Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/135C9C683B2411EEA5472D2C4AD9E6FC.roa
File: 135C9C683B2411EEA5472D2C4AD9E6FC.roa (raw, json)
Hash identifier: z8lwjJXrpD2JnwnyHyYx4KT3qoUCHsCyTcC92HXiTjc=
Subject key identifier: 97:A4:A0:73:BE:4A:C1:4B:97:64:75:04:CD:2D:BE:1D:0D:89:C9:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3575
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/135C9C683B2411EEA5472D2C4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:27:43 +0000
ROA not before: Tue 15 Aug 2023 04:27:39 +0000
ROA not after: Mon 27 May 2024 04:27:39 +0000
asID: 140627
IP address blocks: 156.247.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13685 (0x3575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:27:39 2023 GMT
Not After : May 27 04:27:39 2024 GMT
Subject: CN=64dafebe-f6bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:56:e7:b0:7b:20:04:ff:42:4d:c1:a8:c6:25:
fe:5c:ae:9d:76:d3:11:23:5c:66:3f:87:57:13:4a:
f3:e7:d6:68:f2:2f:b8:8d:09:b5:16:18:ac:0c:c4:
b9:a8:c4:fc:3f:f0:57:2e:d8:5a:b7:eb:87:2c:6a:
62:c7:90:25:11:e2:a5:e3:00:96:7f:47:22:34:a4:
e8:02:be:23:2a:fd:e9:ab:f1:88:0f:b2:b9:2c:08:
c1:17:7d:38:f0:18:67:6e:d2:8e:ef:40:84:c2:e3:
ed:4e:bd:f2:2b:3d:52:08:36:90:ee:ca:b3:cc:00:
59:4b:55:60:48:c8:b7:f7:8d:2f:d3:2b:78:49:1a:
37:8c:fc:c1:4b:9c:05:5c:c5:7e:25:0f:76:3e:46:
f4:86:39:82:66:91:e1:a0:86:9c:86:0b:6b:f9:6d:
36:8f:fb:0b:b9:97:36:ea:79:29:2f:1e:27:e7:56:
ab:5c:ca:d8:a5:1c:88:e5:58:74:ec:5f:37:6e:5f:
9b:1b:d8:64:d8:1e:d8:51:b1:29:2f:6f:e4:cd:f3:
84:6f:72:0e:9d:d1:ca:27:75:db:7e:08:70:68:e2:
e1:b9:60:b3:da:81:9d:b7:1a:c5:80:98:a8:71:86:
7a:ad:d3:36:cc:12:37:6d:82:52:1e:c4:03:94:1e:
aa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A4:A0:73:BE:4A:C1:4B:97:64:75:04:CD:2D:BE:1D:0D:89:C9:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/135C9C683B2411EEA5472D2C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.217.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:6f:93:63:87:57:d3:49:e8:5a:b3:d7:cc:74:2f:0b:aa:85:
0a:79:68:6a:85:2e:0e:f7:15:56:31:9f:94:4c:fb:11:40:5e:
e9:58:fe:bc:34:80:6c:ed:c6:61:43:73:29:3d:11:9b:fb:ea:
20:85:b7:f2:a8:4b:c3:09:d4:8e:73:c8:06:72:fc:a0:82:ad:
d3:2f:67:5a:e3:b6:1a:04:f2:81:28:a7:f1:f3:0b:3e:05:09:
04:57:a9:e8:30:33:73:1c:d4:0a:76:aa:f8:c0:1c:23:de:eb:
01:ac:46:e0:1f:3e:2e:ee:2b:98:07:9d:40:b0:8c:58:e5:26:
4f:13:5e:2e:9a:6c:d9:e7:96:7e:9c:ab:4c:0e:dd:4d:d3:43:
ef:1b:d8:a2:98:4d:57:96:32:60:8d:3c:1a:bc:d1:25:40:12:
95:86:89:d0:f3:f0:a9:90:f0:bf:4b:44:80:2d:21:4d:cc:f8:
b1:96:d8:5d:27:7d:99:b0:dc:2f:a0:85:99:f9:d7:63:ce:36:
69:a1:5a:12:16:b5:4f:a8:6f:a4:0e:d4:ca:50:3c:c0:e0:b9:
45:18:e3:32:0c:10:58:ec:b3:a7:91:5e:f0:f5:75:88:b1:b2:
4f:11:bd:ab:5f:ff:dd:c0:0f:9c:83:29:ca:12:58:2c:ca:fa:
c7:58:56:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org