Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F93F03CAE1A11EEA84A2399775412E6.roa
File: 9F93F03CAE1A11EEA84A2399775412E6.roa (raw, json)
Hash identifier: gA+mc3rKYOuSbs4SNR/yX78KL3nlWXyZYzR8WTrw0R4=
Subject key identifier: F6:A3:E6:C4:A9:99:AD:51:95:FD:97:B2:4E:05:CE:74:3C:33:A5:DF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5EAE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F93F03CAE1A11EEA84A2399775412E6.roa
Signing time: Mon 08 Jan 2024 11:39:47 +0000
ROA not before: Mon 08 Jan 2024 11:39:43 +0000
ROA not after: Tue 14 Jan 2025 11:39:43 +0000
asID: 138965
IP address blocks: 156.236.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24238 (0x5eae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 8 11:39:43 2024 GMT
Not After : Jan 14 11:39:43 2025 GMT
Subject: CN=659bdf02-767c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0e:e9:52:13:8b:29:d3:86:0e:b4:a9:62:36:
77:1d:05:d4:f9:f9:63:a2:e9:d5:28:bc:90:26:ac:
bc:fc:3d:44:29:ea:c2:3b:82:2e:b8:b3:ce:b9:ef:
85:e8:c4:08:61:7f:86:d2:af:3d:b9:8b:f6:77:0c:
b3:44:30:07:2b:04:f4:b9:16:df:b2:8e:72:6c:d9:
15:60:86:07:3d:67:b0:04:51:ac:4e:87:77:3d:69:
61:28:1e:bd:50:d5:62:48:1b:eb:a5:9d:7e:c3:c8:
02:c7:b3:03:80:7a:fc:b8:c3:41:36:38:26:f1:18:
bf:33:29:05:0a:a8:6e:1d:d6:36:b6:ec:5d:13:f4:
51:e2:5b:6c:bc:bf:7f:9c:99:29:65:0e:51:e0:86:
7f:b7:05:83:6b:7b:ae:7a:5f:58:54:dc:83:85:8c:
b8:a1:e6:3c:03:a3:d3:c4:32:21:0a:c2:ea:85:ca:
d0:e9:6d:44:90:81:40:bb:2e:39:df:f4:79:ca:1f:
4f:7a:1e:7b:b6:c8:ed:1e:34:74:c2:7e:47:fe:1a:
ba:88:f9:27:8f:37:39:4f:f0:83:2e:6e:37:12:69:
3f:46:a2:6e:d8:77:b9:2f:f4:1c:b5:91:54:36:bd:
ac:5e:ab:c0:77:ae:00:1e:7c:77:98:20:59:f6:1a:
c3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A3:E6:C4:A9:99:AD:51:95:FD:97:B2:4E:05:CE:74:3C:33:A5:DF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F93F03CAE1A11EEA84A2399775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.92.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:83:c6:e3:7c:dd:ba:92:3b:90:c4:73:e8:69:4b:2b:9d:de:
22:07:3a:5d:80:29:dd:aa:f7:4f:f1:b3:92:9e:0f:19:40:6f:
d7:45:90:65:2d:95:d3:eb:7d:70:ca:90:8b:f4:41:b7:21:eb:
b1:1b:08:df:0f:34:bf:b4:e5:96:3b:7f:d1:f6:f4:a6:11:9a:
64:d6:b8:b5:04:55:cb:85:b1:0a:24:1f:a2:50:24:61:a9:c1:
89:6e:95:90:be:3b:ee:66:7b:1a:f1:a4:93:6e:21:c4:15:64:
3f:53:e5:d9:b1:28:14:25:9e:65:73:99:6d:7a:84:35:ba:ca:
62:2f:40:80:e0:b2:16:68:6d:8f:1a:b7:93:e9:f1:9c:f5:a1:
16:36:f4:6b:35:11:35:0f:90:e1:b4:72:e3:46:79:8d:04:8a:
d2:bf:d4:7f:d7:3d:8f:4e:20:f0:c2:74:a7:c7:b4:e1:24:bb:
91:b2:96:5c:0b:4f:96:f2:11:16:61:7b:79:19:af:00:d4:27:
1a:b2:e8:1f:27:ea:2b:d9:cd:bd:83:56:d5:cd:40:6a:17:10:
cc:cd:9b:1c:d9:69:27:fa:14:db:89:d8:55:6d:cd:65:94:13:
f4:46:b8:48:61:c0:51:db:9d:da:86:11:3f:40:1e:75:c2:57:
10:3f:a1:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org