Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75B54750E0D511EE8DDAB08B775412E6.roa
File: 75B54750E0D511EE8DDAB08B775412E6.roa (raw, json)
Hash identifier: zVetW71s96LmrbmYowSzOwIv3LKo5JMulsu+AbScrkI=
Subject key identifier: 53:88:04:C1:56:82:25:6A:86:05:3D:AE:C9:26:09:41:B2:1F:78:CF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7E30
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75B54750E0D511EE8DDAB08B775412E6.roa
Signing time: Wed 13 Mar 2024 01:03:10 +0000
ROA not before: Wed 13 Mar 2024 01:03:07 +0000
ROA not after: Sat 14 Sep 2024 01:03:07 +0000
asID: 197730
IP address blocks: 156.227.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32304 (0x7e30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 13 01:03:07 2024 GMT
Not After : Sep 14 01:03:07 2024 GMT
Subject: CN=65f0fb4e-bebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d9:4c:84:04:f9:56:c7:a9:b3:06:d2:3d:50:
a0:af:74:e6:ec:14:96:cf:33:af:b3:5f:b4:f7:bb:
7f:81:b3:2a:95:42:e2:97:82:3f:bc:8c:77:35:c1:
98:14:4d:c8:9c:db:7e:16:70:11:81:d7:6b:20:67:
42:09:0a:89:21:bb:2c:a1:8d:ad:29:1f:b1:9a:cb:
14:a5:b2:a4:53:97:a9:ad:d8:8a:51:20:7f:b6:45:
29:05:9f:0b:29:6e:6e:e5:98:1d:6a:49:75:aa:b0:
0c:ed:68:07:4b:54:e3:df:ad:02:ff:50:15:eb:e9:
7f:9f:c2:af:4f:67:58:4a:4e:39:eb:4a:7c:21:78:
f4:c6:9a:13:b4:20:ce:da:2d:64:54:83:17:85:90:
1d:c8:e4:8d:19:8f:94:96:e2:9e:e2:f5:fd:d0:d9:
a8:f7:6e:08:ad:c1:f9:fa:2c:89:f8:a7:5e:cd:37:
d5:5e:67:4a:1e:a8:50:6e:ac:e5:dc:a3:31:8c:04:
ca:64:58:35:39:3f:bb:5e:f2:83:19:09:0d:be:49:
03:61:32:ef:b1:6c:65:39:c9:15:5d:39:11:b3:7f:
2c:fa:d6:5f:4c:b3:ae:1c:79:e4:10:1b:3f:0a:4c:
aa:60:b0:e4:29:72:05:98:6e:e0:b4:6b:d3:8e:79:
f5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:88:04:C1:56:82:25:6A:86:05:3D:AE:C9:26:09:41:B2:1F:78:CF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75B54750E0D511EE8DDAB08B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b4:ab:06:67:36:4d:f6:18:3c:e1:ff:4e:24:a5:d2:04:25:bc:
10:f9:e3:ce:83:f8:a6:99:4a:72:ad:b3:4b:44:2d:6d:68:6b:
a3:9c:52:0d:cf:d8:64:25:2e:56:6b:ed:b2:86:0d:4a:5a:35:
14:a5:91:09:e2:20:27:7c:2f:ec:84:16:1f:a1:24:cd:e5:0e:
df:66:c4:01:a3:94:bd:ec:02:0b:9a:4c:76:bb:5e:4b:b5:7f:
9e:63:ff:b8:de:05:78:17:8d:ed:36:59:f6:37:c2:d7:83:97:
82:80:3a:a3:36:f0:04:1f:92:ef:55:d2:26:5d:a8:b6:c3:a2:
6e:dc:cd:08:38:4a:e8:69:c0:d8:01:82:df:de:c6:06:c8:c9:
d2:00:4b:9b:5b:9a:3b:7c:ab:1a:e2:9b:3f:8e:7e:20:59:f1:
20:ed:27:5c:32:cb:db:e7:eb:e4:e3:46:df:22:2e:c1:55:d7:
de:ee:7a:7d:71:11:e0:e7:be:4e:34:0b:5b:c4:5e:e9:00:1b:
16:d2:b7:c3:2c:86:2f:a6:8b:8a:a5:f7:d0:a0:60:50:9b:39:
36:fc:66:8b:3c:52:43:4f:58:9a:71:ff:4f:11:dd:9f:87:b2:
d9:5c:00:e9:8c:16:ae:95:3e:3b:d9:62:2a:75:59:34:ee:7c:
03:75:80:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org