Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E7CF11E544911EE815E37834AD9E6FC.roa
File: 5E7CF11E544911EE815E37834AD9E6FC.roa (raw, json)
Hash identifier: 1bESTUL0op/gY5M8BK/MN+0GOZT8vCV68rts/XwafnI=
Subject key identifier: 82:94:B3:94:65:88:B6:9B:67:C8:B5:B6:A9:7B:4A:B0:70:58:73:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3A47
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E7CF11E544911EE815E37834AD9E6FC.roa
Signing time: Sat 16 Sep 2023 04:27:39 +0000
ROA not before: Sun 01 Oct 2023 04:27:36 +0000
ROA not after: Thu 08 Aug 2024 04:27:36 +0000
asID: 133861
IP address blocks: 156.247.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14919 (0x3a47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 04:27:36 2023 GMT
Not After : Aug 8 04:27:36 2024 GMT
Subject: CN=65052ebb-61e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:11:5b:aa:56:e8:3b:fc:d0:5f:34:9a:38:6c:
c0:88:b3:ee:24:85:2c:2a:e2:29:8b:c6:80:2a:f7:
b1:2a:5f:dc:ac:0a:75:87:31:4e:d0:35:f4:38:cf:
d9:04:54:7a:f9:c9:a4:85:2c:69:82:81:84:a0:cd:
20:91:55:14:c8:a8:70:9f:cf:98:80:76:9d:cf:e3:
cb:14:35:fe:bd:76:c1:a5:aa:1b:fa:d1:7e:9e:0f:
61:49:94:cd:b9:30:5b:6d:10:9e:e7:9b:21:65:2a:
2a:28:37:2e:a1:37:f0:3d:ea:c1:fd:9a:77:08:6a:
c7:c6:cd:15:6a:78:5b:f5:ec:ee:d1:6b:49:d6:cc:
d8:32:af:a6:93:6f:39:b4:53:10:f5:2a:1d:df:29:
c9:c1:57:2f:40:38:0e:22:ff:e3:c3:0d:9c:9a:c1:
f3:cd:1f:c5:1d:11:24:c0:f6:fb:26:c2:b2:23:a3:
ff:f0:0b:af:ea:10:6f:e3:09:0d:fc:07:0c:cb:44:
53:e3:cf:d7:42:b0:2d:2b:40:7f:e1:cb:57:ff:fa:
6e:c7:b2:c9:f3:02:39:b2:c0:7c:7d:a2:2d:75:5c:
51:94:f2:10:65:56:ad:8b:d1:b3:b5:93:ca:8b:ca:
4b:f0:86:70:96:60:0b:d9:cb:1d:8c:a1:a7:88:96:
6d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:94:B3:94:65:88:B6:9B:67:C8:B5:B6:A9:7B:4A:B0:70:58:73:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E7CF11E544911EE815E37834AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.9.0/24
Signature Algorithm: sha256WithRSAEncryption
68:07:8a:d7:59:2e:9a:93:0f:80:db:ad:bc:63:cb:74:b9:5c:
2f:0e:2c:f8:bf:1e:70:53:ff:cf:17:5c:89:4c:0c:8b:75:70:
16:d3:22:00:64:b3:35:fe:20:d5:e2:2e:17:b1:26:ef:28:5c:
82:a7:f9:fd:96:ae:eb:0a:f4:36:df:d8:ef:0f:c0:37:32:5d:
19:57:f4:21:e0:4f:84:31:de:99:1f:69:6a:fa:ea:e4:a8:72:
91:ef:5b:d5:6b:72:b8:7b:1a:51:c8:0c:93:d9:a2:2d:ae:bc:
94:26:5c:9d:60:1e:5d:7d:13:96:be:90:8c:64:18:61:f8:a5:
a1:24:26:f3:fd:7f:dc:88:42:e5:1d:d6:8b:98:31:70:02:9f:
ea:d7:d3:24:b6:db:3c:04:f9:c6:03:7b:ff:0c:c3:03:ba:42:
75:8b:56:b4:3d:9f:bf:84:50:24:c0:b6:fd:cc:a8:9c:05:e9:
cd:62:83:b1:03:f0:fa:be:6c:76:46:d0:b8:67:b7:ce:ad:60:
43:79:f5:4b:f2:54:bc:d7:76:f3:e1:1b:97:65:e6:79:2d:2b:
21:99:6c:01:35:68:5a:4c:11:bb:db:e4:4e:bd:77:5a:c6:63:
5b:31:79:a9:e3:d5:8f:0d:a9:cf:bc:98:25:f6:9e:3a:54:6c:
d4:fc:13:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org