Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11F326DC3B3B11EE8BCEAE714AD9E6FC.roa
File: 11F326DC3B3B11EE8BCEAE714AD9E6FC.roa (raw, json)
Hash identifier: O36IndpgZFArA2rgOxICnxnNA5UssmTwzQRFaQBdbxc=
Subject key identifier: B4:88:86:23:97:17:FF:B0:BB:6D:89:36:E3:09:75:07:B0:E1:78:9C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3641
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11F326DC3B3B11EE8BCEAE714AD9E6FC.roa
Signing time: Tue 15 Aug 2023 07:12:19 +0000
ROA not before: Tue 15 Aug 2023 07:12:15 +0000
ROA not after: Thu 15 Aug 2024 07:12:15 +0000
asID: 24413
IP address blocks: 156.230.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13889 (0x3641)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 07:12:15 2023 GMT
Not After : Aug 15 07:12:15 2024 GMT
Subject: CN=64db2552-9e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2c:4d:53:56:d9:7b:8f:af:8b:63:16:3e:49:
23:73:cb:34:58:27:1e:07:59:0c:69:14:53:4f:58:
08:1e:c6:85:dc:a5:1c:bf:b0:e0:eb:94:0c:74:9f:
b2:b5:fb:c2:bc:eb:76:7e:eb:2e:94:fd:66:9d:e4:
a7:7b:68:8f:c9:d6:5d:1b:00:57:3e:b2:66:55:ca:
cb:e7:08:31:59:42:bd:2e:cf:7a:e7:09:55:bf:2d:
d4:6e:91:ce:34:bf:7c:ee:41:8d:05:d8:bd:08:4a:
3b:de:5c:99:3b:78:db:a7:c6:d5:c0:71:74:5c:51:
8c:02:5f:99:35:d2:b9:a7:06:c1:e8:cb:0a:93:78:
87:8e:d1:09:12:a2:ad:bb:52:54:7a:4b:4d:4e:11:
b2:a4:12:49:c6:e5:f6:bb:69:39:9e:87:46:69:82:
e2:c3:7e:d1:98:e0:90:0c:95:9f:4c:90:72:c2:7e:
5d:ab:06:19:1f:a7:6d:26:a6:7f:ee:de:20:5e:72:
36:de:6e:c2:15:21:aa:f8:1b:51:d1:a3:51:8c:d9:
42:cb:a7:17:76:b2:d0:9d:14:d3:c7:2d:68:ec:b3:
cb:28:52:6c:08:dd:4b:b2:14:e5:11:43:79:e8:0f:
89:c8:f0:c1:95:90:9e:bf:38:6a:dd:4c:8a:40:68:
51:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:88:86:23:97:17:FF:B0:BB:6D:89:36:E3:09:75:07:B0:E1:78:9C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11F326DC3B3B11EE8BCEAE714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.11.0/24
Signature Algorithm: sha256WithRSAEncryption
37:9c:5d:49:d1:db:3e:5f:dc:86:79:58:3d:37:2c:31:46:c7:
5d:84:d3:c3:b9:f4:20:c3:a1:9f:eb:48:29:30:59:ec:e3:74:
17:c0:ca:14:62:4b:1d:d7:0a:a0:71:3b:2d:c2:5a:fd:2e:e7:
32:14:87:0c:f4:27:cf:2b:80:fe:46:f4:a7:a4:15:8a:93:51:
0b:55:f7:06:6b:4d:4a:28:f1:9b:d7:29:77:69:34:18:2d:f5:
60:18:6c:fb:a5:c9:4a:e2:9b:2f:a1:d9:ab:fa:69:68:ac:a6:
00:13:f5:76:b7:32:47:31:3e:b9:52:44:69:67:f2:bd:d4:8c:
f2:50:5f:f4:bf:82:fe:d4:28:5a:3d:03:f1:f5:24:3c:ba:c4:
26:5c:52:a7:46:97:8e:c3:fd:82:3a:05:5f:45:80:1f:3f:9a:
be:f6:93:6c:3b:75:f4:b8:32:a2:cb:3e:c9:59:80:e2:b9:29:
e9:f6:cb:73:15:30:22:50:66:68:30:f6:11:55:f1:90:9a:d8:
89:5a:dc:01:96:b3:19:23:33:9d:20:e4:fb:56:96:b5:13:aa:
fc:22:cb:55:df:e8:19:52:b2:48:98:a1:e1:57:27:74:05:46:
6b:f4:d9:06:d5:97:d1:d8:e4:cd:73:e4:b1:e1:ee:a8:41:19:
ed:8e:4a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:11:55 2024 by rpki-client on console-fra.rpki-client.org