Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A586731A29C811EE98986C3C4AD9E6FC.roa
File: A586731A29C811EE98986C3C4AD9E6FC.roa (raw, json)
Hash identifier: Gg4d4MdVyvEVaH5OS1GPbahL3yibyFjckwKW6h5vlA8=
Subject key identifier: F4:9D:F8:94:87:E8:42:5D:B8:F6:96:BF:3A:68:00:44:C2:FB:EA:90
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3230
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A586731A29C811EE98986C3C4AD9E6FC.roa
Signing time: Mon 24 Jul 2023 02:20:24 +0000
ROA not before: Mon 24 Jul 2023 02:20:21 +0000
ROA not after: Wed 10 Jul 2024 02:20:21 +0000
asID: 150313
IP address blocks: 156.238.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12848 (0x3230)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 02:20:21 2023 GMT
Not After : Jul 10 02:20:21 2024 GMT
Subject: CN=64bddfe8-7419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:91:26:37:5e:2c:49:1a:fd:4d:0e:5b:6b:
ea:25:fb:20:16:c7:7a:2c:e4:7a:0d:83:5c:2c:57:
ea:89:20:a5:e6:8d:95:a4:b5:cf:91:b9:47:28:fc:
67:b1:ec:d6:38:6a:d6:12:41:8b:84:fd:e4:90:de:
27:b0:26:94:ed:88:6a:63:d2:d0:a0:9d:a8:50:34:
a8:54:c1:0b:69:89:71:71:be:f5:48:86:2d:12:5c:
ab:f5:47:ce:29:fd:41:6c:ce:8c:6b:1a:6a:b0:ad:
57:61:ad:da:1e:f0:4c:44:b0:58:33:96:ba:46:84:
5a:8e:37:95:1a:5f:34:4c:8d:76:d4:a7:3b:78:01:
19:97:59:31:d7:66:a2:1c:b0:b4:25:86:a3:4d:3d:
ea:c1:ca:ee:b3:d8:56:e4:64:db:8c:55:5a:6e:31:
32:c5:dd:69:a4:6f:37:ab:5c:9c:a5:58:1f:9b:1e:
eb:43:79:7f:5b:9b:5c:8f:19:96:0a:64:c8:9b:18:
fd:cd:28:6e:dd:1a:c8:ad:02:47:85:32:be:e0:3b:
6a:92:d3:6f:7f:f4:d5:a7:0d:98:32:34:26:4d:49:
f9:9b:12:80:45:83:d7:1f:79:fa:37:fb:14:82:5d:
9b:31:2a:73:60:45:cc:19:b7:f5:46:9f:b7:c4:a8:
8b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9D:F8:94:87:E8:42:5D:B8:F6:96:BF:3A:68:00:44:C2:FB:EA:90
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A586731A29C811EE98986C3C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.215.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:6f:7d:3b:21:4d:79:72:03:67:02:91:93:f6:1d:01:6c:ca:
af:2c:b0:40:a3:8d:60:94:88:87:66:c6:bf:a9:16:25:6c:4f:
da:41:29:39:31:73:df:93:c9:5b:53:28:76:77:5e:67:58:2a:
d7:9a:13:d5:11:22:2a:93:a8:cc:6f:ec:24:3b:36:1c:79:4f:
00:b9:a3:a7:ee:fc:5c:8f:28:e9:84:c8:87:57:70:71:ed:b4:
19:18:fc:e6:16:c2:17:24:bb:5e:79:4f:f1:df:0a:8d:d5:85:
6b:89:1b:ac:21:c9:98:df:82:17:20:f0:1c:6e:51:6c:ea:44:
fa:5d:bd:af:d1:e1:e5:18:1d:68:e2:d0:9e:09:a8:bf:b2:bc:
da:d3:b1:b8:80:3c:31:f1:9d:a1:91:fe:b7:52:a1:5d:1c:5d:
64:8f:ef:45:24:4c:84:cc:12:f3:4d:3b:78:ea:c1:4b:e9:5a:
3e:54:b4:84:7b:4a:a2:d1:41:ae:29:db:11:80:80:28:2b:0e:
6d:ae:d3:6e:88:05:70:bd:89:6e:4f:37:f1:f9:5a:11:54:72:
63:d6:a3:96:00:35:5c:5f:07:d0:95:6b:dc:ad:62:c3:ce:7b:
84:d1:90:ea:e8:be:f4:75:97:e9:48:52:a8:19:dc:35:0e:55:
d7:07:49:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:10:10 2024 by rpki-client on console-ams.rpki-client.org