Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9C42E129AE911EEAD4DD364D25BE465.roa
File: F9C42E129AE911EEAD4DD364D25BE465.roa (raw, json)
Hash identifier: 3Hu47/QdmSlNoQ9vaGsEyy3jfnozz3n0wDKFRdHQGz4=
Subject key identifier: BF:AD:AE:00:D9:0F:F5:78:03:CE:13:78:0C:30:1E:DD:93:2E:0B:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5168
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9C42E129AE911EEAD4DD364D25BE465.roa
Signing time: Fri 15 Dec 2023 01:33:40 +0000
ROA not before: Fri 15 Dec 2023 01:33:37 +0000
ROA not after: Sun 19 May 2024 01:33:37 +0000
asID: 23764
IP address blocks: 45.196.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20840 (0x5168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 15 01:33:37 2023 GMT
Not After : May 19 01:33:37 2024 GMT
Subject: CN=657bacf4-03e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:67:52:67:4c:70:1c:f0:dd:cf:00:45:5b:63:
43:21:d4:33:00:16:18:b6:27:35:cb:b3:6c:4e:45:
8a:36:06:74:41:86:8a:c6:c6:20:40:88:0a:81:3e:
4a:a2:78:79:36:18:5e:fa:74:7d:3f:5f:79:95:00:
77:2f:d3:a0:c3:38:b0:a8:3d:6e:57:a8:83:c4:d9:
ac:3b:84:d6:9d:0e:17:99:f1:22:5a:9e:9c:68:a8:
d8:01:c1:77:b2:ce:b3:00:58:65:03:ca:aa:06:58:
ae:a6:28:83:e1:26:0a:22:21:0d:f9:56:9b:b6:90:
7a:8b:a8:c3:8b:2e:13:6c:42:a6:d8:83:fb:3a:1f:
e6:25:6d:94:39:3c:5b:81:65:e2:3c:19:17:5f:7f:
a4:4c:54:8a:3c:5a:85:6c:0d:f6:88:af:69:39:df:
2a:01:29:5f:f7:5b:70:1c:46:81:13:f0:48:c9:b2:
24:9c:fb:3f:3e:a8:89:b6:0b:16:04:0e:73:c8:81:
2d:6f:20:fe:54:15:59:97:86:07:41:f7:4e:46:51:
79:2a:3a:9e:8e:3e:52:7e:8f:c9:18:11:18:55:1c:
96:b5:cb:c3:00:b8:18:f0:ca:b8:5c:aa:f4:93:5e:
31:14:ae:cd:76:7e:02:90:9d:e0:f1:18:22:0f:6a:
62:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AD:AE:00:D9:0F:F5:78:03:CE:13:78:0C:30:1E:DD:93:2E:0B:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9C42E129AE911EEAD4DD364D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.25.0/24
Signature Algorithm: sha256WithRSAEncryption
71:bc:63:35:9b:b3:02:dc:09:2a:47:ff:be:37:32:82:d7:11:
75:81:c9:19:93:68:2c:24:54:dc:d6:67:d6:8a:e4:ce:68:a3:
af:68:ef:62:27:bd:2b:70:9d:63:0e:e5:e6:56:94:fe:47:d5:
ab:ba:68:34:4a:de:6c:98:5c:b7:55:31:34:b1:9d:1e:15:16:
d6:1d:6a:02:64:39:ed:66:2d:2e:92:b4:7f:ce:39:9b:6c:b1:
0b:aa:f6:d6:36:dd:95:40:58:da:84:9e:12:07:da:23:70:95:
9c:a8:89:98:31:fb:d3:1c:f4:88:3a:7d:6f:ce:04:6c:76:35:
23:08:99:ef:b4:ac:0b:92:4f:44:7e:35:69:8c:25:bb:ca:c3:
22:66:f7:36:dd:b4:df:40:fe:49:f3:90:a2:a6:05:4b:6a:4d:
1c:5b:95:62:90:8e:7e:d4:f1:49:2e:e4:00:e1:50:1e:39:a0:
18:c7:9b:fd:e9:ab:e5:4b:f4:9d:38:f4:85:46:1b:c5:de:24:
40:3a:57:2f:82:3b:4c:e6:3c:d1:96:20:ea:cb:ad:35:03:c5:
c2:c8:aa:ce:78:c9:9a:7f:42:f9:c3:ce:92:f3:94:e8:f9:a9:
86:c0:72:a9:de:b9:84:4c:dd:1b:0e:d0:73:91:7b:ad:87:70:
b9:6b:87:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:20 2024 by rpki-client on console-fra.rpki-client.org