Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8DCCF4043FBE11EEAF89B67F4AD9E6FC.roa
File: 8DCCF4043FBE11EEAF89B67F4AD9E6FC.roa (raw, json)
Hash identifier: fT8sJJAIzunyFfL0QRDQnBonQqliVitTPDyDRRqiUMw=
Subject key identifier: 70:2A:23:1D:0E:8A:8B:E7:A2:7C:95:64:03:79:97:CD:D8:08:21:98
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 36A1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8DCCF4043FBE11EEAF89B67F4AD9E6FC.roa
Signing time: Mon 21 Aug 2023 01:03:35 +0000
ROA not before: Mon 21 Aug 2023 01:03:32 +0000
ROA not after: Sat 29 Nov 2025 01:03:32 +0000
asID: 133012
IP address blocks: 156.248.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13985 (0x36a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 21 01:03:32 2023 GMT
Not After : Nov 29 01:03:32 2025 GMT
Subject: CN=64e2b7e7-a777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:9e:2a:36:0a:8c:0b:dc:ef:67:57:83:64:
d5:cd:fb:44:72:ac:cf:9e:24:44:ac:5a:e4:d9:70:
4f:06:fc:b2:73:3b:76:59:63:0c:39:86:7c:32:71:
12:e4:3c:da:f5:68:b5:5e:0f:05:1d:06:01:f4:6e:
f3:92:f5:bc:f0:65:b3:1a:f1:b9:7a:ac:eb:99:a0:
e3:79:28:16:89:53:44:3e:b5:c1:74:b5:c9:36:90:
58:35:0f:9d:5d:60:9e:02:46:18:f5:dc:83:db:21:
4b:58:d4:8d:36:26:30:fd:c5:47:7e:ca:0f:c0:b0:
11:74:b3:90:c6:49:4e:f9:7c:d7:71:9b:20:9f:7b:
7c:4d:67:e5:0b:4f:b4:5c:ca:77:1b:34:7e:81:a2:
d2:3b:5e:f6:f9:37:1c:9d:99:ba:4c:5c:d7:51:85:
a4:d1:33:d2:64:c5:43:6d:4d:67:8a:ea:50:c8:f4:
91:72:f9:3b:16:18:3a:39:7c:54:e6:c4:dc:3e:2d:
7e:5f:ae:48:90:4f:c6:ac:3b:a9:1b:22:26:b4:51:
83:ea:d4:71:e3:31:43:8f:58:b7:eb:08:3a:19:97:
6c:4b:46:de:3e:83:9c:14:e0:15:ce:00:93:af:46:
4a:8a:46:b7:1f:da:49:3c:3c:4e:b4:f2:dc:e0:14:
03:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2A:23:1D:0E:8A:8B:E7:A2:7C:95:64:03:79:97:CD:D8:08:21:98
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8DCCF4043FBE11EEAF89B67F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.0.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:16:b5:4e:28:0b:6e:a1:ff:33:ad:f4:a6:fc:56:8e:50:05:
99:cf:b5:de:ba:e8:57:f1:ca:5c:61:a3:da:94:49:22:6c:33:
1d:89:a4:98:b2:dd:e7:1f:25:1c:7b:09:d0:fc:ad:03:c3:50:
0d:95:1b:7e:fe:15:43:d2:d9:6d:0c:40:38:d0:d4:19:64:1e:
09:e7:6d:3a:a0:ed:e1:99:7a:db:8d:33:17:a9:8c:9f:91:92:
84:60:5a:54:22:23:a6:d7:87:d6:6b:78:64:3a:cb:56:01:df:
9a:10:5f:a3:00:14:0c:4c:a3:90:42:16:c3:28:67:dc:32:ff:
3d:80:d3:39:c0:9b:bf:de:ed:2d:74:18:4d:a1:9a:c5:6d:3f:
50:80:a7:7c:9a:25:9d:0a:38:ad:c1:bc:c1:d4:82:55:1e:93:
67:d9:20:38:92:b9:03:69:81:c5:ba:03:b3:15:35:0e:9b:c0:
36:5e:88:17:e7:4f:1d:0b:49:fe:c0:5d:5f:8b:8e:ed:76:de:
1f:0b:04:df:55:0b:77:ce:e4:d6:da:94:71:0b:95:42:fc:c6:
de:4e:bd:7e:b0:02:71:f6:de:f2:96:9d:db:d1:9b:f5:ec:9d:
ea:12:50:2f:68:30:0b:58:f0:24:39:2f:fa:51:05:a0:bc:0e:
e7:cc:02:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:55 2024 by rpki-client on console-ams.rpki-client.org