13:5a:0b:54:27:d1:e2:86:fb:
8d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2C:3B:2E:8A:E9:42:18:77:64:86:33:31:3E:DB:85:EE:75:4D:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABD7FCF808F711EE8539E62D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.172.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:eb:84:5a:7c:e5:93:c8:7b:b7:d2:44:41:b4:aa:f9:12:b5:
95:60:50:24:25:3d:95:8e:0c:c4:0a:12:2e:6b:97:62:ca:9e:
52:a0:e1:4d:94:7d:df:3b:f5:32:48:93:81:cf:da:e8:85:f6:
c2:f0:05:e1:08:14:cd:e7:d4:fd:90:5c:aa:2e:b2:8e:80:0e:
2f:d9:10:60:c3:5e:75:9e:6d:b0:0b:b8:24:ef:82:02:13:0b:
ff:c5:9b:fd:a3:53:25:81:4d:86:d7:9e:ab:bc:0a:0c:8c:c4:
6b:37:28:0d:54:58:99:71:5d:cc:4a:43:b8:6c:0f:52:80:ed:
ef:99:cb:7d:95:c1:2e:8b:f6:0e:62:32:e5:76:5c:16:38:6b:
92:40:cf:b4:75:6a:30:9b:5d:5c:51:53:38:b4:95:01:c0:73:
ec:7d:c8:2d:21:28:95:a1:59:2f:7d:ba:71:d1:05:5e:cf:57:
bb:84:76:2a:b8:a1:6e:59:91:e1:0e:64:0d:00:70:cd:2f:8b:
fe:eb:75:1a:cb:be:f1:a2:62:68:39:91:85:73:20:84:b4:12:
dd:21:d9:5a:57:e5:e0:30:8f:ad:85:66:ed:30:ec:45:cb:e7:
22:fb:57:03:b6:e9:e7:79:c2:d8:ab:5e:14:1b:fd:00:66:2d:
96:eb:d3:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:41:23 2024 by rpki-client on console-ams.rpki-client.org