Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14D7B90CFE9711EDBF0F62494AD9E6FC.roa
File: 14D7B90CFE9711EDBF0F62494AD9E6FC.roa (raw, json)
Hash identifier: Em+WlQNjmEbTgnRfKBpxSak19cA8Kax3YBUPnkaHbfc=
Subject key identifier: E9:B3:D1:07:22:77:9C:00:43:5B:62:2E:96:FC:3A:B6:98:06:53:63
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 281D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14D7B90CFE9711EDBF0F62494AD9E6FC.roa
Signing time: Tue 30 May 2023 03:07:16 +0000
ROA not before: Tue 30 May 2023 03:07:13 +0000
ROA not after: Wed 15 May 2024 03:07:13 +0000
asID: 63888
IP address blocks: 156.255.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10269 (0x281d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 03:07:13 2023 GMT
Not After : May 15 03:07:13 2024 GMT
Subject: CN=64756864-35a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0f:bd:05:9b:5d:5b:96:d2:44:4b:84:6e:3a:
62:84:ee:76:21:8e:79:68:cd:0a:11:8e:d1:ae:10:
c5:1a:99:3c:00:91:ea:08:ca:da:b5:3d:57:e5:1a:
40:ca:ff:f4:1b:ac:1a:6f:de:a6:30:54:86:45:1f:
55:01:cd:79:ed:90:65:2f:ed:fb:f0:b4:75:61:89:
45:bd:6f:4c:cf:03:bc:4b:02:54:88:8f:f6:0a:2b:
9f:4e:10:77:53:9d:48:1f:98:d8:20:06:ae:f3:eb:
da:41:ff:bd:2f:52:96:ab:0c:31:64:c3:22:ad:a1:
a3:b6:7a:da:59:51:42:8d:5b:c4:df:57:13:da:7e:
80:0c:79:15:26:72:f0:d8:84:be:6a:c9:2b:f4:4a:
49:2e:a5:1b:1d:8f:01:56:86:96:35:a8:35:ac:9f:
24:ef:cb:21:66:76:a7:c1:89:9d:70:28:e4:e8:dc:
22:0a:99:76:5e:fe:bc:d1:b9:9a:f2:ce:fa:4a:2d:
1d:ba:80:59:a2:0a:90:a4:c3:fb:f8:6c:31:0e:e4:
7d:8c:c7:cb:fc:93:51:15:14:32:7f:51:78:c5:0e:
81:6e:fc:fe:5b:f4:3e:ca:b3:fa:28:27:6b:5b:2d:
43:c6:4a:10:3b:93:73:5c:72:61:a4:e7:19:a3:d4:
f8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B3:D1:07:22:77:9C:00:43:5B:62:2E:96:FC:3A:B6:98:06:53:63
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14D7B90CFE9711EDBF0F62494AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.113.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:0e:af:8c:15:5f:f2:16:2c:c4:01:b9:bc:e3:24:e5:0b:8c:
67:cc:d0:11:7f:f6:59:b1:2a:28:19:ff:34:d9:cb:55:04:08:
42:49:48:f3:de:2d:d3:86:82:9d:bc:1a:de:0a:f1:0d:00:fb:
61:19:3c:c8:c6:71:ee:31:1c:a7:5f:92:ea:9a:d7:02:e7:29:
db:06:f8:f6:34:da:b7:4f:b9:32:09:61:a3:44:5a:28:fe:b2:
a7:f8:7b:7d:6d:c6:3b:34:86:42:6f:72:78:7a:88:8c:ba:4a:
85:a7:20:b3:e7:3d:f8:e2:80:f6:10:7b:04:fd:d7:67:64:92:
6f:07:43:15:3a:16:17:1d:ab:ed:f2:b5:c7:5c:c6:69:af:39:
79:1e:fe:8a:a7:b9:9d:00:76:16:b1:7e:39:92:87:bd:7a:62:
3d:60:ea:fb:6e:a5:91:ca:cc:97:80:f0:a5:09:46:7a:25:b1:
b7:31:5c:c8:94:66:db:d5:c4:34:d7:10:a8:0f:71:5b:e4:cb:
f4:b3:61:21:97:52:95:d7:04:8c:c4:80:ba:4f:01:46:25:9e:
1f:76:12:d8:54:7d:0e:ed:78:9d:26:ae:92:83:c3:e3:19:8d:
42:92:b7:1b:e4:22:7d:80:7b:72:ad:92:8b:04:a0:78:c7:57:
ae:68:c2:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:43 2024 by rpki-client on console-ams.rpki-client.org