Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/606DE68284F411EE9992B9484AD9E6FC.roa
File: 606DE68284F411EE9992B9484AD9E6FC.roa (raw, json)
Hash identifier: XKQBQ4enlEjybSqXQM/0xMtgpAyI+DAg3yriXB8GGP8=
Subject key identifier: CC:06:53:2A:A4:A9:3B:63:51:56:59:6C:76:9B:5E:1B:4B:0B:FD:C3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 495D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/606DE68284F411EE9992B9484AD9E6FC.roa
Signing time: Fri 17 Nov 2023 02:52:42 +0000
ROA not before: Fri 17 Nov 2023 02:52:39 +0000
ROA not after: Tue 12 Nov 2024 02:52:39 +0000
asID: 397630
IP address blocks: 156.225.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18781 (0x495d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 02:52:39 2023 GMT
Not After : Nov 12 02:52:39 2024 GMT
Subject: CN=6556d57a-fc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bb:5e:ff:d5:b5:15:c6:77:8e:9c:25:e1:96:
85:08:2a:9b:ac:01:85:0c:d6:27:4d:c4:02:3a:f4:
1a:da:25:44:88:3a:3d:53:ee:81:c4:d6:da:09:91:
9e:52:d4:ff:28:75:93:00:4b:56:18:5b:dc:73:a2:
a1:55:e2:a1:35:f5:81:09:55:2d:ae:cd:87:0a:54:
9e:09:81:7e:81:18:37:d1:7f:8d:83:ad:b8:0f:70:
17:d8:8f:79:95:5e:ad:89:2b:ad:15:6f:f1:e4:70:
9b:af:bc:f9:a3:a6:72:75:94:75:40:d2:3a:38:9a:
40:f3:a6:3c:4b:a9:0e:59:a1:cf:52:01:eb:91:cf:
c9:10:19:e8:b2:2d:ab:f8:51:24:e8:a5:d8:5b:b9:
4d:e4:ee:ff:9f:59:d1:aa:92:81:bf:2f:11:c7:0e:
ad:ba:33:31:09:d0:1f:30:04:5a:e2:27:87:b1:16:
3f:fb:e5:7a:ad:fd:4e:44:37:22:d4:00:3b:72:99:
d6:98:1c:94:23:7e:8f:13:97:d1:13:23:bb:01:e4:
05:50:77:eb:01:76:4d:a4:27:1c:02:ad:9a:4f:ca:
a9:b9:7b:db:6b:bb:6f:27:88:c4:f0:6d:e1:06:83:
90:58:52:82:98:f7:b8:8b:17:5f:07:ba:bb:51:1e:
74:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:06:53:2A:A4:A9:3B:63:51:56:59:6C:76:9B:5E:1B:4B:0B:FD:C3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/606DE68284F411EE9992B9484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.15.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:41:ef:e7:01:1e:9e:c5:aa:ff:47:6f:63:92:e1:b7:c8:db:
7e:dc:8c:cb:1f:7b:5e:cf:31:01:d9:e5:2c:09:ac:4d:76:1e:
57:6f:d0:48:dd:62:85:e6:39:e4:6e:00:f3:a4:85:e9:ee:c4:
44:73:25:c5:4a:dd:16:26:7c:52:fc:a0:a5:aa:a3:a4:fa:46:
c3:6f:be:49:63:78:63:66:2f:41:d8:7e:89:bb:c7:ae:2f:ed:
b3:48:bf:a0:7d:e7:90:0a:e5:d5:e8:45:70:67:a4:9a:dd:a8:
08:48:e6:10:a9:f3:aa:82:60:63:c5:51:ad:e8:3b:57:38:86:
06:f4:22:be:41:13:41:0d:12:41:3d:3e:50:bf:9a:66:df:71:
ed:a2:89:9b:28:fb:13:4a:21:ec:f9:1a:b3:ad:5e:41:f8:d2:
b1:dc:ef:cb:ad:78:b3:ff:4f:fe:3f:7c:56:0a:05:6b:c1:01:
51:2d:0e:54:48:42:65:c6:da:17:73:dc:11:6e:34:d6:9f:2e:
ff:f5:e6:be:bd:eb:93:f0:3e:f9:ec:29:34:da:10:20:de:3c:
b2:9c:cf:90:90:f1:7f:61:0a:a2:14:14:53:12:32:59:6d:48:
1b:22:57:36:f3:ac:b4:fb:5a:24:80:59:02:d5:c0:40:69:62:
6b:f7:c9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org