Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B4D6FE83B2211EEABD1B2264AD9E6FC.roa
File: 2B4D6FE83B2211EEABD1B2264AD9E6FC.roa (raw, json)
Hash identifier: nQTjO4+tw9ga8xcJYE5P9900eXlZpL1S9NN3N5NDsbM=
Subject key identifier: 7E:34:49:81:45:66:BD:D6:9A:9F:B7:34:A2:3F:23:EF:16:D3:0A:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3557
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B4D6FE83B2211EEABD1B2264AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:14:04 +0000
ROA not before: Tue 15 Aug 2023 04:14:00 +0000
ROA not after: Mon 27 May 2024 04:14:00 +0000
asID: 140627
IP address blocks: 156.247.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13655 (0x3557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:14:00 2023 GMT
Not After : May 27 04:14:00 2024 GMT
Subject: CN=64dafb8c-5e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:43:52:ca:8f:22:82:b4:62:c3:e4:38:de:28:
04:3e:05:81:56:04:df:84:ab:fc:8a:d6:a8:31:c3:
1b:ac:25:06:56:13:a7:0d:a9:ab:36:9e:de:b0:45:
d5:10:bf:9b:2c:55:d3:81:a7:10:0b:4f:30:e1:8c:
42:4e:24:06:54:12:d5:f2:07:5a:3f:66:f2:bf:f6:
5d:de:2f:01:ea:54:42:3f:cb:33:fc:21:e8:58:21:
22:a9:71:19:fd:0b:81:c7:f4:75:ce:a2:70:18:86:
15:5a:81:4e:23:ac:8b:ba:4d:c1:6e:48:3c:30:a4:
d2:7b:79:20:04:70:02:01:43:93:bf:10:3f:d7:41:
1a:5b:dd:86:6f:1c:aa:8e:44:2d:16:4f:2d:4f:bd:
4f:b4:4d:cf:d5:20:ac:e5:bd:97:1e:3b:9b:b6:db:
17:96:5c:f2:6e:f9:fb:7f:18:35:4b:a2:2d:42:76:
e3:70:4e:bf:4f:36:38:d1:d1:c5:09:5e:68:62:6a:
94:d9:b7:68:b1:3b:f9:4a:85:c7:90:a4:44:64:61:
97:3c:52:e5:4b:17:e2:f4:d1:07:25:a0:3b:58:cb:
86:52:1d:10:f6:67:7f:60:9b:80:40:6b:06:70:5a:
52:17:99:f2:59:5c:b2:93:8f:ee:65:41:ea:6c:b9:
30:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:34:49:81:45:66:BD:D6:9A:9F:B7:34:A2:3F:23:EF:16:D3:0A:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B4D6FE83B2211EEABD1B2264AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.200.0/24
Signature Algorithm: sha256WithRSAEncryption
50:dc:46:29:af:21:34:d9:b6:da:d8:ec:94:a6:bb:d9:ee:3d:
81:db:47:9c:9d:bc:9d:74:d6:a8:3e:3d:c9:28:a6:64:8d:ef:
41:b8:80:43:0b:6f:5f:e9:84:71:8f:f2:7e:94:c1:6a:7f:84:
3a:85:26:b7:34:79:1f:e9:c9:3b:d5:79:9d:6c:cf:09:e7:c1:
1a:56:72:11:03:cb:dd:9b:75:01:d4:e0:6c:8d:cf:2d:b0:84:
85:8c:df:32:d1:e4:85:c4:13:30:65:47:a8:6b:ee:c7:4d:c5:
db:99:14:3a:dc:d8:85:3a:78:37:84:65:79:97:87:8f:24:00:
36:b0:7a:96:31:ab:da:f1:39:2a:e6:9d:0a:cd:e8:b5:8c:38:
4e:3a:69:8c:28:ae:25:36:da:0d:c6:68:38:67:f4:b2:0d:3e:
8c:01:93:78:5b:0e:31:5a:c3:d5:4a:04:ef:58:5c:ec:71:5e:
7c:ec:34:a1:c7:fe:e2:78:7f:c6:3a:bf:9c:7e:62:90:f7:52:
d3:1a:05:ab:dd:97:32:d7:2a:e4:a6:72:8d:f3:98:3c:f9:7c:
aa:99:d5:6c:90:74:5f:8d:6a:0c:a3:96:94:06:a4:8d:96:07:
08:59:1e:b2:51:f3:2e:55:bc:66:84:2a:de:21:f9:b8:f9:24:
47:1d:a5:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org