Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F4CC9507EB511EEA6D0DD4E4AD9E6FC.roa
File: 7F4CC9507EB511EEA6D0DD4E4AD9E6FC.roa (raw, json)
Hash identifier: +ytOHz0N+BqtfZLJvdW1fzyEtmPnfZdABrzv+jyKHAQ=
Subject key identifier: E1:CD:C4:8E:2E:FB:3D:27:31:AF:23:0B:08:62:8E:EA:60:26:04:63
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 44D1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F4CC9507EB511EEA6D0DD4E4AD9E6FC.roa
Signing time: Thu 09 Nov 2023 04:07:29 +0000
ROA not before: Thu 09 Nov 2023 04:07:25 +0000
ROA not after: Thu 08 Aug 2024 04:07:25 +0000
asID: 133861
IP address blocks: 156.245.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17617 (0x44d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 04:07:25 2023 GMT
Not After : Aug 8 04:07:25 2024 GMT
Subject: CN=654c5b00-e0d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:69:49:40:0f:82:31:bc:02:14:95:d6:4f:ff:
91:36:ee:51:f4:2a:4a:9b:3e:88:08:fe:9f:17:03:
5d:ec:7f:b0:38:66:b4:8d:ac:e5:c1:0c:cd:e4:d3:
e5:ae:80:e8:38:0e:66:fe:93:f8:bd:5f:1b:a6:bc:
c1:f3:3f:c1:51:4f:25:99:ab:48:c6:37:fe:5e:eb:
ff:2b:3b:ee:f4:e7:fd:20:d7:40:28:12:3a:76:f5:
63:40:87:6e:12:c0:8f:25:cc:86:9a:47:14:85:10:
c9:e8:e3:fa:61:9e:22:3b:bf:0f:b8:01:fa:3f:16:
4a:15:9a:b9:3f:a5:8b:de:9a:c7:da:39:a0:e9:31:
28:5a:f9:49:d2:1e:99:8a:19:48:33:e5:00:7c:f8:
6a:98:79:65:19:99:d5:3d:f5:b5:41:3d:61:e5:e4:
1d:7c:0e:3f:6f:54:8c:54:89:91:f8:b2:12:5f:bc:
c3:33:90:7a:c1:7e:cc:48:9b:8c:5f:09:06:31:1d:
66:f9:85:0c:2f:67:97:d8:39:c9:97:6b:65:31:85:
14:65:3b:19:6e:b7:98:39:0f:b3:cf:e4:88:be:76:
29:61:d3:35:09:b0:c1:60:96:7f:fd:24:75:7b:e1:
ce:d0:2d:ce:fa:2f:d3:85:e6:ee:dc:fa:20:bd:e2:
00:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CD:C4:8E:2E:FB:3D:27:31:AF:23:0B:08:62:8E:EA:60:26:04:63
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F4CC9507EB511EEA6D0DD4E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.19.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:07:fe:cf:8d:7a:ed:08:f8:7d:e9:e6:ba:44:e6:db:6f:d8:
35:a0:de:f4:1b:e4:7b:d3:10:bf:4f:96:c5:a6:25:23:a2:e3:
49:e1:83:7e:9f:47:a5:6a:77:63:4d:be:f5:bd:5a:30:db:85:
71:f6:da:05:02:7d:9c:77:a4:cf:d2:ae:09:91:2c:06:b5:68:
82:e9:40:91:4a:68:db:be:e4:10:81:d5:e8:62:38:8c:f3:c0:
5d:ce:48:b1:1e:09:79:6a:ff:39:94:2c:00:b3:19:6a:86:2f:
9a:b3:f4:c0:ed:98:ea:f5:e1:c1:79:75:1f:00:f6:81:73:88:
09:1e:a0:3f:cc:27:df:2e:82:1b:bd:2c:96:4a:81:fa:06:f2:
d5:36:13:82:aa:df:ae:b5:52:9c:e3:50:f8:01:9c:ab:7d:1d:
aa:4e:3a:4e:38:0a:ea:2a:de:e0:58:b2:bb:0d:4c:1c:55:2b:
d1:4d:67:a6:65:df:b8:ee:19:0d:e6:60:93:63:fd:5c:8c:a0:
91:05:7e:c4:0d:27:cf:8d:48:5e:40:82:38:24:01:ff:a6:88:
9b:f3:f4:44:4c:7e:43:5a:c8:5e:3b:0b:e5:00:72:58:57:45:
ad:7a:ae:4b:61:26:4d:8a:4d:d5:20:a2:69:5a:e2:dc:e1:25:
e6:62:da:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:55 2024 by rpki-client on console-ams.rpki-client.org