Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19D26A98FE9611EDAF7A7D464AD9E6FC.roa
File: 19D26A98FE9611EDAF7A7D464AD9E6FC.roa (raw, json)
Hash identifier: jEhduNq03Mf2wUyuOr6opgndSZkqePrIYIk8yJD5Dv0=
Subject key identifier: 20:DD:A0:EC:F2:97:8B:BC:92:B8:1F:05:D5:4C:09:61:B5:00:1C:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 280F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19D26A98FE9611EDAF7A7D464AD9E6FC.roa
Signing time: Tue 30 May 2023 03:00:15 +0000
ROA not before: Tue 30 May 2023 03:00:11 +0000
ROA not after: Wed 15 May 2024 03:00:11 +0000
asID: 63888
IP address blocks: 156.255.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10255 (0x280f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 03:00:11 2023 GMT
Not After : May 15 03:00:11 2024 GMT
Subject: CN=647566bf-d019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:9d:42:13:cf:cb:2f:4d:d0:5f:bf:f9:e7:90:
ee:0f:23:6c:60:46:73:1f:59:8e:e4:07:6c:28:16:
1a:b1:57:e0:df:61:12:38:80:08:8b:61:a5:2f:28:
3e:c4:b8:7e:0b:3d:ba:30:bd:84:29:45:ae:26:e3:
a1:6c:ca:08:9f:6d:11:a8:c4:ae:92:9e:cf:db:50:
9a:e6:f1:42:fa:15:25:86:a7:72:45:aa:ce:06:75:
b2:9f:6f:cc:c8:4d:6e:6b:cd:b0:a6:ee:34:6a:73:
21:78:4a:ff:0c:6d:12:4b:0a:0e:a9:ff:55:47:e4:
7c:8f:c8:ce:2a:e0:23:c2:7c:7c:21:c0:0b:64:25:
8a:61:33:a6:5a:44:41:38:d0:6f:02:80:c1:2c:a6:
d9:20:41:2c:cb:37:c4:4a:af:d8:c1:d4:08:3e:4c:
78:b3:dc:2a:d1:36:13:f9:24:60:9a:7b:08:8e:8e:
d5:e3:fb:e6:cf:7e:a2:8f:21:cd:37:16:75:de:70:
df:b4:62:38:b3:e4:76:ab:05:c0:93:77:2e:aa:f0:
14:9f:30:7c:06:97:fd:a4:36:c1:04:8f:3e:17:29:
5e:0b:c5:01:27:0b:58:e7:62:f5:ec:0e:cb:6c:c7:
40:57:fb:9f:74:f7:24:ff:51:c2:8c:f7:81:0a:15:
3f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DD:A0:EC:F2:97:8B:BC:92:B8:1F:05:D5:4C:09:61:B5:00:1C:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19D26A98FE9611EDAF7A7D464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.124.0/24
Signature Algorithm: sha256WithRSAEncryption
11:6b:00:59:2f:8d:99:b4:42:f2:73:d1:8f:52:3a:cd:09:e0:
09:07:3b:8e:ae:4b:0f:61:ed:d9:d7:af:80:97:15:9d:fa:dd:
1d:39:49:76:f6:b2:e2:67:8f:d3:b2:76:83:79:d1:84:51:54:
5d:95:15:d2:31:ed:2d:f5:9c:48:bf:ac:ed:ee:2f:9b:68:f2:
53:71:e7:52:b1:a0:e8:5b:ab:80:2a:59:0a:c4:20:d9:0c:e7:
b3:c1:93:f9:70:4a:d2:d4:5b:91:48:5b:a6:b4:54:3f:fa:d1:
43:9c:83:2f:66:53:19:db:16:42:cc:b0:3f:32:f6:1d:e6:fc:
c1:2a:f5:8f:82:62:b2:80:53:dc:d8:a2:c4:a2:da:0d:e4:4e:
b4:94:34:e8:3b:aa:59:f6:11:df:a2:23:dc:54:5a:e9:30:7c:
13:97:08:9f:85:89:dc:23:cd:07:e2:22:7c:21:de:26:1e:53:
b9:a4:b8:fc:6a:fc:4a:89:76:4c:4d:df:d2:a6:01:93:88:6c:
29:ac:a0:d5:98:9e:67:58:25:76:f8:6e:70:e6:94:1c:82:65:
c6:d9:40:42:eb:c3:a1:7c:bb:d5:bb:1e:64:fb:3a:54:52:0d:
54:b0:fb:85:53:6c:43:78:cc:30:7a:e4:a6:18:dd:d5:f4:59:
78:2a:cd:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:49 2024 by rpki-client on console-ams.rpki-client.org