Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0D0C093A3B2311EEA2CF54294AD9E6FC.roa
File: 0D0C093A3B2311EEA2CF54294AD9E6FC.roa (raw, json)
Hash identifier: To6IouV06PK9g/wHXYq2Ywn9AUt58kc/kmT9osfI+KM=
Subject key identifier: 55:C3:88:DE:94:09:D6:6F:02:8F:90:7F:94:82:93:59:C2:B2:D8:67
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3565
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0D0C093A3B2311EEA2CF54294AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:20:22 +0000
ROA not before: Tue 15 Aug 2023 04:20:19 +0000
ROA not after: Mon 27 May 2024 04:20:19 +0000
asID: 140627
IP address blocks: 156.247.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13669 (0x3565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:20:19 2023 GMT
Not After : May 27 04:20:19 2024 GMT
Subject: CN=64dafd06-0426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:12:5f:c3:94:a2:d9:06:89:17:45:1c:78:74:
f7:9e:b0:90:68:67:02:34:af:d4:fb:82:28:98:e8:
5a:cc:1c:fb:79:73:7b:4a:75:1c:4b:db:e4:32:4f:
ca:d1:53:c8:7d:e1:61:d7:75:94:c6:4a:82:c7:1e:
55:64:93:19:d4:b2:e1:39:d8:26:e6:43:bc:2e:a0:
08:77:48:d4:1f:f4:7b:1f:68:2a:ea:ce:bb:e9:6f:
be:68:ee:7d:d1:f0:e9:06:d0:c1:8d:53:50:ab:d6:
71:12:a7:62:a0:b3:85:39:ed:11:10:14:45:0c:24:
69:b3:a0:61:56:e0:43:9e:05:38:5d:f2:5f:a5:cc:
19:6b:d1:98:3e:b9:5d:14:00:a6:e7:26:e9:24:49:
bf:2f:4d:6d:16:6d:c5:10:03:73:81:1b:b2:35:e7:
67:1d:ea:d9:6f:82:40:55:32:3d:cf:4a:25:1a:19:
a6:cc:2d:5c:3e:9a:4c:4f:40:f5:c8:ce:ab:e5:d6:
16:a5:95:7c:df:ea:cd:cb:03:4b:8e:51:77:bb:04:
59:79:8c:63:93:b8:6a:7b:6a:7f:92:18:27:97:6a:
c3:6e:8e:6a:50:c3:e5:39:17:72:83:7b:a9:e2:b2:
4a:23:61:f0:06:13:8b:d0:70:d6:0b:f8:2f:f7:61:
26:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C3:88:DE:94:09:D6:6F:02:8F:90:7F:94:82:93:59:C2:B2:D8:67
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0D0C093A3B2311EEA2CF54294AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:8f:c3:c4:a0:34:93:7b:62:52:0e:24:84:28:0c:33:47:1a:
dd:bc:ce:c7:22:2c:30:71:43:5e:2d:ea:ad:fb:8d:c4:df:ef:
ca:09:f7:92:98:d0:c4:8b:2b:5f:fc:f6:2b:73:10:08:6a:99:
29:02:b4:dc:b3:cd:b4:e6:5f:97:1c:d2:53:75:82:e4:90:51:
03:c4:9d:23:08:fc:e6:51:4c:1f:28:24:a0:62:24:1d:7a:cb:
c2:f2:b6:9b:ed:86:cc:84:88:28:49:a3:a7:b9:d3:fd:99:c6:
94:11:6c:79:f2:ac:70:77:d7:64:76:47:90:7b:68:0c:e3:ed:
a3:2e:88:0f:1b:a6:9c:24:23:36:03:d8:7e:83:2a:b2:ed:19:
ab:29:11:d9:52:c6:8e:4d:36:4a:d7:7b:9a:bb:18:19:55:7d:
5e:79:68:67:58:5f:07:88:c1:5c:b5:40:20:af:7b:99:c3:d1:
e3:3c:66:8b:fc:dd:bc:a3:64:de:17:99:1f:ab:c7:a0:31:31:
68:15:cc:45:e9:30:3f:60:86:6b:bb:06:13:65:90:e5:1b:0b:
f1:1d:e5:5e:aa:87:ee:90:e9:01:5d:c7:3d:68:f4:91:c4:98:
c8:b4:7a:dc:07:ff:bf:1f:d9:3c:a9:b6:0d:ff:53:fc:81:76:
76:dd:f6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org