Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16EBA77E3B2A11EE92A18F3E4AD9E6FC.roa
File: 16EBA77E3B2A11EE92A18F3E4AD9E6FC.roa (raw, json)
Hash identifier: bq8zSAovpM5hqR8Edf4N939PVUm6wnuH7OD0FrBmWDY=
Subject key identifier: 37:35:33:FF:BA:76:29:67:22:85:A3:5F:5E:6C:6D:83:5C:B4:1F:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16EBA77E3B2A11EE92A18F3E4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:10:45 +0000
ROA not before: Tue 15 Aug 2023 05:10:42 +0000
ROA not after: Mon 27 May 2024 05:10:42 +0000
asID: 140627
IP address blocks: 156.247.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13779 (0x35d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:10:42 2023 GMT
Not After : May 27 05:10:42 2024 GMT
Subject: CN=64db08d5-af82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:56:1c:88:94:7b:19:c8:cd:f0:b1:17:6b:ca:
35:4a:b9:af:a5:d1:69:90:24:63:b1:3a:05:ee:43:
a8:18:84:7a:f4:95:5a:9e:32:1c:7b:9f:c8:55:23:
35:30:10:55:6b:b4:8f:5f:2d:8e:ee:ae:06:5e:fd:
27:88:4e:7e:4e:4c:21:8c:c7:88:c6:a8:67:39:75:
8e:b0:7d:1d:67:a0:ae:11:f0:81:a3:a5:39:d9:81:
50:23:c4:c9:86:ab:89:26:d4:31:34:0f:a8:4f:d7:
5f:3d:a6:49:55:06:ff:01:88:d8:b7:31:7d:94:0d:
c7:53:aa:62:69:0d:4d:14:1e:1e:9b:57:05:f5:a9:
64:86:97:38:0e:4c:8a:3e:6f:4d:1b:c5:02:24:e6:
6b:81:06:e5:6e:15:0d:31:29:b5:b4:da:6a:1d:8d:
17:17:0d:b6:0a:37:e2:e3:db:68:fc:2a:8a:72:d5:
c1:2b:aa:cc:5f:3c:39:d3:5d:fd:34:a8:18:16:01:
64:2f:8c:6e:57:00:43:ed:d7:f9:d1:a6:bc:21:3d:
89:20:cb:de:9a:af:92:5c:e0:3f:a9:b5:58:c1:10:
71:67:17:f0:6b:78:ee:99:5a:ea:9c:da:b5:c9:45:
b4:fe:cb:0a:b4:85:72:39:a7:d9:b8:f5:bf:11:fb:
8b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:35:33:FF:BA:76:29:67:22:85:A3:5F:5E:6C:6D:83:5C:B4:1F:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16EBA77E3B2A11EE92A18F3E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.136.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:01:77:60:f1:30:dd:2b:6e:2f:de:5e:6a:ce:b7:e0:16:14:
64:69:dc:a4:56:df:11:1a:14:e4:8b:ab:6e:81:57:70:93:77:
51:f2:f4:9c:9a:48:91:36:c6:a6:b8:5c:da:92:bf:2c:d4:7c:
0f:39:af:2c:d5:90:c3:ad:cc:5b:f2:d1:f4:6c:be:85:28:19:
7f:63:a8:a1:54:cb:4f:8c:1f:f3:af:64:af:47:da:c7:1b:89:
9c:11:ab:f2:af:18:02:c6:e4:ff:0b:31:ae:14:80:80:6e:96:
97:ca:e4:9f:ad:c2:0f:59:2f:73:c2:b6:22:2b:95:08:49:34:
31:15:db:2f:dd:5f:5a:98:92:2a:3b:b3:b8:7c:87:f1:6d:fd:
a8:20:9d:4d:83:54:7b:2a:73:b3:44:79:33:54:41:08:b3:95:
62:1e:ef:a7:1e:1c:95:3b:98:f0:b0:2e:e8:2d:4d:21:16:e8:
14:26:8f:02:84:23:7e:c0:37:04:d2:37:44:69:ef:52:9c:57:
ca:6d:bc:22:c8:d6:8b:aa:75:b2:61:7e:1e:e5:22:10:22:5a:
39:59:20:04:c1:d8:c8:46:45:c5:fd:35:83:3d:68:ef:45:6b:
1e:a9:6a:5f:16:9b:e1:98:27:02:c4:8b:98:51:40:a0:01:3e:
07:59:68:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:10:03 2024 by rpki-client on console-ams.rpki-client.org