Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B5C563DC08EC11EE9429FE0D4AD9E6FC.roa
File: B5C563DC08EC11EE9429FE0D4AD9E6FC.roa (raw, json)
Hash identifier: zcc+sDDvFJbFJtos4FvKw2cP8iYyB7DynBkOHs9YHu4=
Subject key identifier: 4A:91:0C:7B:99:0C:8F:7E:25:57:FF:F2:09:08:E6:9E:D3:E3:FA:9B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2A9C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B5C563DC08EC11EE9429FE0D4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 06:45:25 +0000
ROA not before: Mon 12 Jun 2023 06:45:21 +0000
ROA not after: Sat 25 May 2024 06:45:21 +0000
asID: 131178
IP address blocks: 45.201.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10908 (0x2a9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 06:45:21 2023 GMT
Not After : May 25 06:45:21 2024 GMT
Subject: CN=6486bf05-5fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:44:59:eb:55:0d:d3:28:21:8d:bb:2c:72:c0:
37:fc:3b:4d:4b:2a:55:68:90:4f:a7:bd:dd:bc:60:
80:fe:08:17:d5:7e:b7:b2:51:68:c2:d4:a7:21:c9:
ce:82:17:69:e8:77:a2:17:ef:5e:ab:d5:75:6f:c5:
e9:30:5f:8a:2a:10:29:5c:1b:59:85:ea:84:41:41:
b5:fd:0f:e2:b9:a8:fa:39:2a:9a:3b:ed:e9:9c:82:
e2:df:e6:6d:13:69:01:c5:e7:d9:0d:9c:51:49:ba:
e0:fa:9d:99:96:57:cf:dc:48:6c:8c:1c:87:c5:b2:
b6:70:9e:0c:fb:1a:7d:74:81:dc:0e:ab:dd:d5:ea:
cc:2b:35:1e:8f:e2:34:e6:bd:d5:f8:9a:25:86:40:
34:63:ca:39:e0:63:05:ef:69:89:01:2d:c7:de:05:
fd:3a:c6:78:8f:7b:5a:24:b4:1e:a7:22:22:8a:52:
e4:b3:39:21:be:b6:a8:8b:8a:1e:69:72:b2:4f:df:
02:87:fe:a1:8c:17:32:22:8c:f9:88:cc:03:e8:94:
15:5e:27:90:c4:60:1d:0f:54:24:18:e1:d9:d0:1b:
68:3d:73:6b:6d:e4:3a:85:a5:5b:77:d9:72:5f:df:
8d:9c:9c:3a:4a:4b:0c:a7:98:ed:b9:e3:ce:23:39:
07:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:91:0C:7B:99:0C:8F:7E:25:57:FF:F2:09:08:E6:9E:D3:E3:FA:9B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B5C563DC08EC11EE9429FE0D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.160.0/20
Signature Algorithm: sha256WithRSAEncryption
01:a9:12:cb:6c:5a:43:6e:27:71:9c:9d:3d:6b:39:85:b8:1f:
73:fe:c1:63:1b:c0:98:c5:62:36:6a:69:36:47:9f:d1:98:01:
e6:87:e6:7b:ce:2b:1c:50:d8:47:15:8f:8f:d4:f1:6b:8a:52:
f0:cc:f0:91:e9:86:e1:e4:47:c6:ce:1d:cc:82:88:5e:a3:42:
f8:99:a0:9e:5f:f0:c6:ba:2b:44:69:60:3a:74:04:35:a3:51:
81:32:1f:a2:c6:0d:f5:68:56:09:5d:5e:91:ac:6d:4d:5e:c7:
40:88:cf:14:3e:63:60:26:63:7a:cc:46:25:7e:85:71:42:f2:
73:cd:31:9d:40:9a:b8:e2:b5:69:80:88:63:46:79:30:7b:0c:
53:15:95:67:d2:fd:34:7e:4c:ee:22:eb:0b:9c:bb:57:15:c2:
fe:a7:13:f3:bd:00:de:71:45:42:8f:26:3c:ad:27:38:52:a1:
bb:47:80:c1:ec:37:42:91:35:70:59:d6:8f:d3:b5:2f:9f:bf:
ca:b7:c6:17:6e:a8:eb:d1:fc:7b:39:a5:87:87:7f:a8:ed:a1:
0b:21:36:53:46:3b:df:44:35:3e:11:5f:37:d4:d6:72:9c:c1:
55:ee:80:c3:23:4d:c6:81:c8:d0:41:5f:3c:39:31:d7:d6:c9:
cf:26:f0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:20 2024 by rpki-client on console-fra.rpki-client.org