Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4CD3E8C014111EF859CC022017001B1.roa
File: D4CD3E8C014111EF859CC022017001B1.roa (raw, json)
Hash identifier: fE5ke5CkRIfxP50gaQlNWCJx+mCVdLpC3BzTVYjMDG0=
Subject key identifier: 80:8F:18:25:B7:59:BD:BB:2E:BC:A2:24:52:C6:B3:F7:6C:28:7B:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 83F2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4CD3E8C014111EF859CC022017001B1.roa
Signing time: Tue 23 Apr 2024 07:19:33 +0000
ROA not before: Tue 23 Apr 2024 07:19:29 +0000
ROA not after: Sat 11 May 2024 07:19:29 +0000
asID: 9009
IP address blocks: 45.192.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33778 (0x83f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:19:29 2024 GMT
Not After : May 11 07:19:29 2024 GMT
Subject: CN=66276105-160e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0a:87:aa:3c:5d:4d:39:cb:dd:a8:75:89:83:
f1:3b:b8:44:15:09:0a:1f:7e:c0:ee:65:f7:72:30:
99:f9:75:8e:25:08:63:41:c7:94:ea:18:f4:2a:bd:
c8:c6:5f:85:f7:f5:bd:bd:10:13:5e:a3:c8:08:af:
53:d7:8b:f3:03:a8:f5:a4:86:57:11:03:91:9f:d5:
05:35:73:4b:4d:7b:70:00:bb:96:2e:80:01:bc:bf:
6d:d2:3a:7e:72:a7:f8:8f:e1:71:92:7a:6a:ef:44:
b4:6b:90:70:32:8b:4b:3c:e4:fd:08:7e:53:e1:3a:
0b:19:39:d3:71:4d:4f:ab:18:53:ca:82:73:66:ef:
ae:cf:00:54:dc:7a:b9:07:f2:27:5d:a5:f6:21:6b:
ab:8d:8f:22:a2:8b:2e:ed:ce:ad:83:b8:62:f4:13:
a3:ed:72:e4:5e:68:ce:c8:26:64:85:0b:8f:7b:6b:
8c:5a:c0:40:36:cd:a5:78:96:48:09:9d:fd:d8:7f:
44:aa:62:85:1a:b0:a6:24:6e:e0:46:a1:24:16:2e:
25:fd:f9:2b:7a:ee:ed:1e:55:a0:c1:63:c5:12:24:
27:b9:4b:31:e1:9f:ff:a6:8d:15:cc:05:51:e7:c4:
99:ae:98:bf:9e:12:b1:13:d9:cd:b4:17:c6:93:06:
8c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8F:18:25:B7:59:BD:BB:2E:BC:A2:24:52:C6:B3:F7:6C:28:7B:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4CD3E8C014111EF859CC022017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.141.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:77:22:7e:11:72:4d:0c:ef:3b:43:bd:a7:49:6b:5a:21:22:
c4:3e:3e:0c:ab:eb:02:8b:56:d7:b2:3c:08:a0:26:04:0f:bb:
45:fc:fd:8d:79:bd:06:34:a0:f3:b6:6a:d4:2e:d0:4e:c0:b1:
43:9e:f4:ac:1d:e1:55:7d:09:ee:ee:0e:53:54:cc:c7:15:77:
5e:1f:f4:8d:05:e5:4f:b7:26:c0:2d:92:59:43:a5:9d:49:8a:
a7:55:00:07:30:3e:00:9f:f2:f7:47:dd:21:5f:8a:f0:f1:22:
4b:59:64:77:9f:ec:a9:74:57:6c:49:9b:de:bb:50:da:a9:61:
13:68:f5:69:7f:98:14:ee:79:26:a8:75:08:a9:51:f5:02:1c:
c9:44:8f:43:2f:9d:d1:e0:8c:4c:2b:19:f5:a0:4c:cb:1c:ed:
da:84:0f:89:55:3d:b8:3f:16:13:b6:6e:63:08:93:d1:81:cb:
15:73:6a:65:7d:5b:d2:50:5d:64:9b:41:38:ea:3b:b6:7a:34:
d4:9b:51:8c:60:ee:0e:e1:2e:df:a0:77:ce:52:19:ae:cc:ea:
36:39:8a:0e:61:9f:6f:aa:84:c5:8a:ce:c4:d4:81:1c:4c:85:
3b:69:0a:9a:60:4f:ba:60:c2:8a:1b:d4:5f:e6:7c:41:ff:dc:
fc:d2:67:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org