Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A3F3B8686AF11EEB696534E4AD9E6FC.roa
File: 6A3F3B8686AF11EEB696534E4AD9E6FC.roa (raw, json)
Hash identifier: Ugbcmj9LQYh4GFWO9Ngr4+hcMMsQgHsv3Za8Vcj/dvw=
Subject key identifier: 61:B2:96:E1:08:3C:35:7C:42:4D:83:C4:C6:D9:AB:E1:12:30:76:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 49CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A3F3B8686AF11EEB696534E4AD9E6FC.roa
Signing time: Sun 19 Nov 2023 07:44:06 +0000
ROA not before: Sun 19 Nov 2023 07:44:02 +0000
ROA not after: Wed 22 May 2024 07:44:02 +0000
asID: 140403
IP address blocks: 156.240.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18895 (0x49cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 07:44:02 2023 GMT
Not After : May 22 07:44:02 2024 GMT
Subject: CN=6559bcc5-0485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:31:ea:37:9e:80:33:f2:57:4b:09:f4:cc:48:
24:d4:55:ed:51:4b:0b:de:42:15:49:b4:f3:1d:75:
84:d1:3e:a1:a8:c3:1f:1f:87:f0:e3:a9:c4:3d:56:
67:93:2a:90:88:b2:50:df:a9:2a:b4:65:9a:e2:a3:
ab:6a:a0:80:cb:4a:b2:5b:98:8d:65:a4:a4:0b:45:
10:16:81:b6:fb:9e:68:33:bd:ef:41:91:27:e6:37:
85:3c:96:0e:ee:24:16:d5:8f:6d:b2:38:44:dd:d0:
86:73:ba:6b:15:42:b6:95:ff:fe:28:6c:aa:df:a0:
6a:a3:44:83:d7:8c:51:58:a0:67:fe:52:db:85:08:
fb:63:f8:f5:03:eb:5d:e1:5f:bf:aa:98:28:de:32:
a0:2a:1e:e5:fb:fe:36:f8:d3:6a:aa:eb:9a:33:d7:
ac:82:cf:1c:df:78:38:a9:ff:47:dd:e1:d1:38:c5:
89:a7:d8:58:e6:08:40:d6:50:ff:65:35:30:29:fa:
c3:ba:73:fd:9a:64:54:74:06:dd:38:ba:0f:b3:89:
e9:6c:1a:67:2d:9b:c5:6b:be:22:c1:fc:da:9e:46:
38:22:28:1f:ca:51:be:ac:12:f8:06:fd:99:c3:37:
ec:f8:14:61:a0:2b:d7:68:ce:17:89:ba:d5:96:22:
e3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B2:96:E1:08:3C:35:7C:42:4D:83:C4:C6:D9:AB:E1:12:30:76:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A3F3B8686AF11EEB696534E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.94.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:ce:e9:71:50:64:5c:e3:a1:16:ac:b3:f4:5d:75:98:2d:62:
f5:12:59:1e:5a:7c:88:ac:70:a6:f9:04:c7:32:d2:1c:fa:25:
77:98:53:97:eb:46:d4:fb:f6:38:c4:8e:90:c4:a7:3e:d7:77:
91:63:69:d9:9a:dc:21:1e:b4:2e:55:45:8c:b0:84:41:e0:f4:
b9:84:d3:07:90:cf:f4:5c:99:d9:9a:2d:4c:be:61:76:cd:e1:
12:03:ca:74:23:35:c5:4e:3c:b1:27:cf:c9:09:ea:76:3e:23:
52:ca:c5:1a:f8:48:53:3b:11:8b:0c:0c:ff:bb:fc:27:b4:98:
14:dc:78:89:4d:e4:61:d8:af:e1:98:42:eb:7f:98:94:5c:d3:
9f:2a:ed:aa:e4:2c:a5:61:65:d5:e1:02:15:22:5c:5d:71:f1:
e0:72:f4:59:df:56:bd:3c:4a:dd:ee:83:48:e8:67:1f:cf:32:
ed:b0:4f:fe:27:5a:6b:bf:8a:65:d9:8c:b0:17:2d:31:60:8d:
7c:34:4f:5e:04:99:8d:2a:67:bf:50:33:0b:ae:04:84:a6:05:
8c:9f:86:3e:4a:22:b3:20:ad:5d:2a:b6:16:dc:99:f5:15:79:
0f:3a:48:47:b3:fd:11:62:32:19:a9:cf:82:70:a4:2d:2e:57:
bd:92:2c:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:08:31 2024 by rpki-client on console-ams.rpki-client.org