Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C2FC2B4E0D311EEA26F4087775412E6.roa
File: 8C2FC2B4E0D311EEA26F4087775412E6.roa (raw, json)
Hash identifier: 3uIJSDEQ5k9J9hg0K8ola+RcNmx8y0zPDwLoVUy23l8=
Subject key identifier: C1:1D:79:47:82:15:55:CC:31:12:8A:FE:08:F1:0A:29:C7:FF:6B:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7E25
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C2FC2B4E0D311EEA26F4087775412E6.roa
Signing time: Wed 13 Mar 2024 00:49:29 +0000
ROA not before: Wed 13 Mar 2024 00:00:25 +0000
ROA not after: Sat 14 Sep 2024 00:00:25 +0000
asID: 197730
IP address blocks: 156.237.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32293 (0x7e25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 13 00:00:25 2024 GMT
Not After : Sep 14 00:00:25 2024 GMT
Subject: CN=65f0f819-9700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c1:4a:d1:90:6c:82:41:6e:26:5a:62:8d:91:
85:0f:2a:ea:64:e7:c3:93:23:4f:b1:e0:67:3a:62:
56:b5:9c:03:3e:fa:61:b1:0c:b8:1b:84:82:e5:26:
49:9f:98:a6:71:cd:94:46:7b:26:7b:3e:03:cb:29:
31:3f:d6:46:a0:95:60:d3:92:52:ba:93:c4:89:a9:
d0:06:c1:43:eb:ae:f8:16:f0:f5:7e:d6:6a:77:03:
71:8d:34:78:5d:3a:51:43:88:17:28:a4:43:65:ae:
73:80:e3:96:a6:a4:b6:f1:42:04:2b:2b:49:b2:72:
9c:80:08:42:49:f8:86:f3:71:e1:03:46:76:f8:18:
d2:d4:a5:e2:45:36:bc:13:17:7c:ae:e7:53:bf:4b:
75:44:b2:a7:b8:31:18:92:c7:98:4e:16:bd:fc:e0:
bc:ab:93:40:56:8f:41:6c:8c:5b:41:18:3c:5e:b3:
18:8a:d5:28:55:8e:61:61:35:e6:10:50:b2:81:d9:
65:03:94:2c:cd:c1:cd:a0:ec:6f:ba:51:ca:24:e7:
46:99:fb:12:68:cc:5c:47:d4:ee:22:f6:2b:85:f8:
39:1e:62:bf:94:ec:c6:e8:66:3c:f7:01:4d:91:dd:
2b:4c:19:f1:df:34:aa:0d:1c:94:c6:40:ff:1f:3a:
f3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1D:79:47:82:15:55:CC:31:12:8A:FE:08:F1:0A:29:C7:FF:6B:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C2FC2B4E0D311EEA26F4087775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.104.0/23
Signature Algorithm: sha256WithRSAEncryption
88:75:c0:9a:1e:4a:59:b0:67:19:0e:85:c6:bb:a9:7c:a9:05:
f1:95:d6:21:ce:11:80:3b:e3:2a:94:ba:3b:d0:79:58:f3:db:
e6:63:f9:02:9c:ae:39:df:fc:e2:d0:5f:dd:63:ac:f0:0e:e2:
e2:44:e7:d2:af:ed:3e:9c:9b:74:5c:86:e0:db:39:35:93:a3:
10:3c:3a:1f:fe:b0:eb:e5:7e:45:ec:32:0d:4d:49:c2:42:d9:
35:0d:05:57:34:0f:18:2c:50:45:a7:45:8f:a7:c0:16:b1:65:
42:d5:fe:01:4f:ca:a7:62:89:92:57:86:c8:0f:f5:3e:43:d8:
ae:46:fa:e8:76:e0:0d:49:50:0f:62:94:5b:f9:ae:9c:1a:20:
33:f4:96:a4:e3:da:3d:75:d4:4a:69:5e:e7:a9:04:dd:da:8e:
c3:a4:f9:19:c2:05:60:c0:e1:e9:61:96:52:f2:7a:a7:7a:c3:
8a:85:f9:99:34:a3:1e:b9:75:94:db:ca:f5:69:bd:ed:43:76:
a4:19:fd:1d:55:5e:41:f4:d8:67:1b:2d:53:d9:3f:2e:30:11:
81:92:31:d6:ee:43:c4:62:66:ca:9e:de:7a:06:af:f9:08:06:
61:65:4c:db:d2:2e:82:f5:ec:0a:76:bd:4b:60:bd:8a:5b:ac:
0d:8d:3c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:55 2024 by rpki-client on console-ams.rpki-client.org