Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9FBD9A033A511EEB60443794AD9E6FC.roa
File: D9FBD9A033A511EEB60443794AD9E6FC.roa (raw, json)
Hash identifier: sRMXJmmWcMR4YvnGJaG6/6rxV/p2L+xEKAQjWh1YMyQ=
Subject key identifier: AB:7B:34:6A:07:25:D8:F9:8A:ED:AF:54:62:9B:B7:22:18:4B:1E:1F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 337D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9FBD9A033A511EEB60443794AD9E6FC.roa
Signing time: Sat 05 Aug 2023 15:36:32 +0000
ROA not before: Sat 05 Aug 2023 15:36:27 +0000
ROA not after: Fri 24 May 2024 15:36:27 +0000
asID: 38901
IP address blocks: 45.201.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13181 (0x337d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 5 15:36:27 2023 GMT
Not After : May 24 15:36:27 2024 GMT
Subject: CN=64ce6c7f-5253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c4:8e:9b:be:87:bd:ac:c6:05:6b:58:d5:8d:
2e:ea:20:f0:13:be:db:a6:fc:b1:67:8c:85:a0:53:
bc:44:56:f2:07:dc:72:1e:0f:73:68:2e:0e:ef:59:
e9:76:87:73:a2:13:bd:57:a3:ec:6c:fc:68:c6:fd:
5c:d9:6e:8f:f4:86:0a:82:7a:b9:3f:bc:52:32:51:
bf:78:d8:b6:7d:2e:2e:ba:7f:ee:76:06:c7:26:95:
8f:18:cb:01:a4:2d:aa:06:75:eb:a3:6f:97:4e:0c:
22:d5:e2:43:cf:74:47:dc:a9:b5:eb:1b:5b:0e:fd:
52:f8:32:c2:b3:d3:87:f2:50:5f:fa:0c:5d:3e:de:
f7:53:62:5b:94:b9:7a:38:a6:1c:7d:52:d4:7f:81:
2c:4e:e5:b6:5b:13:ef:9e:d8:ff:76:73:17:ee:b9:
1d:84:ca:60:99:2e:90:cd:03:11:d7:2c:66:bb:89:
2f:d7:2f:67:2f:2f:50:2b:94:e4:b8:93:ab:64:97:
11:ef:33:23:a0:5c:a2:28:6a:66:f5:40:68:18:92:
6a:d6:45:95:e8:8f:ec:a6:bf:31:f9:66:5d:b1:f2:
fc:50:95:85:5a:16:c7:88:8e:69:48:a2:f5:44:03:
d0:a1:29:05:33:c4:7a:3a:3d:b5:6c:da:cb:b1:01:
3f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7B:34:6A:07:25:D8:F9:8A:ED:AF:54:62:9B:B7:22:18:4B:1E:1F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9FBD9A033A511EEB60443794AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.206.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c8:8e:57:cc:2c:26:47:30:96:2f:a2:76:1b:b7:9c:a6:dd:
30:90:74:ef:0c:7c:8e:cc:8f:37:70:46:f7:2f:41:ca:3b:55:
c6:54:56:8a:b5:06:e2:c9:c2:7c:96:34:a5:cc:cd:be:a1:29:
77:e4:bb:c4:f2:5f:f3:17:23:e4:66:17:74:78:69:e1:3d:25:
d4:3b:ef:85:b5:ea:9e:01:6a:db:9f:b3:58:ac:b3:f8:fd:39:
3e:2d:27:eb:ed:a0:e4:db:37:dc:d3:96:53:a5:7c:60:68:90:
56:b4:74:f6:26:c0:0c:b0:7a:7a:fb:be:2c:36:83:0a:6a:4b:
d3:1a:5c:e8:85:40:bd:6f:5f:4e:da:60:ee:dd:c0:9d:52:e7:
32:ed:b8:a7:8a:e2:17:ac:89:b6:6b:02:2d:24:69:3c:23:12:
7e:1d:c9:70:f2:d7:22:fc:4d:f1:25:59:ad:25:6a:9e:0a:66:
de:51:fe:e3:61:c2:79:c2:90:19:74:93:96:fb:f6:62:9f:51:
0c:19:27:f5:93:44:29:c0:15:45:33:52:3a:01:d4:ec:96:6b:
39:fe:97:9a:7d:1c:fb:07:32:cd:a1:aa:24:65:1c:60:34:8c:
39:9a:8a:db:5f:13:1c:81:9b:6c:4d:d8:c2:66:a5:c4:60:17:
21:7a:4c:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:59 2024 by rpki-client on console-ams.rpki-client.org