Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41A116003B2711EE88620A364AD9E6FC.roa
File: 41A116003B2711EE88620A364AD9E6FC.roa (raw, json)
Hash identifier: LN0O8x4EElDC2vtLS2IZIeTSy9SWd68jBMISlRfMScA=
Subject key identifier: F0:E3:69:9B:FD:8F:03:A5:C4:58:9D:99:18:1B:FA:02:C8:9C:B5:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35A7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41A116003B2711EE88620A364AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:50:29 +0000
ROA not before: Tue 15 Aug 2023 04:50:25 +0000
ROA not after: Mon 27 May 2024 04:50:25 +0000
asID: 140627
IP address blocks: 156.247.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13735 (0x35a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:50:25 2023 GMT
Not After : May 27 04:50:25 2024 GMT
Subject: CN=64db0414-2be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3f:7b:dc:64:b1:77:c2:85:fa:36:51:42:46:
b3:d5:26:f2:cd:ba:6b:81:50:e8:3a:e2:18:4e:b2:
b5:71:29:5f:49:f4:6a:ec:7c:7c:9d:d2:29:80:be:
e8:ea:52:f2:ca:98:4b:d6:3c:28:dc:a2:ee:3b:99:
df:32:74:0a:52:c9:52:b6:72:38:a6:2e:7a:3a:47:
e9:b5:a8:c8:9b:20:44:f4:b5:86:ae:ba:f6:31:bc:
a1:cd:a0:a5:03:fd:3b:97:b1:43:a2:bc:6c:6b:ab:
57:ea:65:9d:3d:2b:d2:7d:fd:00:23:f2:f1:7b:ce:
7e:be:19:c4:06:60:65:10:df:4e:f7:80:e3:11:cc:
45:94:e0:26:35:8d:2c:dd:0a:20:69:8d:4b:46:45:
3b:f5:44:b2:0c:69:8d:ee:d6:ff:bf:00:f9:3b:67:
ba:aa:1c:26:53:f6:53:2d:f2:21:1e:80:37:99:75:
fd:90:68:06:21:e1:76:89:7b:73:6c:dd:ec:8a:ed:
ec:e6:53:30:44:2e:3e:61:b1:62:8d:65:1d:d2:ee:
c5:ba:3e:b6:d5:a5:47:79:12:5d:82:d1:3b:e3:91:
51:bf:42:54:6f:12:8d:5d:7c:aa:fa:c6:52:56:7f:
58:08:fb:8e:e3:36:93:7c:0b:2c:df:0d:d6:25:4f:
b5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E3:69:9B:FD:8F:03:A5:C4:58:9D:99:18:1B:FA:02:C8:9C:B5:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41A116003B2711EE88620A364AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.242.0/24
Signature Algorithm: sha256WithRSAEncryption
44:6f:ff:b3:e6:7d:3f:86:c3:e5:3e:11:26:69:c7:cc:5a:bf:
3d:9c:4c:49:fd:9b:da:f1:da:a7:0a:61:18:8c:e2:ce:a6:d2:
5b:ba:d0:48:cd:54:20:3a:17:5f:a1:a3:e2:55:77:0a:a2:34:
99:3f:33:c2:36:36:a8:5c:f5:e4:50:d7:3a:5b:fa:28:1a:77:
2c:64:c5:2f:e4:23:52:a9:26:3d:e4:64:fc:24:cd:ea:87:e9:
0e:3c:17:e8:5f:1f:c5:dc:d9:3a:4a:f8:38:39:68:7a:56:d6:
c5:35:9c:e5:62:a0:9a:6d:42:db:d9:fe:7c:39:e2:3b:d8:9b:
91:9e:90:1c:63:b5:b0:14:66:19:e3:01:39:37:24:60:67:a3:
e9:d0:39:64:dd:88:93:dc:09:ff:b0:c4:c9:b5:97:e2:ff:6e:
c6:8a:b7:89:0e:67:8f:01:c2:02:73:2b:46:68:ae:c1:a8:42:
4f:c5:d8:cd:45:fe:3b:b4:4f:9f:cd:0a:1f:ad:7e:ec:a9:8f:
f1:87:52:fa:66:e8:fa:15:8e:76:94:6b:4c:33:41:ad:53:d9:
6f:bb:38:20:b4:01:08:25:0c:d8:e4:6b:d5:03:01:94:dd:b9:
e3:91:fd:a8:7b:af:c3:60:ae:86:1a:94:4d:d0:b0:23:fa:89:
99:de:13:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:51 2024 by rpki-client on console-ams.rpki-client.org