Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E80EB15A08FA11EEA57232374AD9E6FC.roa
File: E80EB15A08FA11EEA57232374AD9E6FC.roa (raw, json)
Hash identifier: zffNYcsGrnXA5gt+cU2eRPs2rKWYJfL7+dAVVCa7U6A=
Subject key identifier: B5:06:E0:8B:23:4F:95:CE:34:9D:01:95:BC:67:DF:BD:CF:EF:70:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B41
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E80EB15A08FA11EEA57232374AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:27:02 +0000
ROA not before: Mon 12 Jun 2023 08:26:59 +0000
ROA not after: Sat 25 May 2024 08:26:59 +0000
asID: 131178
IP address blocks: 45.201.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11073 (0x2b41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:26:59 2023 GMT
Not After : May 25 08:26:59 2024 GMT
Subject: CN=6486d6d6-fce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5e:78:62:3d:cb:fd:76:3f:cb:84:cd:e4:e4:
f4:a7:a2:b0:6d:ed:6e:6b:34:48:53:74:c7:e6:e5:
7f:9e:bb:cd:78:b8:81:b0:4f:82:db:a4:2d:e5:83:
64:1b:01:05:88:da:bb:16:2d:a4:9d:16:d1:c4:e4:
d3:11:59:17:7a:86:34:b1:89:5c:12:71:9d:c3:3a:
14:ab:69:69:d1:2f:5c:b0:84:83:86:5c:6d:19:f4:
d1:3d:b4:4e:86:09:84:05:ed:ec:80:81:49:1c:bd:
a1:09:06:cd:19:29:49:41:75:eb:c5:f4:12:49:84:
e5:9f:60:d0:06:8b:b5:c3:c8:9e:2e:5d:c6:e6:e7:
e0:1b:75:eb:1a:84:b4:f5:ed:a5:a5:cb:2f:78:02:
dd:25:7f:4c:cc:f4:1d:93:75:11:a2:7f:81:d6:60:
66:bc:de:00:97:91:af:7d:dd:36:cc:9d:c6:ad:e2:
7e:3f:9f:69:77:6f:5f:11:c6:30:26:59:8c:a6:be:
a9:b7:ed:b0:70:66:4d:4e:2a:f1:f3:71:75:87:26:
b2:e6:d8:3a:75:38:07:ab:f4:fc:e2:df:12:8a:6e:
54:c8:09:9a:a1:05:e2:de:39:a1:1a:a1:c8:c9:8f:
cd:a9:fc:30:eb:64:de:18:28:1a:b7:cf:65:41:db:
9c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:06:E0:8B:23:4F:95:CE:34:9D:01:95:BC:67:DF:BD:CF:EF:70:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E80EB15A08FA11EEA57232374AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.202.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:bf:78:74:f4:be:66:41:03:cf:bc:4e:7d:5d:f0:34:67:c4:
d1:06:87:e3:47:bb:29:71:41:58:cd:0b:8f:de:26:40:30:df:
f7:44:b8:f1:b5:31:35:b0:1b:9e:96:7b:97:b2:f2:61:7e:67:
10:77:4d:c4:c3:0d:27:ba:38:77:d8:02:af:4b:7c:d7:49:9c:
39:3d:a9:7b:f1:c8:80:17:64:f2:c8:69:75:88:73:8a:61:02:
ce:32:f4:54:a5:da:fd:66:10:f3:36:89:fc:88:ec:f9:a1:9f:
15:8e:15:3b:c4:bb:fd:85:39:20:0e:52:27:9d:1d:2b:54:fb:
7e:9d:75:62:54:16:61:76:46:2a:98:98:8f:7e:0f:a2:8b:9d:
12:82:0d:52:57:85:de:9b:ef:f9:e0:89:17:79:76:48:d0:bf:
fa:1d:9f:7c:ec:f4:b1:51:29:9b:51:0d:b3:18:52:d6:e8:53:
a8:ff:1d:3b:d0:ac:87:31:8f:a3:61:4f:67:07:3a:c1:c9:cb:
f0:13:28:bd:d8:99:0f:a9:65:c2:f4:e1:6f:4d:47:0a:a1:32:
db:83:3e:8c:fa:c4:b5:2b:a2:e3:db:77:a8:c8:83:7e:2a:16:
a8:c7:48:a8:88:e4:f0:53:78:bb:a6:c6:0d:a6:ff:5e:6a:43:
31:23:a3:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:43:00 2024 by rpki-client on console-fra.rpki-client.org