Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CFE72FCC08EF11EE905E24174AD9E6FC.roa
File: CFE72FCC08EF11EE905E24174AD9E6FC.roa (raw, json)
Hash identifier: xdWoDeIxsr3Cn5ZU0dyeuKYRHo/bCtKTKbsYx0x3ZGg=
Subject key identifier: 59:D6:51:72:AC:0B:B7:5E:4C:D4:3D:8A:03:9D:F9:AA:74:08:E4:7B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AC1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CFE72FCC08EF11EE905E24174AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:07:37 +0000
ROA not before: Mon 12 Jun 2023 07:07:34 +0000
ROA not after: Sat 25 May 2024 07:07:34 +0000
asID: 131178
IP address blocks: 45.201.132.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10945 (0x2ac1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:07:34 2023 GMT
Not After : May 25 07:07:34 2024 GMT
Subject: CN=6486c439-2bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a1:0c:60:53:e2:95:b2:67:44:fa:5a:f8:c7:
bb:bd:30:6d:16:3c:30:57:63:f2:09:64:6b:ce:37:
1e:12:d5:0a:30:6b:47:6b:99:10:5b:20:a5:a3:35:
7a:2f:ae:10:87:c5:71:8f:75:80:9c:7d:12:ed:3a:
26:9a:64:84:2a:a6:fe:34:7f:12:65:18:5a:e0:71:
dc:de:e0:81:74:4d:50:df:90:65:50:a9:44:83:c3:
5f:9e:90:e6:a3:8d:d8:3c:47:2d:74:90:e6:24:d8:
05:0e:eb:c9:7d:62:e5:2d:4c:cd:54:5c:0d:2d:a3:
6c:62:a3:7e:01:ae:fb:c0:8a:eb:93:c1:3e:93:a2:
d2:dd:f2:b1:55:f2:50:d3:18:2b:9b:ed:74:c9:2d:
22:5b:57:2c:00:00:7c:04:34:0f:37:a9:fd:7a:a6:
2f:99:1f:c4:e6:d0:9d:1f:1e:0a:e9:6a:80:9b:05:
bf:b8:de:27:d3:09:07:74:aa:5a:cb:c8:91:a0:a2:
3c:8c:a3:6f:8d:a0:54:90:6d:fb:a2:1c:21:64:6a:
dc:aa:c7:13:00:97:b7:bb:f1:bb:03:11:19:ea:d6:
94:5f:1c:a7:e8:04:b1:bf:4f:28:37:98:73:54:a1:
27:5e:9a:ef:de:6f:b0:8b:19:b4:e2:ad:ca:15:05:
0b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D6:51:72:AC:0B:B7:5E:4C:D4:3D:8A:03:9D:F9:AA:74:08:E4:7B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CFE72FCC08EF11EE905E24174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.132.0/23
Signature Algorithm: sha256WithRSAEncryption
20:88:b6:b2:61:d2:11:6d:e5:8e:00:20:a8:27:8d:05:df:9d:
51:6c:20:6b:bb:63:fc:15:81:22:ce:c0:bc:ae:0d:2f:0e:23:
4f:e5:2e:41:43:40:32:37:d7:a0:3e:31:47:9f:55:8d:f4:a9:
2b:65:f3:30:83:23:f1:c0:ec:50:fc:fb:a9:5e:8d:65:f1:3f:
50:26:f7:f1:6e:46:51:a1:cc:48:c3:dc:84:65:a8:0d:84:8a:
77:e1:95:e3:f6:e1:29:70:c1:ec:39:85:e0:39:01:18:39:db:
51:15:94:62:41:2d:e7:3f:33:2f:c6:18:f8:74:91:b7:b9:39:
fe:6a:30:25:0e:10:05:d2:09:bb:af:a9:69:b4:c7:53:69:00:
49:75:7e:4d:1b:a1:97:46:71:4a:10:63:5b:39:20:47:dd:c9:
88:c2:53:df:85:ea:a0:46:5d:97:09:3b:25:6a:a3:89:86:57:
6b:96:f3:6f:f0:69:f8:68:e5:ef:5e:9a:0d:03:8c:88:d3:bf:
10:36:a2:74:46:9f:a1:d8:0b:c4:67:47:ea:c9:c0:e2:a2:fa:
20:ed:00:ee:5e:4b:4c:f8:2b:53:1f:1e:17:ea:e0:33:a9:db:
b5:26:d4:55:81:1a:e5:d4:cc:a4:6c:06:cb:74:d3:35:5a:61:
69:60:84:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:23 2024 by rpki-client on console-ams.rpki-client.org