Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CECA434E08F011EE8E2D3E1A4AD9E6FC.roa
File: CECA434E08F011EE8E2D3E1A4AD9E6FC.roa (raw, json)
Hash identifier: oek2vyJyEt2PvSRHiY3es2J5fmUDxTY7rzTYXSWgdAE=
Subject key identifier: C9:78:99:BC:44:E7:0E:ED:C6:86:4D:F6:27:BC:5B:30:E6:C6:ED:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AD3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CECA434E08F011EE8E2D3E1A4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:14:45 +0000
ROA not before: Mon 12 Jun 2023 07:14:41 +0000
ROA not after: Sat 25 May 2024 07:14:41 +0000
asID: 131178
IP address blocks: 45.201.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10963 (0x2ad3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:14:41 2023 GMT
Not After : May 25 07:14:41 2024 GMT
Subject: CN=6486c5e5-705a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7b:21:84:bc:f8:54:e5:13:32:69:c2:de:cd:
7c:e3:68:70:ab:25:d7:79:ad:39:d7:99:1b:ce:1d:
bc:3e:40:ef:78:37:ef:f1:77:de:8f:d6:ac:8e:e6:
86:cd:ee:52:d3:f3:52:eb:a6:d1:d9:75:73:31:2d:
a5:1c:37:e4:3b:88:f1:a4:22:5c:d9:bd:8e:71:bb:
82:1f:ba:7f:b6:24:9d:e5:cc:68:75:94:f5:2c:56:
71:df:d5:66:c6:55:d3:79:41:e3:8d:2b:d6:04:6c:
23:f3:de:25:5c:b7:49:e1:ae:4d:38:65:30:2c:3c:
24:14:17:99:14:e7:66:5f:69:5e:bb:ee:64:87:d8:
71:c2:51:5d:e3:d2:4b:98:8d:2c:c7:ef:e0:c1:ca:
02:8f:04:7c:64:d6:6a:0d:79:6d:32:20:92:8a:80:
81:54:88:43:b7:a2:94:e5:fb:57:ce:7e:07:df:88:
9e:6f:c9:2d:76:97:43:e7:d4:68:d9:d7:46:4f:86:
24:80:de:90:f2:91:6c:06:7a:f9:37:f0:07:c6:39:
d6:0d:e3:a9:b2:51:b3:a8:35:ca:71:69:41:cf:d4:
e7:eb:4d:c3:61:b5:bb:e6:fd:01:f6:b0:76:cf:10:
8b:df:e7:e5:e7:16:4b:78:43:40:c1:c8:0c:41:35:
32:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:78:99:BC:44:E7:0E:ED:C6:86:4D:F6:27:BC:5B:30:E6:C6:ED:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CECA434E08F011EE8E2D3E1A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.144.0/20
Signature Algorithm: sha256WithRSAEncryption
71:10:16:a9:ab:ff:e4:e5:ca:6a:67:42:b7:6a:95:11:12:3b:
d2:bd:f1:9a:f8:b2:5b:63:ea:46:13:b0:27:cd:84:f0:9c:8c:
56:06:1c:0f:2d:d5:fe:f5:c6:57:c8:8e:8f:48:1c:71:4e:ed:
88:2f:6d:84:e7:4e:f5:07:d1:f6:92:74:34:6d:40:ec:df:76:
8b:83:40:72:9e:e0:44:ec:8c:77:24:c1:ed:74:fa:54:a7:2c:
48:b3:a7:aa:b6:16:fa:96:82:60:d3:38:04:3b:db:98:80:20:
25:7c:db:ea:a7:d0:60:67:d9:b6:f5:97:ee:d1:87:b3:30:c0:
ff:70:82:35:8b:13:f8:7a:bf:97:e9:ed:b2:bc:58:92:2d:bf:
54:1f:15:16:8d:b8:4e:af:a0:f2:8e:3f:45:db:d3:c1:89:9e:
f0:98:86:69:d8:dc:b4:9b:72:01:5c:dc:b2:52:1f:c2:4e:5a:
47:26:fb:de:b5:88:f3:d9:09:2b:30:83:24:3e:75:5d:e5:8d:
c1:35:c7:76:55:47:a1:3a:7e:be:a6:34:31:87:a8:b7:90:58:
f7:b0:a6:dd:d9:22:fa:63:bd:1c:9d:b8:9e:2d:11:59:96:7c:
35:5f:5d:f5:63:a3:f2:1e:20:ad:55:1f:37:ab:2d:10:3a:e6:
10:25:74:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:17 2024 by rpki-client on console-fra.rpki-client.org