Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C40CB1C64BEE11EE847B7C554AD9E6FC.roa
File: C40CB1C64BEE11EE847B7C554AD9E6FC.roa (raw, json)
Hash identifier: 1bN1f99/v29GLYj/lekU4HWh8noZTTFwp+1TiURYooQ=
Subject key identifier: AB:26:D8:69:30:FB:AF:6B:49:8C:74:80:C7:E9:8A:91:5A:E2:11:6D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 37E7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C40CB1C64BEE11EE847B7C554AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:18:56 +0000
ROA not before: Tue 05 Sep 2023 13:18:53 +0000
ROA not after: Fri 24 May 2024 13:18:53 +0000
asID: 131178
IP address blocks: 45.201.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14311 (0x37e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:18:53 2023 GMT
Not After : May 24 13:18:53 2024 GMT
Subject: CN=64f72ac0-e417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:82:f4:84:31:93:9f:de:c1:9f:e7:1b:d6:bd:
c5:57:7a:ae:ac:60:07:ec:c8:7a:53:f3:97:01:c7:
d5:e8:0e:12:3e:d1:e8:71:cf:8b:61:e0:97:a4:11:
78:65:f2:f0:dc:f6:ab:1c:c3:bf:12:0b:c9:0e:31:
8d:41:79:1d:1c:71:6b:6d:2c:1b:8f:fe:63:97:f1:
1e:0c:ca:46:c6:35:b3:48:d5:b5:a5:f4:b1:7f:54:
1a:93:de:47:d1:af:96:5d:63:3b:77:75:7f:13:6b:
fe:86:8f:94:48:76:2f:15:0e:cf:a2:ca:dc:2b:59:
9b:c4:b6:db:2d:dc:2c:a2:30:ba:79:7c:eb:46:46:
92:c4:b4:43:90:d1:cd:51:2b:ec:c8:ad:74:8d:e2:
8e:c4:75:65:a9:f1:4f:33:6c:0d:95:47:46:90:c3:
c1:25:4e:91:9e:b8:97:ed:c6:eb:26:34:ad:28:9c:
15:27:3b:8f:0c:91:42:11:be:ce:58:02:05:19:7e:
1c:28:b1:9d:78:e1:a5:72:7a:ac:10:95:09:9d:cf:
06:5e:66:81:03:16:ff:a7:4a:16:4c:ec:8a:52:04:
10:36:52:4d:9e:09:dd:59:0f:38:f1:0c:11:63:33:
88:a8:ac:9e:c0:f7:e8:2b:45:cb:08:b3:20:ba:a1:
67:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:26:D8:69:30:FB:AF:6B:49:8C:74:80:C7:E9:8A:91:5A:E2:11:6D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C40CB1C64BEE11EE847B7C554AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.174.0/24
Signature Algorithm: sha256WithRSAEncryption
84:7d:c6:04:5b:ee:86:ab:7d:f2:0e:5c:26:d0:d2:ee:87:c1:
db:4b:e2:b1:96:be:5e:68:14:7c:53:c4:6f:54:ba:f2:b9:23:
f8:18:91:71:5f:16:36:b3:50:38:18:4a:48:9b:37:02:1c:82:
b2:bf:64:cd:d2:33:2e:31:3c:5f:e8:2e:61:05:10:8f:84:4f:
09:34:c3:be:4f:b7:47:b5:c4:43:16:ef:04:1c:99:e9:60:71:
75:31:86:22:12:c5:11:79:52:50:ec:23:d4:fa:00:d7:64:47:
56:24:0a:90:2d:ed:83:cf:99:63:ec:a9:da:e4:83:50:c3:a8:
93:d7:2b:f3:32:39:17:0e:05:3b:5a:c5:f9:3c:46:c8:dc:ef:
da:f5:c4:08:bc:9c:21:8b:1a:53:0e:ce:f4:4b:be:67:98:1c:
cf:b9:6e:d0:29:a6:d6:cd:f6:e9:3c:9f:7d:33:f4:db:18:19:
9a:c6:dd:c6:c5:a5:cc:11:35:9e:2c:7e:93:34:6f:2e:c4:9c:
d2:69:bc:9f:26:7d:34:11:7e:a4:70:d4:d4:09:8b:e7:b3:ba:
7f:7c:f7:e9:35:16:11:01:2e:c0:52:9c:a6:98:5a:a5:d5:50:
44:90:a5:4e:14:15:19:a6:37:5b:a6:c8:fa:6a:7d:b5:0c:cc:
ef:40:70:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:12:45 2024 by rpki-client on console-ams.rpki-client.org