Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E97982B24BEF11EE9A1F835A4AD9E6FC.roa
File: E97982B24BEF11EE9A1F835A4AD9E6FC.roa (raw, json)
Hash identifier: 4nkXO3KfeO/QE78xnv+hlxoFtaa9gSe1+lj1Nt9srfg=
Subject key identifier: 50:ED:86:FA:A8:77:F6:D8:B9:49:D0:3D:5C:BB:C1:DD:74:57:07:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 37FD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E97982B24BEF11EE9A1F835A4AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:27:08 +0000
ROA not before: Tue 05 Sep 2023 13:27:05 +0000
ROA not after: Fri 24 May 2024 13:27:05 +0000
asID: 131178
IP address blocks: 45.201.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14333 (0x37fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:27:05 2023 GMT
Not After : May 24 13:27:05 2024 GMT
Subject: CN=64f72cac-5f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ad:1d:43:51:4f:20:aa:c2:a1:be:a1:ea:9c:
68:31:34:8e:09:e5:30:fb:dd:ae:1b:ba:7c:a4:c6:
2f:05:de:59:d7:5c:f3:a9:cf:31:ec:5d:8d:13:58:
57:dd:c4:d4:a2:66:2d:31:aa:9d:8a:80:ef:74:c5:
3a:bb:04:0f:9c:a4:ac:b8:7d:15:0c:ff:32:fd:3b:
dd:82:e7:0f:92:cd:d1:99:d8:3f:f2:3d:8a:59:79:
c7:78:8c:8f:11:31:fe:a3:65:80:3a:34:29:e5:3b:
ff:08:97:4e:99:40:f8:da:53:80:0d:5b:cb:41:8c:
32:6d:8c:76:7d:5b:bd:a4:fb:f9:91:de:4e:c5:1b:
25:db:3d:81:cb:57:0b:08:8c:e6:49:d4:00:86:15:
32:4a:ba:1b:dc:0c:54:10:10:82:30:eb:3b:fa:43:
72:da:d0:e3:99:e9:51:f8:0f:ef:8a:10:5c:cc:46:
0d:18:27:e6:7c:bc:82:a9:54:26:c5:26:82:0d:63:
93:7e:8c:70:7b:b3:f0:0b:23:37:bf:49:55:fb:38:
75:65:64:a9:00:56:75:ae:f9:a9:01:a7:31:06:c8:
de:81:7d:58:fd:85:1e:20:8a:e6:e6:8c:75:a1:d5:
8a:40:9d:7f:9e:7d:e1:35:c6:ab:da:15:3c:3b:0d:
57:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:ED:86:FA:A8:77:F6:D8:B9:49:D0:3D:5C:BB:C1:DD:74:57:07:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E97982B24BEF11EE9A1F835A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.165.0/24
Signature Algorithm: sha256WithRSAEncryption
83:a2:37:dc:aa:d7:a1:bd:73:b9:41:46:0a:f7:cf:5e:4c:e4:
3c:dc:1c:ef:f4:88:0d:43:51:76:19:e5:11:76:56:fa:de:13:
44:6f:1a:2e:d8:8e:94:f9:78:bd:f7:6e:7f:b2:78:1c:a2:e7:
f2:3c:c3:4e:f1:89:e5:78:15:1e:80:24:fe:39:a2:40:75:3a:
f7:b9:26:f8:88:b5:bf:4c:ad:b6:b5:44:10:ab:37:77:f0:fd:
5c:91:7f:ea:a5:4f:c2:4d:f2:49:45:56:57:6c:20:4b:81:a8:
be:1d:16:70:5f:b7:e5:33:a7:ac:d1:15:79:42:80:bd:a6:6d:
40:ed:c5:8e:ec:d1:ae:b8:f4:4e:af:ab:d9:a2:c7:0e:15:1e:
78:dc:d8:2c:a0:a7:46:2f:04:89:68:34:26:a8:ad:a4:30:61:
fe:4c:e3:fe:82:08:e5:ca:c0:34:92:4b:26:6c:88:43:5a:0d:
e6:ab:53:fc:19:38:51:02:14:90:44:3d:43:d4:9a:14:ea:d3:
e3:b4:6b:16:14:63:1d:7c:d8:45:21:ee:85:a5:4a:5d:08:6f:
42:21:4e:1d:2a:94:95:ba:40:41:df:c9:af:60:bc:98:e5:1c:
4a:22:be:d3:ef:28:d2:e7:91:6c:a1:be:6a:6e:b4:a2:96:98:
e9:10:09:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:25 2024 by rpki-client on console-ams.rpki-client.org