Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31182DE83B2F11EE9E57F34D4AD9E6FC.roa
File: 31182DE83B2F11EE9E57F34D4AD9E6FC.roa (raw, json)
Hash identifier: 0AkXLgyKAu8sWjDEW6an/xwlHW3o6kvvnXt2esA9zTw=
Subject key identifier: 62:08:07:DE:2E:32:07:5C:32:6B:DC:C1:7E:F2:B6:10:37:A9:FD:C7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3621
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31182DE83B2F11EE9E57F34D4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:47:17 +0000
ROA not before: Tue 15 Aug 2023 05:47:14 +0000
ROA not after: Mon 27 May 2024 05:47:14 +0000
asID: 140627
IP address blocks: 156.247.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13857 (0x3621)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:47:14 2023 GMT
Not After : May 27 05:47:14 2024 GMT
Subject: CN=64db1165-be6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e2:2b:2a:d0:1f:71:a0:8d:eb:60:5e:b7:64:
47:1d:05:4b:21:01:f5:6a:19:b7:ad:36:92:e2:30:
bc:d4:b9:6a:f7:1d:a9:ca:a0:cd:d3:1e:9f:2e:da:
43:82:be:64:8e:45:4b:ce:f7:d9:ac:75:ff:b2:e3:
f4:37:59:b6:02:b4:c9:7f:4a:e2:da:51:ab:ba:bc:
77:2c:62:cd:90:b0:22:18:b5:7b:91:71:cd:67:0b:
c0:c6:cf:0c:43:4b:46:d2:db:94:61:26:c6:6d:bf:
67:98:94:af:97:4c:6f:11:4f:3c:74:d8:f0:05:41:
ff:77:ba:2e:86:b2:05:9a:6a:84:6b:9d:c7:a7:3f:
c2:5c:78:6d:aa:ae:be:2a:c2:03:c0:e1:d1:18:fd:
f5:6e:b3:b2:65:03:36:76:df:19:f5:9a:77:ea:4e:
2a:6a:2b:ca:26:d7:9c:f9:e8:06:06:a9:aa:42:b0:
ce:ac:1d:fc:a5:8f:67:ab:cc:a3:96:e8:58:0a:b1:
bc:44:ab:48:0a:47:00:c3:07:67:74:77:18:d8:21:
98:d0:de:b3:29:b8:27:71:83:6a:6d:f7:2f:ab:a8:
ca:1e:c5:d6:75:a2:25:b7:ff:8f:91:ff:bb:ea:e4:
19:ca:da:37:86:19:ca:c5:39:57:1e:fd:fd:a7:14:
9b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:08:07:DE:2E:32:07:5C:32:6B:DC:C1:7E:F2:B6:10:37:A9:FD:C7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31182DE83B2F11EE9E57F34D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.175.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:9a:f2:2b:3e:fc:bd:14:8c:a2:f1:0a:4c:65:62:4c:80:ba:
23:71:32:af:82:6b:43:c7:ee:19:16:9c:64:4a:d4:ab:8c:c0:
94:93:7f:76:4a:94:8f:c8:98:c9:57:af:d4:da:c1:20:1a:10:
69:a5:3c:2b:59:ea:80:87:ac:c8:7d:22:f1:83:bf:f2:6e:32:
03:7c:99:d7:bc:14:dd:fc:af:3b:ce:ba:96:5c:b3:bf:a7:05:
b1:85:b4:2a:43:7f:3e:2d:06:23:b5:f1:b4:34:f7:80:ea:50:
62:86:f4:0a:de:4b:5b:c6:5d:49:f5:41:94:b1:99:ec:92:07:
3e:95:ff:9f:4b:52:b0:bd:ad:3c:4f:de:e3:ba:e4:56:cd:36:
56:bb:66:43:ba:60:ef:ed:2b:87:d9:8f:0c:cf:89:c0:c5:87:
fe:c9:9a:5f:5d:08:52:47:db:05:e2:ed:74:95:b7:6e:22:9b:
78:55:f3:f5:bb:60:56:37:08:36:47:d5:2e:9a:e8:68:33:19:
db:28:65:d8:83:c0:21:19:bd:b7:49:3b:21:ac:ce:52:6e:1d:
d7:47:3a:bc:a0:9c:06:37:be:2b:0f:fc:4f:e3:d5:2f:66:b2:
69:c8:56:ad:b3:17:54:c6:a4:f0:a0:ec:a2:6d:a6:f5:be:e3:
4a:b7:89:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org