Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278F5922595C11EEB1F2FE274AD9E6FC.roa
File: 278F5922595C11EEB1F2FE274AD9E6FC.roa (raw, json)
Hash identifier: ZNrla2v2mPh/pGuJ3UfC/yYOEp+u4EW5t50qWoSureU=
Subject key identifier: DB:F8:1D:47:8A:98:2D:A9:DD:9A:3B:95:AE:06:CC:FA:08:21:73:1B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3B07
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278F5922595C11EEB1F2FE274AD9E6FC.roa
Signing time: Fri 22 Sep 2023 15:24:43 +0000
ROA not before: Fri 22 Sep 2023 15:24:40 +0000
ROA not after: Thu 25 Jul 2024 15:24:40 +0000
asID: 3491
IP address blocks: 156.230.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15111 (0x3b07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 22 15:24:40 2023 GMT
Not After : Jul 25 15:24:40 2024 GMT
Subject: CN=650db1bb-4caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7c:3c:f1:7b:65:b8:bf:c2:cc:2d:f4:e7:3a:
96:59:e3:11:d3:8d:55:0b:73:a9:b9:18:e4:cd:98:
51:1a:9c:04:87:ce:f3:1a:e6:a1:a9:91:09:f4:ce:
41:62:2f:ba:d8:1d:f4:5b:42:99:8b:1e:90:59:e5:
09:53:85:81:86:7c:0f:36:4d:06:fb:af:87:39:09:
e6:42:64:4e:66:de:58:83:27:7e:69:c1:63:80:29:
72:38:4b:95:9c:ca:28:c4:82:5f:b9:11:4a:6b:54:
e6:5e:34:f7:62:70:c6:05:b0:b4:4a:5d:23:e4:aa:
b2:61:c5:e6:a9:8e:8d:ad:21:f6:4c:ae:44:66:ee:
09:ed:ef:53:c3:2f:46:e1:7c:eb:df:00:51:9d:8f:
8e:85:57:7c:3b:5e:9a:63:ac:20:99:e9:a8:8b:af:
ff:fd:e8:d8:2c:33:73:98:84:83:6e:0a:08:8a:68:
94:de:f2:66:a3:60:63:4f:51:2c:c6:00:35:0a:1e:
15:d0:75:6c:9e:a0:e7:74:9f:5f:31:ed:e2:09:60:
f0:e0:33:ba:5f:6e:d0:03:03:09:9c:7f:bb:ca:d9:
67:88:5a:d4:39:4d:05:f2:da:3d:88:4d:c0:84:f7:
ba:ec:22:89:fb:35:dd:da:03:9f:e8:ed:b9:58:e4:
61:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F8:1D:47:8A:98:2D:A9:DD:9A:3B:95:AE:06:CC:FA:08:21:73:1B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278F5922595C11EEB1F2FE274AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:68:e8:49:0f:1f:d1:5b:f4:a4:0e:e2:35:5b:41:48:fd:92:
ea:9e:e1:f5:6a:39:7c:aa:29:7c:e3:26:70:31:96:4d:4b:4f:
76:41:6e:b0:cc:49:d9:70:04:a6:22:4d:3e:bf:e2:1b:ff:e0:
0c:c7:29:80:96:72:c0:71:16:76:6e:d7:3e:cd:77:c3:03:5e:
35:6d:b6:51:2e:79:b3:eb:04:ce:1c:49:b5:5b:7d:07:e9:ce:
c1:f9:f0:a9:d4:19:69:bf:29:9f:96:fe:d5:88:d4:0f:89:a5:
c2:d5:00:08:cd:0c:bb:78:03:5c:62:b8:c0:94:0a:33:f1:cf:
00:41:a3:de:e9:b2:13:51:b7:c8:b9:0c:a1:22:99:9e:23:2d:
a8:3d:1d:cf:c2:1e:30:38:0e:7d:fe:3c:ee:1e:b5:44:6c:31:
90:81:55:c0:43:f0:76:dd:ad:f7:d2:5d:65:81:54:9d:2f:d4:
d5:d2:10:a2:da:80:ff:55:cb:8d:2d:2c:d5:57:2b:c4:57:d3:
c9:35:06:e6:69:df:6d:03:4c:6b:f1:a1:de:ff:72:29:39:1f:
08:f6:a2:3f:f5:fb:7d:16:c6:41:d8:f5:30:41:1a:11:e1:8f:
eb:f2:53:96:d5:34:dc:cd:2f:9a:a8:bc:9c:0a:c3:6e:38:8d:
9e:1f:94:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org