Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E7849A64BD11EE9BAF07744AD9E6FC.roa
File: 41E7849A64BD11EE9BAF07744AD9E6FC.roa (raw, json)
Hash identifier: izg4FeMes9+ZaDjD8jld3o4nCJfHpcn45hg6U6JVLtQ=
Subject key identifier: 55:34:A7:D1:6C:7E:33:32:D6:02:D4:CE:81:0F:13:08:E5:95:CF:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3D96
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E7849A64BD11EE9BAF07744AD9E6FC.roa
Signing time: Sat 07 Oct 2023 02:57:31 +0000
ROA not before: Sat 07 Oct 2023 02:57:28 +0000
ROA not after: Thu 08 Aug 2024 02:57:28 +0000
asID: 133199
IP address blocks: 156.247.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15766 (0x3d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 7 02:57:28 2023 GMT
Not After : Aug 8 02:57:28 2024 GMT
Subject: CN=6520c91b-3af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e0:b0:6f:0f:7a:44:2a:2d:96:da:76:ce:ac:
57:b6:ee:e7:50:51:c2:f7:28:e5:0a:fc:9b:e2:1d:
ae:83:45:80:6c:4f:df:e6:20:30:9b:c1:8c:71:a8:
ed:26:b7:74:af:50:67:fb:8a:fa:35:e6:dd:fb:15:
ba:fd:45:76:fc:ae:17:56:bd:09:57:be:cf:f1:2e:
a4:48:64:e8:97:be:9c:f2:f7:74:1d:2a:47:b5:0d:
2e:90:e6:fd:b2:63:c3:dd:85:e1:fa:b9:94:a6:f5:
32:30:5d:9a:2b:5b:32:7e:23:b7:17:fa:da:a2:c4:
4c:0b:6f:28:a0:d1:52:a6:2a:3f:6b:77:62:ec:f7:
c1:89:ee:46:ad:b4:aa:1c:21:57:59:08:57:79:6e:
eb:6b:62:14:21:c5:01:03:e2:25:52:e9:5a:5f:de:
77:17:73:44:06:80:83:2e:34:72:2d:6a:c0:60:f0:
38:ed:a3:33:ff:e5:c2:c0:fb:be:ac:21:2f:d1:ed:
74:50:a8:eb:fa:c3:04:d5:6f:d7:54:30:2a:1f:b6:
51:35:c2:96:1e:e4:68:4b:b1:a5:7f:2a:88:b8:78:
a1:a2:fa:29:7a:98:d9:1e:75:47:2f:b4:d4:35:ab:
59:05:b7:d1:89:46:fc:7d:a9:f4:a5:1c:25:80:5a:
4e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:34:A7:D1:6C:7E:33:32:D6:02:D4:CE:81:0F:13:08:E5:95:CF:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E7849A64BD11EE9BAF07744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.9.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:3f:a8:e1:d0:d6:d1:7b:3f:cc:d8:eb:f2:62:65:f5:77:d6:
d6:8a:d1:8d:42:71:bc:57:97:dd:c9:ce:f3:e3:b1:49:0f:f8:
53:ce:de:c4:b2:dc:0b:6d:31:39:ff:75:55:24:5d:2a:44:41:
de:69:8b:a1:82:0f:5c:bd:3e:2f:f9:c2:80:bf:6d:2d:ac:57:
41:58:9e:95:74:5c:24:8d:d0:2f:e1:28:9b:c2:2e:93:28:23:
a9:4f:c5:26:77:8e:a4:e1:1d:7e:53:02:0d:68:1b:1d:db:fe:
e1:b6:f0:b0:df:d1:7c:2e:3c:30:26:80:a9:36:7d:60:ad:ac:
1e:a0:4e:9f:9c:4f:ed:cb:f4:fb:17:67:d8:35:29:91:62:82:
05:ac:05:60:32:db:c6:f2:f9:da:9f:d6:22:cd:b9:25:8d:77:
eb:fb:6a:00:10:b1:4c:a0:c6:92:14:40:3c:55:92:49:f0:85:
ba:7d:6f:1b:90:39:68:61:3a:e9:25:0d:51:82:16:3b:eb:b9:
c4:69:ad:11:ac:94:df:85:8d:55:39:15:9a:8c:9b:3e:47:1f:
6e:6f:48:1d:05:a1:e2:f5:7b:ed:6d:62:6f:e8:0c:c0:88:2d:
20:75:18:4c:05:e7:60:32:7a:55:08:c0:4f:68:2d:9e:54:a9:
89:d1:a4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:07 2024 by rpki-client on console-fra.rpki-client.org