Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/207815003B2711EE9B21A6354AD9E6FC.roa
File: 207815003B2711EE9B21A6354AD9E6FC.roa (raw, json)
Hash identifier: tbCKtFWVD6pp8b/flXVHZf8FbRLfKLnqhf7mVhPBOW0=
Subject key identifier: 99:BE:ED:25:3C:32:90:2B:58:E8:BC:A4:6B:7C:DC:AC:BF:A8:FB:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35A5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/207815003B2711EE9B21A6354AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:49:33 +0000
ROA not before: Tue 15 Aug 2023 04:49:30 +0000
ROA not after: Mon 27 May 2024 04:49:30 +0000
asID: 140627
IP address blocks: 156.247.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13733 (0x35a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:49:30 2023 GMT
Not After : May 27 04:49:30 2024 GMT
Subject: CN=64db03dd-d5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f1:57:db:b7:29:b2:3a:0c:d0:ac:73:5d:ad:
92:6b:a3:f9:1e:82:e9:86:c6:42:10:e1:f0:99:ff:
06:b5:3c:01:7f:be:32:f2:ac:60:36:77:4f:4f:71:
a0:1f:23:3a:a8:ae:a3:89:92:b9:d7:bb:8c:20:9c:
28:d6:79:68:3f:6e:74:8f:68:f1:5e:b4:1d:63:12:
b0:6f:2e:6e:79:ab:c4:1c:c8:92:8c:a8:e0:65:02:
83:f4:0f:21:15:c3:89:44:d3:44:77:35:57:ad:71:
34:4f:61:3b:c8:12:25:96:c2:be:ce:d7:90:de:e6:
c4:4c:18:de:d4:3d:7a:bf:76:97:59:85:cc:50:ee:
7d:8b:db:82:34:71:cf:43:72:a6:df:d5:77:35:05:
60:5e:20:7b:93:bc:a5:c0:bd:17:97:7b:0d:c6:4b:
0f:da:38:3c:f1:32:18:e2:c8:48:f9:f1:73:8a:a3:
96:8a:7e:fe:73:77:69:50:f6:48:b9:e2:6d:a8:39:
6a:64:e7:40:17:23:c4:5a:9e:e5:2c:c1:75:c2:df:
6c:a8:dd:89:04:12:bd:2b:33:7b:8c:3e:c4:b1:ec:
fa:0e:8e:07:f1:9d:b4:3c:a9:ff:5b:2d:67:ff:7d:
d9:ed:43:23:49:c9:9b:06:62:3d:75:82:fe:44:23:
8f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BE:ED:25:3C:32:90:2B:58:E8:BC:A4:6B:7C:DC:AC:BF:A8:FB:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/207815003B2711EE9B21A6354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.241.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:07:b2:4b:cb:fc:7d:10:09:60:78:23:5d:2a:4d:8a:ce:8e:
4e:ee:3b:53:df:fb:f8:27:d1:47:cd:99:91:b7:bc:1b:e8:e3:
0e:98:39:b2:bc:5c:26:88:08:a4:98:45:0f:88:c1:a8:61:00:
6b:e4:fa:15:75:a1:c6:63:a1:d1:40:26:30:d3:57:03:15:81:
f0:6d:16:fc:d0:ff:3d:05:cc:7c:c9:7a:a3:c9:26:0a:f9:e3:
7e:d4:8a:7f:df:a5:cf:9c:99:b6:87:a8:62:b8:c5:2d:36:d5:
64:6a:74:87:75:97:e8:64:c0:63:ca:e4:00:e8:22:6b:45:99:
72:ae:f4:a2:82:77:32:93:c1:f9:72:b9:c0:aa:4f:a6:eb:2b:
5b:a5:67:a8:a1:a4:66:63:0a:81:00:37:3e:52:96:9f:8e:c6:
4f:77:a2:c2:d2:73:cb:42:fe:41:f6:50:e2:2c:ad:8d:24:54:
c2:35:f8:62:c8:a9:c9:82:69:a3:2b:0c:46:11:02:b5:3f:80:
04:f3:cb:eb:7e:d2:76:ef:22:4f:fe:d6:5c:6c:05:5c:79:83:
07:16:15:75:4b:85:a6:35:c7:d4:ff:34:8b:c9:7a:42:17:83:
44:02:8f:5d:e2:1e:ab:47:4a:3d:16:ea:25:f6:4e:75:56:49:
00:8f:a9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:44 2024 by rpki-client on console-ams.rpki-client.org