Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A21476B83B3011EE98C03F524AD9E6FC.roa
File: A21476B83B3011EE98C03F524AD9E6FC.roa (raw, json)
Hash identifier: dXFcrI2ek1hB+Y32oVSxXt6Ss2n9+F+uYG2W5nmFm/c=
Subject key identifier: 4E:47:F8:05:0D:70:E2:43:95:0F:87:12:64:DF:53:B2:EC:EC:EA:5E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3637
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A21476B83B3011EE98C03F524AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:57:36 +0000
ROA not before: Tue 15 Aug 2023 05:57:33 +0000
ROA not after: Mon 27 May 2024 05:57:33 +0000
asID: 140627
IP address blocks: 156.247.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13879 (0x3637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:57:33 2023 GMT
Not After : May 27 05:57:33 2024 GMT
Subject: CN=64db13d0-8219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e5:ed:1e:b4:50:46:72:61:e3:fc:c1:fd:76:
4b:a9:e2:1f:40:d7:f6:0e:b4:c4:7b:17:40:ea:b5:
32:37:a2:af:5a:21:30:e7:7f:6f:ea:dc:3d:10:20:
ff:af:60:55:b0:33:c7:f5:ae:2e:c1:25:18:81:cc:
c6:7e:ec:83:94:2b:6a:55:3e:0c:88:b8:02:4f:4a:
be:07:f4:26:67:b4:e9:49:25:17:ea:30:84:1d:da:
4c:e8:16:c6:79:c0:9a:7e:50:1f:f1:31:3d:75:12:
58:54:90:32:8e:e5:c3:60:fa:ff:77:22:7b:71:db:
1d:50:3a:a4:ff:96:03:19:d7:aa:9d:6e:f6:91:6d:
8c:d1:a9:88:6c:ee:48:a8:75:ec:b8:b4:b9:83:0b:
82:e8:3b:65:3f:fb:09:c5:6c:90:58:8e:bf:67:87:
d9:0c:f3:6c:f1:d3:7e:df:e0:54:2e:d1:95:b8:32:
aa:df:21:bf:97:75:3e:3c:7e:ca:82:1e:00:d1:8d:
7f:9e:31:38:a2:61:24:04:a1:94:28:8b:eb:68:a1:
4e:ee:80:dc:5e:a1:4a:4b:f2:f7:ad:c3:a2:2c:bc:
c5:c6:a4:06:a5:c7:da:16:82:d7:8d:26:fe:d5:ab:
60:93:cb:36:c4:7e:01:e0:aa:9c:fd:36:44:2c:a4:
3b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:47:F8:05:0D:70:E2:43:95:0F:87:12:64:DF:53:B2:EC:EC:EA:5E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A21476B83B3011EE98C03F524AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.187.0/24
Signature Algorithm: sha256WithRSAEncryption
74:4c:e9:e8:08:da:d5:c1:72:bc:a8:17:88:ae:bb:e5:0b:da:
66:d8:ad:08:4b:b3:ce:98:9d:26:1f:3b:39:5f:74:c5:53:be:
90:40:8f:e2:2f:bd:7b:95:c4:9f:65:aa:f5:09:0e:b7:bc:89:
fb:d1:77:a3:69:cc:b3:59:cb:99:c1:72:b5:d4:1e:d7:ed:e9:
ef:b2:ee:68:98:88:ea:d0:61:29:9d:59:bb:8a:17:7f:9f:2f:
19:c3:4b:8f:e0:92:fb:83:68:27:09:f2:9a:8b:7a:59:40:ff:
e0:1d:4e:b4:0a:31:d1:18:ed:2b:7b:62:0d:c3:63:cf:a2:71:
6e:50:e6:27:b8:a5:75:8e:4e:87:db:47:af:4e:f2:ff:0b:09:
4c:ae:70:31:a0:00:55:82:92:2f:e6:5c:32:80:31:77:be:5c:
07:16:1c:84:8a:de:8c:5b:bd:87:64:d0:78:00:b3:63:28:cf:
aa:b2:1f:0f:de:d7:28:48:26:6c:a6:71:33:34:da:08:92:0a:
3c:84:95:e2:9f:24:4f:61:0f:ab:d5:54:37:71:2c:66:2e:89:
5c:2c:2f:78:ee:da:db:f3:49:ab:4f:d9:cd:a6:b2:d9:7f:d6:
8e:37:9e:c5:b8:ab:0f:45:42:e8:aa:a6:d6:a2:e5:f4:ba:35:
d2:4e:fb:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org