Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/34BAC772155E11EE8C58DB4D4AD9E6FC.roa
File: 34BAC772155E11EE8C58DB4D4AD9E6FC.roa (raw, json)
Hash identifier: Pa4bUK7P44VsUA5fROcynem3dK74D56dVeSQZCoWT+s=
Subject key identifier: 47:3C:C6:69:CB:2E:BA:7D:63:B6:CA:A6:1D:C6:44:C6:AE:FA:AD:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2D6A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/34BAC772155E11EE8C58DB4D4AD9E6FC.roa
Signing time: Wed 28 Jun 2023 02:48:05 +0000
ROA not before: Wed 28 Jun 2023 02:48:02 +0000
ROA not after: Mon 27 May 2024 02:48:02 +0000
asID: 140627
IP address blocks: 156.247.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11626 (0x2d6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 02:48:02 2023 GMT
Not After : May 27 02:48:02 2024 GMT
Subject: CN=649b9f65-7c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a4:50:bc:45:29:6e:53:98:ed:cf:35:69:f8:
9d:1f:f8:a4:61:26:01:e5:d8:9c:cc:7e:3a:28:81:
e3:07:3e:f6:8d:c2:ae:13:97:db:11:5f:8f:bc:62:
4c:15:6d:a3:db:d8:7b:48:20:87:8b:45:d8:11:5c:
bf:66:2f:63:0d:88:ab:96:d4:49:fb:68:88:1d:b4:
2c:b4:c0:6d:b8:94:58:cc:95:4e:2b:ed:de:60:cf:
5e:02:53:54:22:ec:bd:cd:c1:91:9a:01:60:07:a8:
75:ff:c1:3b:b3:49:d3:ba:84:10:52:b7:bc:c4:a8:
03:93:97:82:f2:c5:4b:2d:73:aa:4d:8a:61:f3:a0:
fc:24:a5:2a:27:64:59:b8:f8:4c:7a:57:e9:a9:33:
20:a4:8c:a3:63:c6:b0:16:d8:fa:6f:50:eb:1b:ff:
aa:f3:f8:7c:57:40:ba:19:f8:00:9f:79:dc:c6:bd:
0b:10:a4:3e:1b:ba:83:32:1e:d9:6a:1f:d2:e4:24:
bc:22:47:96:2c:73:50:5a:38:d3:4a:03:b4:8f:ff:
14:b3:cc:38:ad:e0:a6:6c:21:fc:c9:8d:98:d2:cf:
de:fc:b6:5d:78:e6:5e:41:8b:66:f6:cd:71:59:30:
62:0d:d8:13:24:e2:c3:67:a2:7c:34:84:33:b5:1a:
25:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3C:C6:69:CB:2E:BA:7D:63:B6:CA:A6:1D:C6:44:C6:AE:FA:AD:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/34BAC772155E11EE8C58DB4D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.202.0/24
Signature Algorithm: sha256WithRSAEncryption
22:36:3e:b1:e4:b6:1a:3f:c6:3a:3e:40:f2:e5:6b:78:bb:3c:
22:99:38:62:d4:aa:28:2d:b4:2e:e6:b2:60:be:01:1b:58:6f:
d1:36:06:08:bc:4a:5d:aa:c5:85:f8:b3:16:14:4f:58:0d:50:
15:d1:be:19:ed:2b:2d:db:f2:95:68:ab:85:c2:f0:56:82:c1:
bf:f3:76:81:5c:28:bc:b7:c0:cc:0d:05:26:58:cd:db:e7:57:
ac:fe:ce:3e:29:83:61:ee:cf:05:02:bb:bf:f9:82:bb:96:5d:
4a:e8:95:66:38:a1:de:23:6c:d8:3a:0d:46:bc:b7:b5:79:c2:
66:5b:62:7b:a2:1e:9a:24:d9:2e:dd:02:5d:f6:0d:a5:70:4c:
52:83:32:26:49:54:b1:36:8c:72:38:e5:be:17:93:75:5a:75:
4b:0c:be:02:9e:71:14:41:aa:73:34:9f:74:4d:37:2f:a6:a5:
ee:88:ff:20:f2:ac:be:ba:5f:7f:aa:16:ef:2a:0d:5e:65:47:
68:e5:f1:b9:ce:1f:dd:f5:23:93:17:bd:f7:e3:21:05:dd:96:
71:a6:bc:6c:3f:32:6b:2b:57:8d:09:b1:26:c5:b8:b1:61:83:
ca:4d:ba:f5:72:0c:95:7d:5f:b5:a7:88:b9:ae:dd:ae:b9:ab:
a5:af:ac:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org