Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59F0C1583B2A11EEB4C93D3F4AD9E6FC.roa
File: 59F0C1583B2A11EEB4C93D3F4AD9E6FC.roa (raw, json)
Hash identifier: 3cy48KjvvwtBig/W1L/TKqO4HbmiJObpT1x4QL4dEkA=
Subject key identifier: 7A:DA:11:18:AE:E4:C7:36:80:3B:4E:3E:4A:9D:9B:22:2E:EE:5C:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35D7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59F0C1583B2A11EEB4C93D3F4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:12:38 +0000
ROA not before: Tue 15 Aug 2023 05:12:35 +0000
ROA not after: Mon 27 May 2024 05:12:35 +0000
asID: 140627
IP address blocks: 156.247.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13783 (0x35d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:12:35 2023 GMT
Not After : May 27 05:12:35 2024 GMT
Subject: CN=64db0946-79f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:5d:56:03:77:c1:d1:31:87:6e:1a:a0:39:4d:
e9:39:a8:2d:70:8a:f1:d7:6c:64:3a:32:58:58:cb:
1c:22:33:07:8c:23:1f:f0:66:b1:b9:f0:93:b0:ed:
5a:60:85:82:38:68:f8:80:17:1f:9e:1a:bb:c4:3d:
f4:07:8e:32:c6:a2:7c:e3:47:b3:da:9d:d7:3f:76:
2f:ce:1a:71:80:53:a3:4b:06:a2:ac:34:0a:63:5b:
a6:ba:97:4f:bf:a3:c3:85:2d:81:94:05:54:6d:01:
ab:02:08:c3:90:0a:e0:a4:e1:10:7d:b1:8c:c6:26:
27:2d:3b:b7:73:e8:51:cc:6a:06:a6:26:d2:74:d7:
4c:09:24:43:8a:aa:32:d9:10:cd:b6:7d:89:99:38:
4a:38:f3:c0:f9:96:36:89:3a:b6:96:82:e4:11:83:
5a:38:9f:99:e0:88:49:79:ac:a9:f2:b5:d3:30:b0:
9c:95:5d:a7:86:ac:ec:d9:8a:72:2f:2a:e6:54:5b:
51:42:38:ac:3e:3b:0e:46:f5:20:ae:7d:ba:21:92:
44:5e:96:38:15:ae:b9:c1:41:1d:44:57:ce:14:e2:
c4:4e:a0:99:2c:c8:f5:71:9e:3d:cd:29:52:9f:3a:
9c:9b:36:98:c1:29:39:7a:cd:5f:11:aa:ae:09:49:
24:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DA:11:18:AE:E4:C7:36:80:3B:4E:3E:4A:9D:9B:22:2E:EE:5C:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59F0C1583B2A11EEB4C93D3F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.138.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:73:8c:c6:2a:06:bd:6b:59:02:24:f0:26:0b:04:f7:55:30:
e8:ad:ed:72:8f:fc:4f:33:f4:81:9c:87:a8:b6:f0:fb:7f:45:
13:da:e0:6f:db:43:ef:70:cf:15:e7:8f:bd:6e:d1:17:a4:38:
1d:28:88:d0:c1:35:23:bb:e8:54:b1:32:ce:29:ac:13:95:cd:
90:27:08:d5:cc:b0:9f:3d:33:7d:35:9f:ee:e8:de:35:da:6b:
bc:8b:df:5d:1b:60:51:c5:c1:fe:f9:05:f4:ad:37:1b:05:47:
26:23:ed:a4:76:1b:78:66:c0:d3:bb:49:09:dd:8a:03:2c:cf:
0f:ec:e4:b8:4e:11:d0:96:87:d1:a3:08:a0:3c:9e:1d:23:4f:
d3:37:00:42:46:03:15:b9:4a:9f:89:ea:96:1a:a6:44:7d:71:
4c:f1:84:69:7a:d0:38:38:84:a6:15:6e:b6:f8:9f:c1:5e:32:
36:b6:15:12:14:10:b3:4a:8a:71:a0:57:b2:f1:ff:18:70:25:
00:ca:43:e3:64:0f:a0:dd:20:d7:26:81:e4:55:07:63:47:4e:
d7:9e:f3:be:52:32:3c:89:1c:ca:6c:de:82:68:44:b6:f6:bf:
60:75:a8:ac:af:b9:8e:e5:c9:ff:6f:38:4d:09:1e:f1:9a:73:
5b:55:92:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org