Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A56158BA84F311EEAC1276464AD9E6FC.roa
File: A56158BA84F311EEAC1276464AD9E6FC.roa (raw, json)
Hash identifier: 7CCPEguZDoOI+uO/EQwY738Ncwelp7u6JpUrc2vzLhk=
Subject key identifier: 4C:6B:BD:D7:63:2F:E6:70:43:A5:20:7F:FF:78:0B:FE:29:64:92:C7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4953
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A56158BA84F311EEAC1276464AD9E6FC.roa
Signing time: Fri 17 Nov 2023 02:47:28 +0000
ROA not before: Fri 17 Nov 2023 02:47:25 +0000
ROA not after: Tue 12 Nov 2024 02:47:25 +0000
asID: 64267
IP address blocks: 156.239.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18771 (0x4953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 02:47:25 2023 GMT
Not After : Nov 12 02:47:25 2024 GMT
Subject: CN=6556d440-6717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:82:e0:0f:70:6b:fa:a7:2d:50:27:cf:7a:f0:
e2:3d:7b:12:39:42:9a:c3:bc:f2:ce:ba:fa:4f:65:
5e:a9:fd:49:60:1b:61:ad:af:b0:09:30:55:68:52:
46:f3:4c:e8:54:82:ff:69:94:69:d2:9a:71:69:d9:
f3:94:ef:53:43:8f:26:d2:2a:d1:95:39:b6:87:31:
d9:6b:25:e7:0f:83:32:ea:e2:25:40:46:32:4e:5f:
c7:a6:a4:da:49:18:06:f4:69:26:51:cd:5c:36:73:
7d:97:53:00:d0:63:b2:61:1f:63:41:96:9a:6b:75:
65:3f:94:19:57:3d:50:c8:a2:89:38:71:a5:b2:db:
e5:1b:2b:6e:ad:e3:e5:0b:b8:26:fc:b8:bc:96:bc:
b4:df:44:3c:e9:40:16:e8:a4:9f:28:e2:30:18:b6:
f4:47:3f:5e:76:c6:51:63:63:57:09:c7:1c:3e:c4:
11:b4:e3:92:40:e3:6f:10:9b:80:ed:3d:d0:eb:3b:
cc:47:67:af:fd:a9:bc:01:dc:ca:86:c6:6a:67:2f:
0e:f8:2c:e4:83:5d:88:23:54:33:7c:f4:94:9d:f3:
a3:30:03:ba:b0:f3:12:cf:f6:2e:b3:75:9d:4a:55:
e0:d1:1d:88:79:b0:14:4f:98:db:a5:ae:83:b4:33:
55:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6B:BD:D7:63:2F:E6:70:43:A5:20:7F:FF:78:0B:FE:29:64:92:C7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A56158BA84F311EEAC1276464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.32.0/24
Signature Algorithm: sha256WithRSAEncryption
91:e5:62:4d:67:e3:8b:ec:36:6e:9e:63:22:c3:76:6a:f2:1a:
28:d9:f1:c3:e7:a8:8f:c5:07:a9:b9:f9:bd:75:e0:5e:d9:e3:
c9:1b:9f:02:50:bc:e5:a7:90:94:75:cd:cd:5c:91:eb:7f:dc:
fc:be:b5:93:23:03:f8:e4:93:7e:cf:ce:b4:15:6f:89:76:78:
b9:91:47:34:db:65:49:c1:38:cf:3d:6e:c7:4a:17:ae:84:3d:
c4:83:77:e8:3a:3f:6f:73:61:34:74:ea:9c:89:9c:f4:70:2b:
cd:67:23:ae:b9:90:8d:99:e6:c8:ed:39:06:99:7b:9d:f2:0e:
26:4c:1e:49:9d:93:c8:6c:8b:35:ba:9b:e3:d0:5a:3a:3a:23:
94:c8:30:25:b5:f9:b4:ff:92:0c:0b:f6:bc:e2:b1:47:5e:de:
e4:71:3c:ba:8e:f9:e0:b1:5f:ed:d4:32:bd:de:98:7e:a5:9c:
4f:f7:b4:35:23:48:37:81:f2:85:bd:d6:d7:e1:b7:ee:48:a7:
91:23:f7:2d:b0:41:d3:8c:cc:0c:b3:23:7e:d3:0c:81:52:83:
62:d4:ac:5e:47:e6:96:ea:e7:2f:3a:66:60:d8:9d:5d:c2:0f:
27:0c:5c:2a:01:2c:25:02:eb:a2:f6:90:80:e3:0f:ee:4d:c4:
c8:72:c7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:50 2024 by rpki-client on console-ams.rpki-client.org