Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB214E167EBF11EE8FBBEE704AD9E6FC.roa
File: FB214E167EBF11EE8FBBEE704AD9E6FC.roa (raw, json)
Hash identifier: nPHkO0WzjMQyE6rG3cUgILL/JwZrx8vdzIfgRFh59Rk=
Subject key identifier: 4E:17:59:BB:F1:CE:28:DF:FF:E5:90:2F:F0:40:5C:19:10:E5:A7:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4507
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB214E167EBF11EE8FBBEE704AD9E6FC.roa
Signing time: Thu 09 Nov 2023 05:22:31 +0000
ROA not before: Thu 09 Nov 2023 05:22:27 +0000
ROA not after: Thu 07 Nov 2024 05:22:27 +0000
asID: 133847
IP address blocks: 45.200.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17671 (0x4507)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 05:22:27 2023 GMT
Not After : Nov 7 05:22:27 2024 GMT
Subject: CN=654c6c97-4d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:06:73:ef:27:ad:d0:41:83:ec:57:d8:02:d2:
f0:05:8c:22:3b:19:de:d4:d6:09:0b:2f:e9:c6:f5:
0b:0e:aa:e0:29:6a:7c:9e:f0:03:96:66:a3:42:84:
7e:c2:9f:30:96:ec:0c:07:e9:72:8c:25:41:16:24:
dc:a9:cd:af:4f:f0:2c:b4:f9:08:45:e5:7f:d8:17:
5b:42:1b:20:92:8d:7b:65:c6:c4:2d:94:40:a3:94:
63:94:f8:8d:68:55:7a:ef:2b:2b:6e:48:80:56:ff:
84:53:b8:a2:90:b2:2b:3f:e9:27:7e:78:ed:ba:5a:
55:3d:b7:d6:23:e4:86:4e:2d:77:3f:40:a5:d8:15:
07:cd:14:08:7c:0b:c9:89:af:9a:8e:5f:b6:c4:5e:
4f:6a:a1:ec:9b:69:d6:14:6a:c8:95:81:70:f3:14:
37:9c:51:be:18:ab:bb:4e:e6:78:37:62:b4:78:ca:
52:2d:d4:d5:40:54:32:97:af:92:2d:07:c6:bc:c1:
b5:22:ba:f3:08:15:7a:2a:03:27:0b:d0:20:37:dd:
b5:62:8e:08:c2:cb:d6:20:75:a8:4d:a5:04:c2:ea:
7d:93:ae:c8:cd:74:b1:73:61:40:c8:64:13:13:3a:
55:cd:8a:3d:f2:22:5f:52:d2:59:9c:f0:a2:00:ac:
0b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:17:59:BB:F1:CE:28:DF:FF:E5:90:2F:F0:40:5C:19:10:E5:A7:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB214E167EBF11EE8FBBEE704AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.75.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f5:36:95:0d:df:56:3c:4d:35:23:b6:28:cd:39:3c:ee:c5:
1e:b5:62:80:92:3c:4d:37:9b:17:3a:80:f7:7b:71:cf:b2:82:
ce:a3:bd:7c:55:75:67:70:7f:84:4d:da:f6:34:19:2b:22:92:
52:ba:46:ba:53:b1:3b:80:e5:23:b5:3a:c4:92:34:21:fa:e8:
d3:f1:45:aa:b5:6e:0b:77:01:92:11:11:d1:51:f5:4d:22:21:
90:af:91:02:8e:5e:47:3c:4c:d8:a7:f5:a0:d4:1d:5b:0f:65:
7d:df:b4:eb:49:d4:f7:c3:f8:bd:60:05:67:c2:1a:fa:3f:0e:
89:45:7d:0d:32:59:86:9b:da:eb:c8:07:01:80:ca:38:cc:6a:
cc:4a:71:fd:58:82:6d:93:51:a2:94:f2:69:d4:3a:5a:74:6a:
12:10:37:01:d8:32:22:7a:00:85:22:6f:ec:ed:dd:72:4a:2c:
c3:34:52:95:87:46:b2:54:0e:5b:da:a0:8d:74:d8:44:e8:52:
52:cb:de:ad:b0:bb:8a:79:39:d6:d5:ca:7d:d7:b6:d7:e8:31:
7d:d1:0f:85:c1:60:ca:9e:6c:ed:09:46:e4:6a:6c:97:df:72:
1e:6f:b7:dc:a1:5d:d6:43:c4:37:54:68:f2:ba:17:e0:83:67:
c5:25:c2:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:20 2024 by rpki-client on console-fra.rpki-client.org