Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF23C79008FA11EEBD58B7364AD9E6FC.roa
File: AF23C79008FA11EEBD58B7364AD9E6FC.roa (raw, json)
Hash identifier: Ud8POZzDgsCP1SEqkFSAJuOuN8hnaO+zti6gDS53CY0=
Subject key identifier: E0:3F:AB:90:AD:3E:9A:63:D4:2E:C8:79:79:C6:47:BA:19:9A:02:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF23C79008FA11EEBD58B7364AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:25:27 +0000
ROA not before: Mon 12 Jun 2023 08:25:23 +0000
ROA not after: Sat 25 May 2024 08:25:23 +0000
asID: 131178
IP address blocks: 45.201.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11069 (0x2b3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:25:23 2023 GMT
Not After : May 25 08:25:23 2024 GMT
Subject: CN=6486d677-da19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6f:e0:79:31:5a:3e:16:18:e3:ff:86:71:12:
39:35:31:65:bb:35:a5:9e:7c:c8:e7:0f:ff:a0:8f:
a2:54:9a:11:45:8d:4e:01:9c:75:a4:72:ac:bb:da:
ed:a5:29:38:cf:70:83:fc:48:f2:40:27:6c:74:df:
ad:16:ce:61:af:1f:c4:79:10:0b:04:34:39:eb:ce:
f1:f7:b6:27:72:90:31:f9:b7:8e:97:94:fc:cc:03:
4f:33:8a:6f:9f:b7:e7:ee:af:3f:3c:62:0f:94:aa:
77:fb:f6:b4:bb:27:28:88:84:41:4a:ba:1a:d1:ca:
02:ec:15:25:45:e5:fd:09:e0:ea:7f:97:8f:b9:a5:
2f:dc:48:fa:72:76:0a:0a:8b:6f:2e:11:01:09:40:
e9:90:6a:0f:07:40:3c:60:43:d0:26:e1:29:94:21:
5e:2f:84:30:b0:1a:e2:a1:d5:e1:d6:f0:3a:02:80:
7d:83:bc:6a:5b:bf:e3:cd:cf:37:87:bf:59:df:c1:
d4:4f:4b:27:ea:48:37:31:96:f1:ca:c6:3a:0f:7e:
da:6a:4b:df:50:69:3e:e3:45:78:af:cc:d4:c1:f2:
6a:a2:15:3a:be:89:cf:25:98:38:2b:55:90:48:03:
f0:11:ef:0d:f9:eb:0c:6a:9c:11:33:35:62:8b:2f:
cf:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:3F:AB:90:AD:3E:9A:63:D4:2E:C8:79:79:C6:47:BA:19:9A:02:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF23C79008FA11EEBD58B7364AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.200.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ba:1f:a7:24:ea:22:64:ef:e1:a1:d8:f6:ca:d3:5e:3f:dd:
c7:f1:a2:14:b1:a7:8f:fb:f9:8e:ff:84:76:bd:f8:bb:a1:a7:
26:6b:a5:1c:d1:1e:b9:0b:75:9c:e7:d0:54:8a:5e:8c:a8:ec:
91:23:bb:02:bd:fc:1b:a5:d0:d6:5f:5a:23:ca:c0:c9:5c:74:
52:d0:aa:98:02:61:ab:e3:4d:46:94:ca:9b:09:68:23:0c:de:
e6:05:cc:c2:ca:e1:ed:db:a6:bc:26:bf:eb:c0:d6:5b:51:f5:
76:a7:7a:12:3c:13:d2:64:74:15:49:0b:02:a1:f7:c6:65:32:
eb:db:20:c7:a4:b8:1d:fe:34:5c:47:9c:94:42:19:b2:eb:da:
13:9e:e2:ff:2e:16:f7:49:2b:ed:c2:9a:a6:9d:76:41:39:66:
01:1f:9b:f1:37:3a:9b:fb:4b:b0:af:7d:2c:ab:ef:58:48:f7:
42:3b:9b:01:85:59:91:13:41:b4:0b:46:f7:77:fd:ed:29:e1:
b8:de:29:f7:7b:63:d3:ba:f6:ad:76:12:44:7a:cb:20:ab:2a:
07:5f:fa:6a:a5:c9:10:73:ce:86:b9:3a:c7:80:8d:df:9d:ed:
1d:43:ba:25:f1:8c:d7:dc:0e:af:d0:d2:f5:ef:20:97:91:0e:
1b:36:59:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:42:57 2024 by rpki-client on console-fra.rpki-client.org