Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13A7509C6D5F11EE9BF2FA694AD9E6FC.roa
File: 13A7509C6D5F11EE9BF2FA694AD9E6FC.roa (raw, json)
Hash identifier: JeRYm4S3E5iiT7tN3ytnrdFtjbCwB0ZxJg5uBzAuG1M=
Subject key identifier: BE:A1:D8:30:5D:7C:66:37:23:33:E9:4D:7B:99:71:23:46:B9:C6:2E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3EF1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13A7509C6D5F11EE9BF2FA694AD9E6FC.roa
Signing time: Wed 18 Oct 2023 02:36:01 +0000
ROA not before: Wed 18 Oct 2023 02:35:58 +0000
ROA not after: Sun 13 Oct 2024 02:35:58 +0000
asID: 132585
IP address blocks: 156.241.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16113 (0x3ef1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 02:35:58 2023 GMT
Not After : Oct 13 02:35:58 2024 GMT
Subject: CN=652f4491-e602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5a:1c:cb:a4:dc:70:9a:b8:0a:d7:9f:bd:94:
27:ac:17:5c:80:7b:d9:bf:20:1c:66:c4:d0:ea:af:
28:86:6d:46:9a:d2:79:4d:89:e5:65:e2:67:94:97:
9d:5e:b8:c6:0e:22:95:21:74:3c:b5:8c:80:31:38:
cc:96:7d:49:95:ad:81:03:46:12:64:70:7a:2b:14:
2f:f5:df:f7:b1:a4:9b:2f:e7:da:49:27:f7:7b:53:
fd:22:21:7e:20:d3:19:e9:73:94:2c:65:4d:dc:4e:
1a:21:ff:15:91:a2:0d:73:4a:a7:e7:4e:23:b7:27:
04:50:86:a5:d1:44:15:0f:12:97:7c:f5:83:ce:ac:
ad:0f:6d:c9:1c:f1:ad:7f:4e:df:ea:fb:72:4f:2a:
6f:e9:25:cf:95:95:3e:ad:dc:5e:af:24:f3:29:6e:
84:01:e9:f5:f1:90:8f:3a:18:44:b7:83:97:01:82:
1b:90:a2:4c:76:54:78:a5:26:92:71:6d:7c:22:c1:
a6:d1:de:ed:b4:7b:83:c2:f8:62:67:2a:f5:7e:5c:
1a:72:76:ce:80:43:f1:37:56:f6:d3:95:fd:86:a0:
b0:ce:01:0a:17:c3:3e:ff:91:a5:c0:59:49:48:2c:
63:b9:c3:3f:a6:19:8b:2f:3a:47:bb:d4:fc:d0:99:
8b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A1:D8:30:5D:7C:66:37:23:33:E9:4D:7B:99:71:23:46:B9:C6:2E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13A7509C6D5F11EE9BF2FA694AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.6.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:39:c6:63:5f:23:5a:52:ce:8e:08:4d:22:45:83:67:f6:b9:
24:34:97:db:47:47:cd:96:1a:da:99:6c:c9:3f:3c:8d:db:44:
53:ac:6e:e4:7e:48:de:a3:87:0a:22:e8:08:0c:c3:f4:c4:8d:
c6:6a:54:e1:6e:2c:ab:34:a7:66:ee:55:d3:cd:83:7a:b3:f8:
52:94:b4:93:e3:94:fc:a9:1d:ff:f1:97:f9:32:44:a1:05:6a:
0b:77:77:0f:98:1f:76:c9:0e:3e:e4:48:20:73:97:58:f7:70:
dc:a2:4b:16:04:f1:5a:42:73:dc:43:c1:2b:69:b5:10:c3:a1:
2e:30:e2:ec:3c:25:24:76:be:7c:ca:48:cc:c6:81:96:c9:f9:
1f:ef:8a:c1:8a:ac:a8:96:31:d1:19:5e:03:3e:31:af:c3:02:
b4:56:07:55:1b:d2:c1:49:0f:07:98:a3:53:e8:7d:23:62:e2:
ca:21:38:a4:ea:15:5d:17:9e:c3:86:32:d2:aa:f2:ad:60:7d:
d3:4b:cb:c4:bb:14:69:1d:6a:6a:19:50:ba:b7:9f:19:45:53:
ab:7f:a8:fa:ff:5d:8d:87:96:fb:31:47:1e:d7:86:9b:14:6e:
81:8a:47:3c:ad:0c:a3:22:1b:38:5f:45:8b:91:70:1d:b7:0e:
40:75:cc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:05 2024 by rpki-client on console-fra.rpki-client.org