Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D53F87CE7FED11EE852290364AD9E6FC.roa
File: D53F87CE7FED11EE852290364AD9E6FC.roa (raw, json)
Hash identifier: Fd7/9D5mFCu+oc8tf+A/1S2F2gYnf+HYaHCwCr5I7Wo=
Subject key identifier: D8:C2:73:71:5E:B2:1A:9E:11:F4:7C:6B:B4:F1:D5:36:F1:A0:8A:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4656
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D53F87CE7FED11EE852290364AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:23:16 +0000
ROA not before: Fri 10 Nov 2023 17:23:13 +0000
ROA not after: Tue 04 Jun 2024 17:23:13 +0000
asID: 137577
IP address blocks: 45.195.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18006 (0x4656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:23:13 2023 GMT
Not After : Jun 4 17:23:13 2024 GMT
Subject: CN=654e6704-20fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d4:8e:c2:db:9e:c8:88:89:62:49:42:40:6a:
bd:a1:0d:cf:e3:53:89:e3:ad:0b:9b:46:79:23:a9:
f4:e4:9c:fb:16:12:bb:4a:fa:fa:67:1b:05:c8:63:
e1:59:7f:04:f3:a1:cd:64:06:43:ce:c0:70:c0:06:
7e:be:cf:bd:0f:f0:39:f8:9a:0e:a0:f3:d2:a9:68:
ad:ec:65:67:41:27:ea:68:1c:c6:9d:c0:76:f9:8d:
bf:9e:33:a3:74:8a:f8:b0:6b:e5:01:d6:4c:d2:51:
19:f1:7d:2b:ae:ee:08:1c:07:2b:fa:e4:6e:16:a8:
74:98:dd:b4:1e:f1:2a:b9:77:c7:23:ac:2e:51:69:
b3:92:c2:cd:5e:38:84:af:7c:18:6e:9e:31:61:f3:
0c:42:0f:01:b1:73:5a:54:67:4d:bd:6f:01:62:29:
9e:5a:a7:b2:41:46:b7:a6:16:a6:ed:b4:b7:c9:4b:
c7:7c:f7:84:7a:a9:a5:11:1c:9c:26:0c:25:dc:98:
f2:f1:1c:71:db:d3:97:24:1b:79:13:d7:7d:12:47:
66:88:1a:d3:d4:5e:f2:de:04:e9:42:d4:49:a5:28:
60:be:b5:59:b0:05:61:87:c0:0a:39:7c:5b:8b:a2:
83:2e:b3:5c:8d:e3:56:a7:ff:e5:f2:a8:0a:7a:4e:
18:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C2:73:71:5E:B2:1A:9E:11:F4:7C:6B:B4:F1:D5:36:F1:A0:8A:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D53F87CE7FED11EE852290364AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.38.0/24
Signature Algorithm: sha256WithRSAEncryption
21:3d:fd:59:28:c4:5d:7c:f6:b2:02:c3:d2:41:2e:2e:e5:bc:
7c:1f:5d:3c:30:1d:bb:4e:e6:e2:92:9c:10:b1:9a:a9:f5:3b:
aa:07:62:1d:a1:86:df:cf:c1:e4:c8:69:f7:bf:91:80:27:53:
55:80:2e:5c:81:49:7b:0a:b1:7f:f3:09:81:e4:5c:ca:e3:9a:
cb:47:ca:a8:f3:af:ff:bf:d0:b5:a0:ff:48:6f:8a:c4:d0:24:
02:db:ac:4f:1f:22:da:72:43:cc:d5:f8:9c:f2:a8:0c:3c:44:
11:26:99:57:bf:1d:10:79:d3:08:9c:ef:7f:21:8f:d0:48:80:
56:2c:52:64:f3:aa:58:ff:4f:15:86:9e:a7:16:62:d8:f9:84:
17:a4:6f:00:57:1e:dd:ac:7b:ce:db:f9:93:2e:17:f4:32:40:
91:25:18:97:20:2e:c2:07:5d:bd:c0:62:56:52:30:98:81:48:
5d:ab:23:ca:9d:a7:d1:4a:8a:60:5c:75:b1:22:e1:7f:4c:88:
2d:5f:5a:02:a6:5d:06:b9:98:31:67:a0:8a:5b:5a:dd:53:1b:
ac:09:fe:f5:8c:92:0e:0c:ab:2c:cf:97:7a:00:d5:97:0c:fe:
16:87:f8:0a:b3:87:0c:69:04:53:1a:19:86:3b:d1:52:c1:fc:
af:1e:92:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org