Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04C4BC763B2E11EEAA618B4A4AD9E6FC.roa
File: 04C4BC763B2E11EEAA618B4A4AD9E6FC.roa (raw, json)
Hash identifier: 1cPJUzuHAfzi9r6r1zI0AORw/U0WQM+c9n9R8DtiWZU=
Subject key identifier: 2F:B6:6A:02:90:0D:A3:B7:83:BA:A3:93:9D:BA:3D:2E:50:1F:C5:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 360F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04C4BC763B2E11EEAA618B4A4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:38:53 +0000
ROA not before: Tue 15 Aug 2023 05:38:50 +0000
ROA not after: Mon 27 May 2024 05:38:50 +0000
asID: 140627
IP address blocks: 156.247.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13839 (0x360f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:38:50 2023 GMT
Not After : May 27 05:38:50 2024 GMT
Subject: CN=64db0f6d-aa9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1c:ac:ed:74:5f:a7:43:82:55:1a:39:15:34:
39:a0:c7:f4:ee:07:35:be:03:d5:b4:c1:3d:75:45:
18:af:6a:b9:77:7b:60:ce:31:85:37:a8:35:da:fc:
87:10:b8:23:92:62:d6:ec:a8:12:ca:80:f3:19:0b:
ef:e9:5d:29:cc:b6:2a:19:9d:ad:c1:35:dd:d7:e8:
a4:f4:08:54:63:54:35:40:12:db:9b:3e:c4:96:37:
d1:fa:34:63:3b:d6:40:74:a4:b8:05:c0:dd:eb:09:
44:44:85:2e:56:9b:2c:11:e0:7b:bf:a8:f6:ba:85:
6d:1d:b3:a9:a7:3e:fe:99:8b:1c:59:d9:e6:6c:21:
68:3f:e3:c2:36:a6:8f:90:21:87:13:63:37:f5:41:
aa:82:2b:0a:ae:42:f2:3e:70:c0:70:01:99:65:37:
2c:fc:0a:81:6d:86:70:f7:8a:59:c1:7e:a8:c7:3c:
09:58:4f:df:86:40:5b:af:61:60:e4:4e:8c:c4:a5:
b6:67:95:bd:08:67:f3:06:dd:a2:72:84:01:08:ec:
2c:84:de:2f:17:40:69:c4:0c:e0:85:4c:08:63:76:
03:20:ca:11:a5:05:45:95:81:ca:a0:49:35:ef:31:
e8:0d:da:95:f2:ab:e6:fa:85:47:da:25:e9:32:1a:
cd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B6:6A:02:90:0D:A3:B7:83:BA:A3:93:9D:BA:3D:2E:50:1F:C5:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04C4BC763B2E11EEAA618B4A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.166.0/24
Signature Algorithm: sha256WithRSAEncryption
48:71:78:2b:09:6e:e4:e3:8d:08:45:2d:99:15:1c:2e:f4:5b:
67:62:8b:ce:8a:98:a9:f3:0c:d1:53:89:15:b7:04:b3:70:38:
09:1b:64:3c:c0:d2:ad:07:81:fc:4c:90:17:4f:2e:aa:b8:89:
d1:f9:9b:6b:c6:19:4c:f9:cc:20:22:f9:c9:53:b6:e1:2d:2a:
d7:47:07:15:bf:f4:48:69:4c:36:5f:ce:b6:83:11:2d:de:4d:
10:ce:c7:ab:9f:55:5c:e1:ac:51:63:12:ba:a1:d9:a3:41:91:
4d:eb:0a:d0:54:dc:23:37:cb:fb:cf:f3:b5:af:b8:e9:0b:e9:
ed:2d:b5:7d:3a:ee:fd:d5:be:e4:91:9b:eb:95:5c:de:5e:ec:
e8:cd:ea:a6:34:6d:c7:dd:fa:a4:b1:8b:b2:fd:fb:3c:a3:ce:
a4:88:06:18:e7:fe:3c:55:a0:36:07:d0:1f:02:ad:b6:a1:21:
42:85:81:41:8f:44:d0:49:26:6c:1e:80:6c:46:bf:b5:ad:99:
09:28:4e:e9:f3:af:f1:06:ac:b5:89:f6:c7:e2:27:71:26:a3:
eb:53:e4:7c:3d:9a:be:a8:8e:4a:52:08:08:2d:ee:09:a9:8e:
17:5b:b9:ed:37:b7:aa:1b:72:8f:08:a1:15:04:49:0c:41:48:
b9:41:26:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org