Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/91EB522E5C1A11EE8B04896E4AD9E6FC.roa
File: 91EB522E5C1A11EE8B04896E4AD9E6FC.roa (raw, json)
Hash identifier: vfu6i4/5GDdDiYrTP6mtHwHPya6dZ3uCXp6ufu5RLDY=
Subject key identifier: 27:A6:35:B0:CE:B6:AD:B9:33:8D:73:BC:68:15:41:E0:A5:E1:04:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3B46
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/91EB522E5C1A11EE8B04896E4AD9E6FC.roa
Signing time: Tue 26 Sep 2023 03:12:48 +0000
ROA not before: Tue 26 Sep 2023 03:12:45 +0000
ROA not after: Mon 30 Dec 2024 03:12:45 +0000
asID: 984
IP address blocks: 156.249.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15174 (0x3b46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 26 03:12:45 2023 GMT
Not After : Dec 30 03:12:45 2024 GMT
Subject: CN=65124c30-3a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:06:27:34:8e:9b:73:d2:36:08:55:e3:cf:2c:
c9:48:1c:f2:d9:6f:05:2f:18:ed:10:d3:c6:26:92:
c6:c4:2f:c9:e8:14:19:25:d9:2f:61:cb:c6:2d:32:
90:41:29:02:c4:f6:20:44:7a:f7:97:28:f4:24:4d:
df:24:7d:9e:40:57:c1:04:1e:00:55:52:04:91:ba:
bb:66:3e:c2:35:48:6c:be:9e:99:d0:11:2a:87:2e:
9f:51:f1:4b:a2:ca:ca:84:73:8c:4b:7a:82:8f:56:
e6:c9:e4:e0:19:71:c9:da:37:fe:48:b3:4c:b4:d4:
74:35:08:cb:99:8c:1a:3b:2c:d2:0a:fd:40:c4:42:
b8:9d:54:36:2c:34:e6:bd:8f:91:40:7a:cd:71:4c:
d4:ff:77:77:74:52:b2:f3:02:74:9b:64:f0:f8:e7:
e2:69:b1:f4:8a:73:73:b2:1e:4c:be:6b:2f:fa:2a:
6d:52:a2:4d:e4:cf:03:e8:b0:e3:4f:40:7f:3d:37:
24:bf:9b:29:0c:9b:53:fd:d1:44:37:ec:63:aa:ff:
1a:d9:fb:f8:0e:da:a3:8a:97:c5:59:6b:b5:50:d9:
7a:33:ca:7b:67:06:5d:1b:36:ad:74:57:d5:a5:03:
cb:43:05:2f:ae:eb:13:5e:2d:d2:63:ec:4e:ce:cf:
2a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A6:35:B0:CE:B6:AD:B9:33:8D:73:BC:68:15:41:E0:A5:E1:04:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/91EB522E5C1A11EE8B04896E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7d:21:a2:82:59:b9:f8:1d:64:c3:62:cf:47:7e:1c:73:8b:72:
06:4f:87:c4:de:6a:55:93:3d:f9:d4:13:99:39:23:d1:19:3e:
64:7e:79:8c:f4:3d:00:a7:a3:8a:6c:77:e5:5f:37:e1:20:56:
71:28:99:d2:b0:e6:20:30:fd:e2:1c:b0:15:a5:4a:64:6a:ed:
da:f0:a7:0b:38:89:9d:d0:a9:b1:12:50:bc:c4:e6:ec:0b:01:
c1:28:4c:98:a1:ca:36:85:18:a8:14:a9:e5:5a:da:81:16:4b:
f2:e1:67:98:5c:ca:16:9c:4f:37:e0:e9:c2:1c:26:26:6f:4c:
05:27:86:b5:d1:01:f9:8f:40:56:30:ff:2a:4b:64:5d:50:d0:
77:a2:3b:f3:87:a1:76:03:89:f9:56:b9:e0:11:6e:6d:ce:c2:
fa:4f:fe:ad:83:c8:3a:61:a2:ef:de:ba:50:6e:4e:8b:f9:82:
80:04:23:07:bd:80:b0:4f:1e:75:40:d5:a3:bf:84:d4:d9:ed:
d6:37:df:98:a8:6e:b7:16:f7:68:20:03:08:a9:ee:dc:cb:bd:
5b:fb:cf:d6:98:5e:bb:a9:6e:7e:98:ae:9a:06:bd:4b:f4:a6:
5f:b8:f4:d5:3b:c8:6d:18:57:3d:a0:d8:55:6c:64:57:70:a6:
58:bb:41:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:13 2024 by rpki-client on console-fra.rpki-client.org