Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A13B66C7FF011EEB844733D4AD9E6FC.roa
File: 0A13B66C7FF011EEB844733D4AD9E6FC.roa (raw, json)
Hash identifier: 1fZ39sS9vgQQo4OLnjIubrsdYqgBtnCMNkJxO0MxPTA=
Subject key identifier: 6D:E7:AE:B7:66:92:02:9F:AB:BF:57:7B:3D:C0:E8:47:55:DD:8E:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4672
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A13B66C7FF011EEB844733D4AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:39:03 +0000
ROA not before: Fri 10 Nov 2023 17:39:00 +0000
ROA not after: Sun 03 Nov 2024 17:39:00 +0000
asID: 63199
IP address blocks: 156.227.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18034 (0x4672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:39:00 2023 GMT
Not After : Nov 3 17:39:00 2024 GMT
Subject: CN=654e6ab7-50c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c1:8c:f8:ee:2e:d6:cf:fa:c5:ef:0c:db:49:
8b:db:a8:9c:e9:19:4e:a5:9e:db:6c:4e:52:b6:b5:
3a:c7:91:a4:12:71:5b:1d:52:e9:f3:ae:5b:1d:b5:
27:fb:2a:58:cb:8c:99:75:fb:70:8e:42:f4:be:97:
ab:33:71:81:37:ab:a4:60:51:8b:d4:41:7a:97:46:
82:9f:72:91:f2:77:23:2f:95:1c:dc:65:31:89:d5:
8d:bd:fc:b7:5a:ea:77:7b:38:ce:1e:e9:2c:aa:d0:
ff:82:4e:7e:28:47:bc:82:f0:04:f0:56:34:66:be:
70:dd:42:d9:a1:ed:e0:09:36:d3:d1:c3:0e:2a:cd:
15:bd:30:85:0d:6f:ac:94:00:52:a4:cb:2f:8d:29:
25:d0:98:89:17:9b:8c:1d:1f:33:90:dc:24:fa:08:
02:b3:20:42:0e:66:ad:4d:ad:b1:2b:8b:54:47:53:
db:d6:d8:89:bf:87:cc:a3:c7:d4:9c:da:c8:8f:09:
a4:10:c6:18:bf:2d:d1:ce:ac:78:8d:35:d7:c1:21:
8d:2d:34:6d:0c:6f:ea:a0:37:ae:ae:5f:3c:5c:ae:
a2:9c:00:30:e1:10:71:ff:c5:3a:87:b7:29:b7:34:
e5:74:61:16:93:69:50:5f:50:31:e0:ee:98:68:2d:
17:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E7:AE:B7:66:92:02:9F:AB:BF:57:7B:3D:C0:E8:47:55:DD:8E:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A13B66C7FF011EEB844733D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.240.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:8b:7d:88:b4:86:52:fa:fc:bb:8d:9e:67:3e:e3:a8:93:b3:
c1:24:b8:23:a5:24:46:18:4b:76:eb:63:db:04:9e:31:81:4f:
b8:4d:b0:f9:3b:d6:8d:fb:c1:53:fd:7d:1d:d8:55:38:82:56:
47:db:6a:2a:77:52:5a:c1:b3:f7:bc:8a:a9:d7:16:28:2c:5a:
dd:a8:39:b4:65:20:aa:3e:04:1b:a1:63:6e:59:5e:66:4a:a0:
ed:6f:7d:bf:96:2c:89:3a:8c:e0:eb:33:d4:28:7f:88:d3:e9:
aa:6f:60:51:45:0c:87:c9:3c:8a:1b:a6:00:a1:4d:e4:cf:b9:
76:9d:a5:38:84:05:7c:61:96:49:4a:07:b3:f9:6d:b5:27:b0:
22:9e:8b:5d:3c:5e:98:96:41:91:cf:89:08:b2:23:5c:d6:37:
5f:17:dd:2e:f0:fe:a7:5e:00:e5:5c:d9:0b:27:5b:b4:31:de:
fd:01:27:50:de:ed:82:96:62:41:d9:b4:66:b6:23:b7:e5:42:
ec:f0:4e:70:df:85:4b:a5:4e:f6:f2:26:1a:e8:46:06:b2:7f:
92:cb:c3:68:c0:46:d9:fb:11:5a:d4:2a:08:54:b3:9c:14:10:
81:9b:6d:5a:66:32:33:ee:1e:c4:c3:79:ca:e6:e7:9a:20:78:
0c:66:a1:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org