Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3FC9ED2157511EEA1BF7D184AD9E6FC.roa
File: F3FC9ED2157511EEA1BF7D184AD9E6FC.roa (raw, json)
Hash identifier: wMszSYoIXXHWWTY7uedDqNAneuyDbXSQDOm1F6KzMMc=
Subject key identifier: CA:61:96:FA:7E:A7:A3:A1:9D:5D:44:3D:FC:98:56:43:7B:85:A3:4B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2DE2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3FC9ED2157511EEA1BF7D184AD9E6FC.roa
Signing time: Wed 28 Jun 2023 05:38:04 +0000
ROA not before: Wed 28 Jun 2023 05:38:01 +0000
ROA not after: Tue 29 Oct 2024 05:38:01 +0000
asID: 135607
IP address blocks: 45.194.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11746 (0x2de2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 05:38:01 2023 GMT
Not After : Oct 29 05:38:01 2024 GMT
Subject: CN=649bc73c-d3d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ea:28:5f:dd:d6:82:b3:29:4d:8d:4c:be:c1:
65:7c:2b:d3:46:6b:a3:c1:c8:d3:28:1b:0e:b6:28:
91:31:00:f0:7c:4a:98:ba:d7:c9:76:51:39:0d:5c:
9b:22:a2:dc:7f:68:43:63:69:b0:41:29:36:4f:ed:
51:71:75:cb:81:40:9b:cb:45:94:67:7c:ea:e3:36:
cb:ab:aa:3f:59:f5:ca:c2:28:f4:8d:b4:81:73:c3:
df:f5:c3:56:41:38:4c:ff:2f:96:af:e7:47:ec:52:
5c:51:d7:f4:fe:74:c2:78:bd:ec:65:63:69:87:b9:
b9:81:6d:ea:16:bd:08:22:49:49:05:be:d7:6b:b6:
ff:8f:15:c0:25:7e:2e:dc:40:09:87:a3:f7:d5:7f:
50:0e:17:00:50:1d:22:05:b1:b6:cf:bb:23:cd:a4:
39:38:23:aa:ee:7f:f4:98:19:60:25:c9:65:a7:17:
e8:81:69:74:ee:dc:a5:2d:de:59:e2:6e:f4:c8:18:
c9:5f:e2:98:d5:0a:3b:6b:5b:53:c5:6e:27:ff:ee:
43:74:8d:d1:1b:de:3b:72:75:b2:e2:91:8e:f1:63:
8b:0f:78:bc:d3:7b:d4:cb:57:f5:15:e3:ae:fd:f9:
48:8c:39:79:a9:d2:56:f9:40:0d:d7:48:10:66:7c:
f7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:61:96:FA:7E:A7:A3:A1:9D:5D:44:3D:FC:98:56:43:7B:85:A3:4B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3FC9ED2157511EEA1BF7D184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.8.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:59:21:02:0a:37:01:f5:a6:36:70:f6:18:e0:5f:8c:46:36:
28:0d:4c:ad:c3:4a:b7:73:be:85:57:ef:67:9d:1c:04:cd:84:
4e:41:0d:a1:ef:00:ce:ac:49:a7:c8:86:60:39:d9:1d:3f:a9:
11:d0:0b:8e:42:9a:6c:64:4b:22:94:19:4a:b3:7a:cd:55:f4:
e7:d8:e1:dc:16:b7:6d:b3:53:cc:80:99:15:7a:87:92:d6:14:
f5:0c:f2:f0:b3:74:bf:6e:d2:7a:5a:04:5b:c1:0e:ae:10:5a:
57:4e:3c:67:75:19:14:5e:da:70:03:56:1d:cc:a1:61:5e:f6:
44:cc:cf:dd:aa:35:96:f2:7f:aa:32:b3:35:84:c8:74:74:7d:
38:1f:14:40:28:8b:49:1b:32:61:06:4e:b7:5d:1f:c7:c8:e8:
cb:78:e1:64:45:5e:98:d1:0f:6b:c8:8f:80:ae:87:60:fb:3b:
ef:cf:9d:c7:76:e8:a4:10:b3:46:e6:a6:a2:f4:d7:8c:3d:ad:
c5:a7:89:c0:c9:56:35:af:97:de:c4:1e:2a:62:fe:19:91:c3:
93:9a:d5:d1:f8:13:5e:7e:d3:81:b4:bf:31:c5:95:e5:20:21:
9c:ef:3c:b2:f9:29:b7:6a:97:b3:c9:03:42:bb:e4:a8:38:05:
ef:98:f5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org