Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C935CF608DD011EEA9B6316C4AD9E6FC.roa
File: C935CF608DD011EEA9B6316C4AD9E6FC.roa (raw, json)
Hash identifier: OEC5dVIyfir4bj9hMzqWSSM35wSxz5F5x/LHvOffiXk=
Subject key identifier: 17:67:C8:AB:5D:4D:E7:37:8B:8A:71:08:3B:C9:98:00:F6:41:97:11
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C59
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C935CF608DD011EEA9B6316C4AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:30:37 +0000
ROA not before: Sat 03 Feb 2024 09:30:33 +0000
ROA not after: Thu 08 Aug 2024 09:30:33 +0000
asID: 133861
IP address blocks: 45.207.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19545 (0x4c59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:30:33 2024 GMT
Not After : Aug 8 09:30:33 2024 GMT
Subject: CN=6565b33c-f8f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e4:ba:ec:7b:72:b1:bd:dc:74:4a:9b:8e:be:
1c:9d:eb:95:88:60:f6:e0:ae:e2:9c:db:2c:25:e4:
a8:45:24:d6:69:18:66:76:95:e0:7b:19:d8:d4:91:
4a:ab:27:26:8b:71:74:b7:aa:15:7f:22:46:8b:13:
d8:4d:56:7a:18:84:3b:97:5d:70:18:77:66:0c:80:
95:02:fc:56:fc:3c:d5:91:3d:64:4c:8e:32:79:7a:
78:6d:7d:1f:54:8d:ff:c6:6e:dd:f3:32:04:7b:6a:
73:d9:12:25:b1:3d:6a:94:5f:71:bf:b7:61:b5:52:
4f:63:09:2f:a3:cd:0b:e7:17:99:54:c1:76:0f:c6:
82:10:a6:8e:79:01:54:13:16:62:18:1e:4e:42:25:
3c:a3:64:48:69:48:03:0e:74:17:80:c6:68:6b:5a:
00:bf:40:5c:b9:d4:d5:2f:fb:ac:b1:ca:85:ed:2c:
a1:d6:4a:81:1d:2b:48:77:92:18:af:21:c7:40:60:
2e:4a:d9:f7:28:7b:42:f0:c4:b4:26:4d:c6:35:83:
de:f0:ea:bc:cc:97:a4:51:09:bd:32:cf:30:48:2a:
0b:00:e5:76:18:df:3c:6c:08:33:ae:31:35:22:72:
a2:7b:4f:fd:63:f5:22:40:d5:29:32:dc:be:6e:ac:
c4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:67:C8:AB:5D:4D:E7:37:8B:8A:71:08:3B:C9:98:00:F6:41:97:11
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C935CF608DD011EEA9B6316C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.41.0/24
Signature Algorithm: sha256WithRSAEncryption
87:2e:8a:04:4e:32:ec:d3:7f:41:29:b2:b8:7d:cc:a4:08:a8:
fa:b6:5c:f0:d4:23:79:96:ba:15:69:2a:d7:fa:24:3d:de:69:
ba:b2:49:af:37:a5:cb:85:4d:4b:5b:3a:66:a1:2e:3e:7a:f0:
3f:6f:29:8e:3b:7d:b6:bd:49:eb:59:fa:ab:5f:ec:98:90:11:
7a:55:4e:cb:2b:6c:3b:27:07:65:60:1a:35:7e:35:f8:1c:b1:
ab:d0:66:9e:d1:c7:fa:1f:9d:ad:7d:ca:83:fe:56:90:da:b0:
ba:cf:06:a8:21:71:44:f2:ad:98:92:92:45:77:ef:8d:53:b4:
04:47:e4:79:09:42:34:b5:76:4d:cb:9a:99:d7:1b:4b:e0:ff:
fa:4a:6c:bc:ef:9d:ea:b8:f6:89:8a:81:03:94:62:fc:d9:26:
2c:41:50:ca:56:17:2a:7a:f8:e3:5a:c2:62:ca:4b:e6:ce:e4:
37:5c:2e:f1:d5:48:fb:e5:2a:a3:93:2b:a6:93:b9:c5:7f:59:
7a:c7:1e:15:91:53:a4:f9:41:10:03:5f:be:30:bd:18:53:d5:
eb:81:53:3a:60:0d:a6:89:2f:4e:4c:ca:f0:d6:d1:1a:fd:8d:
98:2e:2f:02:36:df:d7:1b:0c:ae:f3:48:d8:d6:8c:3b:17:ae:
26:21:ee:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org