Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9263CCA7FEF11EEA119483C4AD9E6FC.roa
File: B9263CCA7FEF11EEA119483C4AD9E6FC.roa (raw, json)
Hash identifier: 5/lvRnFqYvfHP5PdvQANerMP2RXNYSQYnofc7VHWwAg=
Subject key identifier: CB:C0:25:A4:39:05:86:63:48:44:FD:40:5B:94:CE:32:31:89:89:AE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 466E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9263CCA7FEF11EEA119483C4AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:36:47 +0000
ROA not before: Fri 10 Nov 2023 17:36:44 +0000
ROA not after: Tue 04 Jun 2024 17:36:44 +0000
asID: 137577
IP address blocks: 45.195.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18030 (0x466e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:36:44 2023 GMT
Not After : Jun 4 17:36:44 2024 GMT
Subject: CN=654e6a2f-f933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c3:f9:01:cc:c8:1f:ff:aa:88:0c:45:08:3b:
04:0f:17:bd:63:b0:35:0c:74:2a:84:1c:8a:ab:92:
56:33:ae:b3:f8:d7:a2:d1:33:a9:e7:0d:70:32:d3:
40:52:fe:36:e5:ad:f6:74:4b:4f:ca:b7:6c:7c:f9:
78:31:39:3f:1a:7c:ae:48:77:a0:0e:63:f7:68:d6:
26:06:d3:7b:d3:6b:05:cd:82:ac:c7:39:05:b3:8f:
ad:88:b0:65:76:26:ce:0e:2d:bc:b8:41:c2:df:6c:
41:26:03:b5:74:b0:1f:2b:74:9a:95:14:c7:2f:0a:
f9:b7:dc:99:6a:87:05:65:1e:85:4f:9e:e0:00:06:
4c:c2:0f:6f:62:b0:14:9e:aa:ed:7e:ee:b5:5b:8a:
22:5d:f6:bd:6c:f0:c6:9c:36:bc:00:fc:89:9a:31:
8d:07:57:90:59:8e:5d:fc:9b:d1:b1:43:32:12:7f:
33:60:da:81:42:6d:b6:42:a9:a2:38:15:e2:25:4c:
d3:bf:ff:73:c2:12:0d:31:4a:b6:3f:81:bc:bf:e6:
f1:4a:6e:c3:10:16:c0:d0:a1:18:ed:e5:0b:dd:bc:
16:2f:21:ea:b2:60:d7:f2:be:ff:dd:02:b4:a3:9c:
20:f6:8a:cf:87:cf:2d:e1:c2:17:5c:73:74:ef:1c:
bb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C0:25:A4:39:05:86:63:48:44:FD:40:5B:94:CE:32:31:89:89:AE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9263CCA7FEF11EEA119483C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.49.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ff:52:f9:a9:c2:8e:7b:44:c1:55:87:6b:e0:c5:9f:67:69:
a9:e7:8d:22:a7:3d:cc:30:83:17:29:a6:7d:d1:71:6f:62:5f:
af:9c:57:4f:65:e2:7a:ca:84:4c:b6:20:18:ff:67:ba:eb:af:
3a:76:af:14:87:51:ce:f7:15:e1:16:68:f3:30:8f:3a:dd:1b:
7e:99:61:d7:48:a9:7a:b6:90:ab:60:c1:05:8c:e1:9d:41:88:
a1:bc:a4:ec:62:94:5e:68:0d:34:dd:c8:3c:e9:8a:cd:97:ba:
c5:c7:a7:ed:ff:9c:71:ce:e0:83:aa:93:c8:db:d5:99:fe:cf:
4c:0d:a3:db:8f:5d:ab:33:7c:f6:fc:6e:f2:b9:34:67:e4:a1:
6d:58:62:1f:46:0b:0d:a7:9b:11:4d:9c:6e:d3:10:cb:91:92:
70:77:00:9f:57:5f:ff:6a:2a:9c:0d:25:52:4e:57:cb:48:65:
9f:37:46:39:5f:fa:92:8d:62:0a:41:1f:23:17:66:be:f2:3d:
e3:0c:e9:79:4e:60:4a:98:39:11:7b:5e:00:90:7e:f5:ae:e1:
79:1b:22:37:bf:0b:25:9b:6d:9e:7a:2c:57:b4:d5:82:56:d9:
4f:42:f6:16:f1:bd:0b:83:15:65:15:02:cf:a1:d8:26:7f:9b:
d5:42:e8:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:10:11 2024 by rpki-client on console-ams.rpki-client.org