Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F32F988208EC11EE95CDBA0E4AD9E6FC.roa
File: F32F988208EC11EE95CDBA0E4AD9E6FC.roa (raw, json)
Hash identifier: aEjH+TF45kGwCwqMUwaxD13Kxxu0YXjRzgk5liON3xw=
Subject key identifier: 6E:14:8C:7E:0A:74:DF:12:3E:DB:E9:03:45:D0:F7:F7:FA:0A:C2:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AA4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F32F988208EC11EE95CDBA0E4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 06:47:08 +0000
ROA not before: Mon 12 Jun 2023 06:47:04 +0000
ROA not after: Sat 25 May 2024 06:47:04 +0000
asID: 131178
IP address blocks: 45.201.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10916 (0x2aa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 06:47:04 2023 GMT
Not After : May 25 06:47:04 2024 GMT
Subject: CN=6486bf6c-2377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f4:6e:1c:2c:ea:81:50:34:5d:2c:f9:5b:49:
2b:39:68:d3:d3:a4:c9:27:f4:fb:ad:3d:10:b6:21:
1c:d6:b3:82:56:2e:97:63:0f:9d:f0:0c:ba:2c:fa:
b2:97:74:93:b7:7f:03:53:ee:24:2d:6c:b4:51:c6:
ac:bb:f3:0d:05:34:cc:ef:36:1e:18:be:d9:ec:5d:
08:a7:a5:f4:cf:5e:c6:64:72:68:e4:40:de:17:c3:
c9:70:66:a1:c5:bd:a9:fd:de:73:44:72:4b:69:01:
06:02:ab:a9:0c:a8:af:1b:82:32:c9:bc:4c:f5:ff:
fd:e0:9c:46:3c:30:25:94:86:7f:d4:97:3a:39:2e:
8a:69:52:26:e7:f2:1e:11:e3:f3:55:48:5c:71:6a:
a1:cf:29:b0:fe:54:4b:b9:48:08:b2:76:aa:67:e4:
7e:ef:5c:ac:b4:bc:12:24:69:b3:79:45:9b:72:d8:
d7:f3:23:a0:9c:ce:9e:71:85:8c:12:23:81:00:c3:
40:ee:34:36:56:4c:a1:e1:6d:af:59:8b:05:02:42:
72:bd:2a:ac:60:89:ac:79:fe:3f:54:e7:10:82:de:
bb:05:ae:c1:2e:66:c1:09:cc:1f:65:c7:68:70:0b:
f6:90:f4:5d:69:29:3a:7e:86:29:6b:10:55:3d:fe:
b4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:14:8C:7E:0A:74:DF:12:3E:DB:E9:03:45:D0:F7:F7:FA:0A:C2:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F32F988208EC11EE95CDBA0E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.176.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:8f:c1:cd:85:b7:7f:88:d4:11:95:33:81:c9:71:e4:f4:08:
b5:d7:4a:57:7c:a9:fc:2f:2b:0b:d3:62:64:c5:b7:d0:e4:96:
ca:ec:c6:e5:bb:bc:7c:b9:61:1d:c9:a0:27:45:fd:e4:e1:b0:
a9:4c:09:db:4e:4d:f0:c2:9b:26:e7:f7:87:9e:7e:a2:f9:58:
70:cb:d2:85:2c:a3:0d:40:30:85:c3:04:d7:c0:fa:04:0d:d4:
47:9e:92:ce:b0:8d:bf:78:6d:b4:21:93:41:33:d8:d8:c5:d6:
17:d1:31:7b:e8:02:fd:12:0d:19:22:a2:1f:3e:88:04:67:45:
d5:8b:6a:84:6c:95:9e:62:50:c1:b2:2a:5c:b7:99:6f:13:ed:
d5:78:d0:22:a3:b4:67:29:e0:ab:ae:af:eb:93:9a:ea:b5:48:
28:6a:72:d1:26:df:2b:cb:e1:e9:3a:a6:dd:f8:44:4c:54:74:
15:12:cf:7c:bc:f5:57:cc:99:2f:c7:7f:b8:94:26:17:fc:3e:
c7:b0:e0:73:55:d6:9e:2c:f1:59:cf:f7:90:ca:d8:e0:6f:04:
8d:22:33:20:34:f3:21:82:63:7a:bf:70:df:10:f0:3c:bb:db:
88:4b:f3:f8:13:b3:0a:60:4e:cd:05:6b:89:98:07:f2:47:c5:
22:fc:11:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:43:01 2024 by rpki-client on console-fra.rpki-client.org