Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9DF5769A277B11EEA17DD6884AD9E6FC.roa
File: 9DF5769A277B11EEA17DD6884AD9E6FC.roa (raw, json)
Hash identifier: N3QFixX2TGEuoTEEPhlXUaQU9yP2OLLb5H6h2woBDkc=
Subject key identifier: 63:CF:46:A4:9B:74:CC:18:AE:24:BB:64:1F:E2:22:D1:AF:F0:57:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3181
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9DF5769A277B11EEA17DD6884AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:03:58 +0000
ROA not before: Fri 21 Jul 2023 04:03:54 +0000
ROA not after: Thu 13 Jun 2024 04:03:54 +0000
asID: 22773
IP address blocks: 156.249.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12673 (0x3181)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 04:03:54 2023 GMT
Not After : Jun 13 04:03:54 2024 GMT
Subject: CN=64ba03ae-01be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3b:07:fb:3e:3b:cd:28:7e:aa:74:b5:04:3f:
9f:5d:d7:51:d7:2f:df:d5:dd:cc:0f:8b:5f:4b:59:
2b:8d:71:5f:8b:a2:b1:b1:f2:49:07:44:b7:6a:c1:
83:f5:85:61:02:a1:2e:2a:28:21:45:ef:8b:54:58:
52:41:8d:d1:33:5c:24:fc:98:3e:c1:69:6a:07:dd:
6c:0f:c3:44:a0:89:59:88:e5:2e:e4:12:2a:16:6c:
34:cf:f7:c9:5c:88:84:9c:6f:80:9e:6c:f8:c0:98:
ea:bd:d3:d8:c2:4e:4e:bf:d2:bf:ae:36:08:b8:dc:
32:33:15:f4:e5:a8:a2:ec:b4:7a:a2:fd:84:fe:94:
c7:f7:af:99:c9:a1:5f:8b:75:90:da:85:71:f3:f9:
71:54:d2:e8:9a:ca:4e:86:c1:c0:94:33:4f:f4:68:
47:bc:31:f5:85:07:4d:fa:46:00:ff:d9:09:2b:48:
b4:aa:4d:4f:ce:f7:de:29:dc:29:49:33:13:03:6f:
1e:6f:36:89:a8:ed:52:59:a6:2e:63:44:b0:ae:db:
ef:7b:5f:0e:c1:1a:82:ef:c7:0e:24:62:7a:26:a5:
d0:24:0e:4c:7a:2c:13:f3:d1:5c:7b:8a:c5:30:29:
3f:f5:28:3d:76:9c:d9:3d:96:7d:d3:61:04:72:d0:
fa:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CF:46:A4:9B:74:CC:18:AE:24:BB:64:1F:E2:22:D1:AF:F0:57:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9DF5769A277B11EEA17DD6884AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.4.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:ca:d0:d6:b6:53:69:3e:08:ef:1d:8f:4f:de:bb:d5:5e:70:
16:0d:3c:90:f7:27:79:f6:e1:b7:2d:f3:28:11:d9:57:bb:8f:
65:ce:e4:05:9d:26:73:8b:2e:ab:d8:01:40:13:1e:72:de:42:
4f:e1:ce:bb:90:cd:20:92:d2:08:4a:e8:a7:36:36:1a:00:fc:
67:59:d8:84:8e:c0:6b:8b:04:1e:89:80:f2:c5:00:38:0c:62:
29:cf:9b:14:c1:24:33:a3:ac:c5:db:a3:e9:b9:86:f0:78:8c:
37:a4:95:a9:76:06:fb:0e:32:39:7c:1f:06:63:01:b0:a4:32:
c5:b4:71:2a:e9:a6:c0:f8:cf:5e:46:36:3d:62:70:f2:53:f4:
e3:80:c9:28:d3:51:b1:e3:a2:54:74:76:7f:1f:47:7e:72:96:
bb:45:20:6e:c3:c6:78:5e:3d:01:d5:bd:b9:cd:84:d0:f3:63:
df:d5:b4:08:87:0b:e1:c8:a9:ba:79:96:11:2b:96:10:86:a3:
87:86:23:ff:a8:54:f6:d2:d0:11:17:4b:70:1e:dc:d4:15:58:
0d:20:85:cf:aa:7b:89:3e:8c:a9:b3:3c:c3:0d:ed:1d:aa:32:
32:2f:35:78:fc:f5:dd:c1:08:4f:d3:f1:0a:ac:25:28:6d:a8:
74:7d:ca:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:37:53 2024 by rpki-client on console-fra.rpki-client.org