Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/47FE107E76CE11EEAD56A9174AD9E6FC.roa
File: 47FE107E76CE11EEAD56A9174AD9E6FC.roa (raw, json)
Hash identifier: ojeLEguSEaGUyGpNK7gLc9ZFTEx8nUAbw1zvDJMZaxk=
Subject key identifier: 9D:94:CC:90:C1:35:0A:00:DF:BF:80:6D:06:81:BF:43:00:BF:F4:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4252
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/47FE107E76CE11EEAD56A9174AD9E6FC.roa
Signing time: Mon 30 Oct 2023 02:44:44 +0000
ROA not before: Mon 30 Oct 2023 02:44:41 +0000
ROA not after: Thu 19 Dec 2024 02:44:41 +0000
asID: 141190
IP address blocks: 156.240.80.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16978 (0x4252)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 30 02:44:41 2023 GMT
Not After : Dec 19 02:44:41 2024 GMT
Subject: CN=653f189c-9e51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:13:8f:68:d9:4c:80:92:79:bb:78:dc:e3:5b:
d6:2c:74:7b:a8:fc:6a:3a:be:5f:54:51:62:c7:d0:
a8:4b:fe:6e:37:09:3c:c3:ff:04:0d:94:bc:d9:4f:
d6:ff:cf:e4:7b:08:06:24:39:ae:4b:22:50:aa:68:
dd:56:01:90:91:f9:f7:0e:fc:30:84:ab:c4:b6:7c:
b0:8b:73:75:8d:ac:5c:73:4a:ef:fe:38:bd:d0:8a:
8f:84:c0:6d:2f:42:fd:85:4f:19:05:a5:cf:ef:be:
ca:69:22:74:4f:9c:df:10:ae:82:0a:bf:d1:c1:ce:
55:d0:08:bc:34:d4:1f:51:a9:2f:8f:87:da:b0:7c:
83:24:e3:f3:cc:9e:c0:a5:81:b0:38:9f:2c:8b:d1:
2b:f6:fa:50:79:25:9e:0b:73:d3:e9:fd:81:c2:93:
97:45:92:1b:c7:a8:f5:a8:1b:26:5d:41:c0:b7:43:
1d:54:93:ec:ef:cf:62:e7:af:d0:42:71:2c:1f:a4:
1a:07:40:14:7b:ff:02:ed:b0:32:64:fa:ba:59:a9:
a4:ef:6d:79:b5:74:2b:8a:0c:07:e9:63:8e:20:a9:
78:7a:41:7b:9b:f4:b9:b7:6b:b0:fb:bf:f5:aa:f8:
48:a3:9e:81:79:24:c8:c1:cb:0f:cf:1c:0b:a9:a2:
72:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:94:CC:90:C1:35:0A:00:DF:BF:80:6D:06:81:BF:43:00:BF:F4:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/47FE107E76CE11EEAD56A9174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.80.0/23
Signature Algorithm: sha256WithRSAEncryption
22:21:59:a3:05:23:f4:bb:ce:2a:b4:d0:44:e8:b6:a2:c9:f3:
89:4c:25:28:79:d6:cf:32:a6:2f:df:b5:f3:47:fb:33:41:be:
51:f1:d0:91:37:61:04:61:fe:22:63:bb:0d:52:46:6e:c9:ce:
3b:28:3d:d1:9e:bc:5a:c0:38:39:bb:af:bd:56:d0:f3:a3:73:
7b:a8:76:bf:bf:3c:c0:f5:0d:a9:0b:df:ab:9d:0b:63:40:8a:
3f:10:db:74:c7:1f:cc:f7:ee:b0:d1:93:09:d8:85:94:04:f7:
3f:24:ee:a8:eb:0e:52:5a:04:40:33:c9:71:d4:9b:f2:ed:82:
bc:22:77:c1:7a:b0:a9:e7:97:4e:32:82:56:a5:bb:37:19:d4:
b9:8b:36:f2:69:dd:97:36:b6:76:ee:e2:43:f8:2b:e5:b0:75:
58:dd:4b:c1:97:b9:89:90:d4:4c:93:58:06:ac:09:4f:1f:86:
d1:ab:eb:6a:d0:4b:7d:c4:ec:17:5a:40:c6:e0:9b:c1:a2:e8:
7e:99:b9:1c:e7:c0:68:bc:74:89:7a:c2:0b:37:69:ba:e7:95:
85:31:63:bd:ed:63:93:c4:9f:a5:fe:1d:7c:7c:26:a7:7a:0c:
d5:be:d8:1b:ee:5b:e4:70:8d:92:d2:f9:79:b2:d2:7d:38:0a:
af:13:a2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:28 2024 by rpki-client on console-ams.rpki-client.org