Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EFCA5583FBE11EE902CCF7E4AD9E6FC.roa
File: 4EFCA5583FBE11EE902CCF7E4AD9E6FC.roa (raw, json)
Hash identifier: 0zx/A0tP8hrPluz2C0pfAvnhTdePTtpDCzRJ87qPg8U=
Subject key identifier: 05:59:31:B8:D7:D6:9A:FE:80:C8:B0:CA:BF:00:1B:06:DB:07:D8:9D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 369D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EFCA5583FBE11EE902CCF7E4AD9E6FC.roa
Signing time: Mon 21 Aug 2023 01:01:50 +0000
ROA not before: Mon 21 Aug 2023 01:01:47 +0000
ROA not after: Sat 29 Nov 2025 01:01:47 +0000
asID: 133012
IP address blocks: 156.248.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13981 (0x369d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 21 01:01:47 2023 GMT
Not After : Nov 29 01:01:47 2025 GMT
Subject: CN=64e2b77e-5905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d3:ae:75:62:78:f7:14:6d:67:05:67:cf:e2:
a7:7a:bf:e8:f8:a8:41:02:6c:22:82:12:68:a4:d3:
3c:6c:46:9c:69:ec:81:24:d2:2f:38:1c:4c:84:e9:
86:83:6e:04:18:5f:d6:a2:50:8e:eb:68:d5:07:27:
47:bd:d8:85:24:f5:6f:e8:c1:ed:31:2e:fa:11:d4:
fd:c8:8f:00:f5:43:f4:59:18:5e:60:5f:e2:2e:87:
4e:ff:0a:f7:bf:30:08:f0:2a:9c:31:e8:bc:09:65:
d2:f4:46:56:98:b2:82:87:e2:39:83:c1:e2:47:07:
b4:64:af:3e:09:ea:32:5c:4a:d8:22:73:49:ed:a9:
e9:3a:0a:3a:62:33:eb:af:31:7a:72:2b:37:f3:df:
06:9a:49:df:19:3d:5c:7c:96:bb:51:6a:82:5d:b1:
6c:b5:70:96:74:60:e9:34:aa:59:8e:f0:de:1c:25:
dc:ae:ef:02:b7:b4:d9:0b:3b:c4:26:03:ac:95:f3:
a0:6b:ab:e1:6f:28:8d:7b:a7:1b:8e:e3:82:78:cf:
d9:36:03:cf:02:20:80:03:cd:c5:8d:bb:59:19:60:
f6:2c:08:ca:67:5f:94:e9:03:cc:a0:9b:23:77:d0:
10:f2:f4:09:46:c2:0e:d8:1c:80:dd:0c:74:12:24:
5a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:59:31:B8:D7:D6:9A:FE:80:C8:B0:CA:BF:00:1B:06:DB:07:D8:9D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EFCA5583FBE11EE902CCF7E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.2.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:88:9d:bf:26:d2:28:b9:16:f9:1e:5b:3d:40:6e:18:67:ba:
e1:dc:66:91:38:e2:d9:a9:29:b8:6c:32:58:39:f9:29:1a:f8:
0a:c1:fc:82:70:3f:4d:f0:58:52:d5:ef:00:17:25:d6:4d:6f:
13:f9:35:f8:ef:e2:c9:e5:ea:64:9b:c7:58:4e:33:28:07:80:
ec:89:e7:b6:05:c8:59:bb:54:a7:6d:4e:95:e8:42:f8:c1:d7:
4b:30:fb:4b:c6:14:17:ad:8a:30:4c:bd:73:cb:10:1b:7a:ed:
9c:7b:56:09:46:5f:67:32:54:9d:2e:65:78:e6:35:f9:43:06:
e9:7e:35:57:bb:71:f4:33:fd:4e:c4:97:1a:f0:00:6d:0d:70:
29:a9:4a:64:d7:f5:ba:41:b5:e0:6e:31:e0:c7:56:3f:8f:bf:
d4:38:c0:86:49:cc:0c:ed:67:88:af:27:e0:3a:38:7d:56:0e:
fc:6b:b3:1d:9a:d3:2f:88:49:5e:a2:8b:cd:34:a4:db:50:16:
31:86:e3:53:55:03:e4:bc:5f:90:2d:f2:9d:f6:6a:90:9b:aa:
3b:bf:ea:1e:b9:12:3f:2e:21:6e:e7:dc:bb:36:ca:8e:a1:63:
ba:89:f3:77:77:67:40:6f:ba:2a:08:5f:70:ff:5c:20:ad:bd:
04:21:91:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:08 2024 by rpki-client on console-fra.rpki-client.org