Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3DB9B188544911EE8300B0824AD9E6FC.roa
File: 3DB9B188544911EE8300B0824AD9E6FC.roa (raw, json)
Hash identifier: ageCKr1LMwOyfJKGRvpjsCVJpExNl+SUf2WDFp22g7k=
Subject key identifier: B0:57:68:C9:96:1A:99:A7:D2:92:C0:F1:80:1F:A8:DD:70:DF:E3:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3A45
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3DB9B188544911EE8300B0824AD9E6FC.roa
Signing time: Sat 16 Sep 2023 04:26:44 +0000
ROA not before: Sun 01 Oct 2023 04:26:41 +0000
ROA not after: Thu 08 Aug 2024 04:26:41 +0000
asID: 133861
IP address blocks: 156.247.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14917 (0x3a45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 04:26:41 2023 GMT
Not After : Aug 8 04:26:41 2024 GMT
Subject: CN=65052e84-58c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f0:2f:90:4c:80:85:b8:9c:cd:c5:cc:8a:ed:
b1:77:13:d1:52:3c:c5:ed:44:5e:53:40:a7:23:13:
2b:08:46:c1:1c:65:3e:d5:e7:9d:ce:8d:de:9f:88:
a0:5d:f9:fa:7f:7c:a4:1b:f0:a3:10:11:c0:9f:21:
15:cd:36:1b:8f:79:50:08:b6:da:31:57:ee:aa:27:
8d:75:e7:f5:e0:5c:0d:07:59:b4:74:ad:e7:93:1d:
76:69:f2:3d:e7:fc:72:81:f8:b4:c8:59:e1:a2:01:
eb:4c:1a:90:20:7b:e5:ca:2f:16:e3:5b:4e:63:2b:
be:e6:81:24:14:3a:1f:a6:20:1b:21:4b:4f:35:72:
50:10:86:b9:f8:16:5e:48:3e:ac:3e:07:cc:c6:65:
fe:00:f9:dc:41:8e:2f:5a:b0:be:03:23:b8:8c:3a:
15:22:36:ee:f3:23:d8:36:df:a6:c0:ba:85:1f:54:
c2:af:6b:d7:77:71:e5:48:15:84:7c:95:5f:79:00:
b7:17:d6:4d:95:97:43:27:5b:2c:5a:6d:f9:d7:da:
b3:ba:87:ca:07:7f:3c:cd:08:62:19:39:55:e7:55:
d4:f4:ed:f2:b7:34:1a:db:06:b1:01:66:5d:af:9b:
0d:8b:34:e0:27:70:b5:6c:d2:85:69:e2:6d:9a:bf:
e9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:57:68:C9:96:1A:99:A7:D2:92:C0:F1:80:1F:A8:DD:70:DF:E3:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3DB9B188544911EE8300B0824AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.13.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:bc:10:36:c1:0d:d0:75:f3:3c:95:f2:d6:be:71:3b:15:5a:
90:d0:30:86:f1:cf:2d:12:b1:99:94:5a:bb:fb:a9:6a:35:b8:
67:bd:1f:07:ea:4b:cf:23:f0:98:d1:98:16:b8:39:b5:49:f6:
7f:ab:0e:20:ba:0e:27:f6:fc:3f:76:ae:b6:73:d6:a9:99:eb:
e8:a2:a1:e3:07:d2:1e:7b:b8:8b:b3:b8:49:ce:0d:4d:7b:bf:
59:59:2d:56:9b:d0:eb:03:fd:6f:b0:46:b5:e1:77:e4:28:ea:
8a:96:ac:df:2e:cb:9b:12:de:0b:ff:48:39:4e:31:ed:6f:2d:
ae:98:82:b0:4e:51:93:1f:17:26:b1:51:23:b9:1f:9a:8e:69:
e2:b4:e3:11:c8:c5:4e:bc:e0:f3:7c:fa:fa:b5:6d:dd:27:4c:
84:b9:80:5f:f8:a5:d5:c3:da:72:00:47:f1:35:96:28:59:14:
6d:8e:6c:9c:bc:ec:80:7a:2c:00:e7:76:07:b6:38:96:90:15:
b0:95:8e:bc:e7:35:19:42:82:b9:bc:c9:37:37:76:c6:d2:2b:
f6:bf:b9:25:98:8f:1e:d9:25:54:d0:c2:55:e4:41:b7:fb:24:
c2:e2:04:bc:c4:51:6b:9e:5c:db:37:ab:eb:57:07:75:35:61:
af:29:6f:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:51 2024 by rpki-client on console-ams.rpki-client.org