Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B02EF8823DF511EEB2052A5A4AD9E6FC.roa
File: B02EF8823DF511EEB2052A5A4AD9E6FC.roa (raw, json)
Hash identifier: xQjSXEuBhuxQmEr9bR8ttlNBRL3+ENmbJmpb0DETtoo=
Subject key identifier: 4A:C0:A8:A7:0A:F4:40:F7:BF:22:5D:E9:95:E5:45:14:43:4C:C3:4A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3677
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B02EF8823DF511EEB2052A5A4AD9E6FC.roa
Signing time: Fri 18 Aug 2023 18:33:13 +0000
ROA not before: Fri 18 Aug 2023 18:33:09 +0000
ROA not after: Sun 18 Aug 2024 18:33:09 +0000
asID: 272111
IP address blocks: 45.207.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13943 (0x3677)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 18 18:33:09 2023 GMT
Not After : Aug 18 18:33:09 2024 GMT
Subject: CN=64dfb969-2c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:13:57:59:85:a9:0a:1d:40:e7:79:cc:f0:49:
0f:8c:2e:21:28:a5:03:0c:6b:fd:77:cc:33:90:f5:
e5:74:7d:b5:fc:ce:a5:2a:9a:d0:40:ed:c9:da:88:
3e:c4:f7:d0:8e:7f:5f:4b:b7:70:02:4f:58:97:be:
a6:86:64:2c:94:64:89:07:ae:f1:26:f7:5c:15:90:
28:d3:09:43:0b:74:f3:e7:a2:96:76:ab:ba:cb:83:
d2:12:69:f5:cd:43:e3:3e:25:e0:25:1d:c7:3f:9c:
3f:9d:30:7f:3f:29:4a:0d:a1:89:da:6f:be:e3:6e:
8e:79:b5:0f:85:a4:4d:6a:86:59:db:f8:a2:98:d2:
41:27:9f:1a:28:c0:f9:ba:ba:29:09:e4:cf:8d:cd:
bc:c8:d8:0e:58:f5:3c:f4:1b:7e:68:b6:42:f3:e6:
a9:c7:c4:e8:ef:45:5f:73:0b:39:83:5e:9f:2a:c5:
cc:50:4e:e2:e2:58:98:4f:7a:d4:92:58:77:45:45:
55:9f:99:45:78:80:0d:46:ac:1d:dd:2a:58:29:c6:
99:f3:36:0f:d5:a2:4c:2f:3d:f8:7a:23:48:77:d4:
d8:2b:b4:d9:8d:1a:85:1b:d3:ab:3c:87:70:5e:90:
a0:2e:19:6e:90:f1:52:ff:8b:99:cb:f3:d8:01:a6:
36:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C0:A8:A7:0A:F4:40:F7:BF:22:5D:E9:95:E5:45:14:43:4C:C3:4A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B02EF8823DF511EEB2052A5A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.21.0/24
Signature Algorithm: sha256WithRSAEncryption
65:55:35:a8:08:44:99:a2:00:7a:3d:0e:09:b5:7a:eb:1a:31:
20:eb:0b:22:db:25:f9:97:c5:b8:79:2f:82:ac:0c:9e:96:b6:
ae:0e:48:d5:86:3b:c6:b3:a2:fd:c8:73:19:7b:d5:2e:71:d7:
e2:d2:9f:17:95:d5:a4:36:5b:a8:7b:76:6e:75:f2:b4:d8:fe:
0e:31:50:c2:92:12:c7:22:fe:78:b2:5a:78:90:e8:35:24:e3:
ed:af:33:82:ac:0f:92:47:36:ac:c3:bd:2a:ea:7f:56:67:44:
96:40:02:82:f5:6c:a5:7e:4f:2c:4e:89:70:b7:af:c0:02:23:
b1:b7:3c:b6:47:37:b0:d1:c6:95:20:0b:1b:8c:b2:2a:72:ab:
a7:92:9a:56:4b:4c:87:25:c8:09:b2:e5:09:29:73:1e:7a:f8:
84:e1:de:d9:01:74:15:8d:65:1e:dd:72:0b:28:7c:6d:42:54:
35:c8:10:07:36:fa:57:d5:5f:d0:a3:ad:fc:73:6e:f2:70:e0:
79:36:1c:e8:05:3c:ce:6d:58:94:93:8c:93:e4:c4:1c:09:4d:
46:c5:3a:79:dc:90:b9:75:4c:b1:c7:a0:33:57:3f:43:39:b5:
74:10:45:e8:8e:57:c6:1f:ba:17:b9:c1:d2:dc:95:b2:8b:cc:
2a:47:1b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:57 2024 by rpki-client on console-ams.rpki-client.org