Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BEB7C76A155711EEB4BEE3384AD9E6FC.roa
File: BEB7C76A155711EEB4BEE3384AD9E6FC.roa (raw, json)
Hash identifier: F1sM2+kY+0hFMNZ4rD/q0xtry0kn+giFKQnzyFkCqeE=
Subject key identifier: 19:57:A6:FD:9A:F1:1D:27:5D:C2:CE:F9:D0:0F:F8:C4:96:81:55:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2D52
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BEB7C76A155711EEB4BEE3384AD9E6FC.roa
Signing time: Wed 28 Jun 2023 02:01:50 +0000
ROA not before: Wed 28 Jun 2023 02:01:47 +0000
ROA not after: Mon 01 Jul 2024 02:01:47 +0000
asID: 138905
IP address blocks: 45.201.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11602 (0x2d52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 02:01:47 2023 GMT
Not After : Jul 1 02:01:47 2024 GMT
Subject: CN=649b948e-e5ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b7:b9:c5:6b:c0:ea:df:45:6b:54:0c:bc:58:
d9:ce:8e:74:a4:02:d9:95:59:7a:f8:36:9e:5c:ac:
db:45:44:57:13:ca:d1:be:b3:0a:e1:5d:d3:c5:5a:
be:bd:c8:0e:7a:bb:18:7b:21:fc:10:92:f9:44:45:
9f:f1:75:7e:34:d1:8a:ef:f1:1f:41:6b:0a:c3:38:
90:3c:d5:a1:49:71:06:5c:0c:ff:c4:a3:51:ee:63:
58:bd:c9:ed:52:8a:a1:78:17:f2:48:b5:2e:e5:3c:
cd:91:18:95:4d:64:6f:88:e3:9b:42:84:65:0d:23:
f0:fa:bd:a4:63:08:44:cd:bb:d4:fb:9c:ef:c6:1e:
a7:29:c0:c8:51:e9:bb:55:f0:c1:c0:cd:57:5f:44:
5e:c7:92:b6:fd:01:cc:7c:2a:25:ef:35:9f:48:b4:
4c:7a:23:9b:a1:3a:0b:1a:43:6d:d7:f1:c6:6e:40:
61:cb:e1:0a:8d:56:4f:0b:f2:6f:21:d6:d9:39:0d:
49:39:2e:47:1c:c0:35:fe:cd:54:27:af:b1:73:d7:
34:d1:d7:be:fc:33:1f:af:91:fa:9a:b8:ae:14:05:
d2:00:d8:17:8a:c3:44:04:7b:f8:2f:3b:de:ae:98:
79:ff:af:86:70:87:ca:06:e6:0b:e8:4b:9a:67:fc:
d9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:57:A6:FD:9A:F1:1D:27:5D:C2:CE:F9:D0:0F:F8:C4:96:81:55:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BEB7C76A155711EEB4BEE3384AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.234.0/24
Signature Algorithm: sha256WithRSAEncryption
26:2d:ad:7e:fa:10:71:0d:63:aa:50:22:04:01:c4:f9:e5:28:
b7:94:57:da:47:7f:5b:70:ad:96:c3:d1:51:c6:60:e3:40:70:
97:fa:9f:13:1c:a1:ce:db:bd:45:b6:24:74:a6:ee:29:a9:73:
25:c0:40:e6:58:88:85:e6:46:33:b1:25:74:a1:2b:69:a6:4f:
d1:5a:b8:06:9f:0b:3c:ed:9e:52:b6:66:84:95:99:84:0a:54:
9c:28:b2:8f:a1:39:ea:2b:e9:58:dc:f1:af:7f:0c:9a:bf:eb:
53:9c:3f:7e:c0:b8:c1:52:75:da:0f:40:fe:03:89:cb:8b:34:
34:d8:78:4c:3b:cb:a8:99:a8:27:33:c2:51:40:d1:1e:ba:d4:
e6:34:99:09:2a:71:a4:bb:f4:a7:cc:ba:e5:2b:c5:b9:f8:69:
38:98:00:88:4a:86:09:f3:09:f4:84:7d:80:d7:40:80:13:07:
05:67:95:a3:8a:3a:9d:85:82:99:a6:8f:4f:83:d4:32:1e:c3:
fa:0f:fe:bd:d8:3d:b9:87:4c:af:3e:f7:24:a3:1f:84:df:22:
92:92:cf:48:36:b6:dc:5e:98:0d:0d:8f:9d:c6:dc:df:7a:76:
7b:27:41:7f:51:43:ca:b9:b8:19:46:6a:fb:eb:44:06:7d:b2:
9a:5f:e7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:16 2024 by rpki-client on console-fra.rpki-client.org