Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FE4943E84F511EE80B7604C4AD9E6FC.roa
File: 1FE4943E84F511EE80B7604C4AD9E6FC.roa (raw, json)
Hash identifier: athBROCK8mEMHC5oGirKUtMEhBHam6rCGio9/VGCjGM=
Subject key identifier: 86:7B:7D:86:BA:0C:E4:C0:CD:74:3F:26:31:B4:69:E9:45:96:57:0E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4967
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FE4943E84F511EE80B7604C4AD9E6FC.roa
Signing time: Fri 17 Nov 2023 02:58:03 +0000
ROA not before: Fri 17 Nov 2023 02:58:00 +0000
ROA not after: Tue 12 Nov 2024 02:58:00 +0000
asID: 397630
IP address blocks: 156.225.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18791 (0x4967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 02:58:00 2023 GMT
Not After : Nov 12 02:58:00 2024 GMT
Subject: CN=6556d6bb-6989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f2:2f:d8:21:89:e4:d9:80:01:ec:4f:7d:aa:
ae:b7:1a:64:56:ae:7b:15:e3:65:8d:bd:96:30:52:
4d:03:51:ba:8c:43:76:8c:3e:ba:0d:8b:99:df:49:
02:ef:80:c0:24:38:40:df:4c:b5:f0:02:1c:1b:76:
12:be:56:e7:30:19:99:b9:3c:e7:a2:d9:f1:fd:2c:
f3:4c:47:b7:78:37:29:1f:bb:f4:f1:e7:68:4c:5d:
52:84:7d:c2:cf:59:cc:b8:20:23:93:d7:17:c6:1a:
10:a5:13:e7:6a:96:4e:ff:b1:74:fe:a3:cd:bb:46:
74:99:b9:64:89:49:f0:71:7f:34:b5:66:c3:11:07:
1f:f5:22:a8:a3:b0:73:ad:41:7d:f2:bc:c0:cc:84:
3c:7a:4f:d5:4a:ea:b6:36:7f:3a:91:74:db:ed:24:
87:b1:7c:eb:4f:52:2f:d8:1d:65:50:6e:05:7a:bb:
cb:5c:c0:2c:cb:8c:f8:96:64:bc:c3:5f:a3:41:cf:
94:66:5d:75:20:d7:21:21:1e:a4:79:06:92:15:51:
32:08:32:32:c0:de:0b:70:d5:28:bf:2c:48:ab:0f:
64:4c:f8:e9:02:b2:ef:ab:6e:20:a9:3a:32:35:3b:
59:2a:ab:60:ba:f9:17:b1:bd:17:d5:46:24:cb:b2:
41:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7B:7D:86:BA:0C:E4:C0:CD:74:3F:26:31:B4:69:E9:45:96:57:0E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FE4943E84F511EE80B7604C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.11.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:50:fa:7a:9b:eb:aa:da:4a:c4:b0:fd:fb:3d:66:6d:da:37:
03:c7:34:ca:1b:8f:51:14:5a:db:d0:ee:ed:f8:95:33:fc:c6:
7f:96:d5:22:be:28:8d:42:6c:84:73:d5:f8:51:b7:72:00:b1:
bf:fa:e1:f7:4b:a7:e4:76:10:7e:21:da:60:ef:76:42:73:b2:
c1:1b:44:d7:cf:54:a6:40:6e:b7:02:cb:4c:08:05:8a:d1:bb:
b1:a2:2c:3e:63:d8:3a:d0:2d:d5:e4:11:72:ac:03:eb:7e:06:
d9:7c:f4:57:3e:68:40:70:d2:13:12:2f:13:d4:99:82:be:b2:
d3:b2:18:33:eb:8a:27:eb:ec:24:85:c7:37:17:84:cd:b8:3c:
58:8c:70:e9:e1:6a:7d:a6:66:af:5c:d8:d3:3b:ad:ac:63:22:
3f:30:65:1a:e1:fb:64:ac:03:f5:bf:44:1d:63:36:84:d7:ef:
26:62:5a:0a:f5:9a:31:d3:73:fa:3d:9b:88:82:02:08:11:d2:
b6:4c:c9:15:b0:2c:3d:28:b9:21:46:7f:65:e1:ec:2e:5c:d2:
7a:72:af:d2:4c:50:ba:f4:76:e5:ab:01:55:cb:64:90:a8:70:
2c:34:0f:4e:90:ca:74:8b:9a:6a:bf:00:dc:29:e5:51:6e:2f:
c7:8b:6b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:49 2024 by rpki-client on console-ams.rpki-client.org