Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDBA0730CCB811EE8CBCFE7C775412E6.roa
File: EDBA0730CCB811EE8CBCFE7C775412E6.roa (raw, json)
Hash identifier: 0TXe5ucWl+iyfkmNZUXD/K40f3tTOI021l3yVSH3OgA=
Subject key identifier: 9E:3E:62:0E:C1:A3:7E:E5:47:6D:4D:8D:B4:E0:65:A5:04:B8:F4:32
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7101
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDBA0730CCB811EE8CBCFE7C775412E6.roa
Signing time: Fri 16 Feb 2024 10:48:33 +0000
ROA not before: Fri 16 Feb 2024 10:48:29 +0000
ROA not after: Fri 26 Apr 2024 10:48:29 +0000
asID: 9009
IP address blocks: 156.246.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 10:48:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28929 (0x7101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 16 10:48:29 2024 GMT
Not After : Apr 26 10:48:29 2024 GMT
Subject: CN=65cf3d81-4a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ac:0a:f8:24:ba:bd:69:94:e9:8c:c8:21:ee:
c8:d2:7b:f4:62:de:cb:44:19:4d:03:30:23:63:a0:
e7:c6:a5:3a:db:04:04:d4:e9:81:e3:a8:35:43:cf:
34:03:5d:be:ca:4e:1c:ab:1a:46:bc:f1:c9:73:4c:
6b:b7:aa:24:ce:75:af:d6:ad:d0:8a:6f:4f:35:97:
ca:30:6b:d4:57:ec:9b:8e:b0:de:0c:cf:fc:64:63:
bc:84:1c:9a:e8:e9:37:60:09:f0:93:b7:af:68:1a:
74:54:65:e9:91:ed:cd:64:cc:7c:6d:e0:b5:e4:cf:
45:8e:34:52:67:2f:85:e9:e1:0f:9e:ba:c7:35:23:
61:4b:a8:7a:a0:f4:98:c5:22:4a:75:13:08:c9:d8:
87:a0:30:34:bc:ef:cf:ec:aa:eb:9c:82:04:65:57:
06:c7:bb:d6:98:36:89:da:92:3d:71:d3:9b:f0:d3:
26:fb:f0:98:84:2d:2f:24:9d:68:39:b0:0b:74:1b:
00:ff:79:5e:fe:b4:34:38:61:35:7e:18:7d:d3:a3:
e1:5c:60:f9:0d:f6:14:6f:0c:23:0e:ca:34:42:85:
ad:00:66:ae:9d:94:0f:c7:b5:a2:49:76:39:7d:ee:
c2:2e:87:91:2d:82:cb:fb:31:69:92:ee:5d:59:04:
90:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:3E:62:0E:C1:A3:7E:E5:47:6D:4D:8D:B4:E0:65:A5:04:B8:F4:32
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDBA0730CCB811EE8CBCFE7C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.32.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6d:bb:ff:b9:c2:f3:c5:0d:75:42:28:92:8d:6a:ac:fc:76:
d7:9e:15:5b:a2:62:ee:09:91:f5:d2:6c:d8:91:51:35:e7:a7:
a4:ff:93:6b:48:a9:d5:19:98:30:b8:53:dc:dc:51:66:b8:70:
22:87:c7:76:ff:de:31:c1:26:80:6c:5c:11:4f:4d:b0:7a:c0:
d8:27:46:e4:64:21:fc:64:d1:72:29:49:58:6a:09:bb:fe:b2:
60:f9:9c:60:f3:c4:35:97:b3:ed:5b:7c:4c:07:03:96:a8:29:
dc:2d:21:0f:28:03:5e:ab:ad:5a:63:ac:9b:ed:cb:1a:7d:73:
e6:c5:ed:38:de:5f:ed:bf:cb:6c:81:34:64:9e:9f:a4:79:05:
66:ce:f4:fe:75:c2:24:c3:8e:b1:d2:73:16:f5:04:ca:f0:59:
b7:4d:ca:e3:ea:39:f9:6d:cd:11:24:ce:c8:83:4c:a6:18:02:
ba:a0:76:bb:f3:82:88:2e:ec:a2:e8:ff:4a:9e:85:f4:2d:1f:
ea:c3:49:19:3a:71:a9:0b:0e:49:91:b4:b7:b8:1b:9c:fd:58:
d4:7f:0a:f6:44:65:47:20:69:16:e3:a0:55:a9:2c:6a:50:92:
df:7b:b3:ba:eb:44:f5:43:18:5d:12:c5:03:9c:e5:67:79:dd:
63:3f:21:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:46 2024 by rpki-client on console-fra.rpki-client.org