Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A918AD1A689B11EEBCD9D6324AD9E6FC.roa
File: A918AD1A689B11EEBCD9D6324AD9E6FC.roa (raw, json)
Hash identifier: F1YaOoctNFXH3jSRzCtDYxzQCGVAvBEnr1s42yICRIc=
Subject key identifier: CE:5E:3F:F1:77:08:F2:6E:65:03:BD:E8:37:65:E6:A5:18:FD:ED:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3E45
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A918AD1A689B11EEBCD9D6324AD9E6FC.roa
Signing time: Thu 12 Oct 2023 01:07:06 +0000
ROA not before: Thu 12 Oct 2023 01:07:03 +0000
ROA not after: Sat 05 Oct 2024 01:07:03 +0000
asID: 132839
IP address blocks: 156.250.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15941 (0x3e45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 12 01:07:03 2023 GMT
Not After : Oct 5 01:07:03 2024 GMT
Subject: CN=652746ba-09d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:67:37:b2:b8:9c:88:d2:cd:30:d8:63:94:00:
00:0e:f7:2f:56:16:2e:49:7c:52:fb:fb:f9:c6:09:
05:49:7e:01:bd:fc:52:7b:14:e5:84:83:b6:45:62:
30:47:7d:d0:93:91:6e:c5:29:ee:c3:0a:cc:e7:f0:
25:6a:ce:cc:42:3b:30:3c:b1:59:68:5a:ec:98:11:
e7:13:09:13:40:51:44:16:67:1e:ae:24:99:ff:9a:
72:dc:91:74:3d:a2:e9:77:66:b2:eb:04:8d:07:4e:
3e:18:60:c6:2e:df:9b:09:08:1f:85:c5:2c:bc:66:
3b:21:40:ff:05:1b:8d:e5:8d:b1:f8:52:1f:f1:86:
33:53:70:8d:76:dd:48:8a:d0:db:e6:2d:58:84:c3:
1a:9d:96:ae:a6:ca:25:d6:b6:af:bd:b4:f0:de:f4:
13:d0:70:de:ba:c8:f1:5b:81:e3:17:94:6f:12:09:
92:c6:d1:6b:03:a8:96:ec:8b:da:ca:d5:1e:2c:23:
00:2d:5f:d0:8a:8d:0e:59:ce:30:5f:75:21:b7:41:
30:fd:a7:48:58:d0:42:35:a2:0b:ff:65:21:e4:1a:
45:88:e9:88:aa:bb:d6:56:33:bd:49:0e:2c:f1:3f:
c1:98:79:bf:93:6a:9a:65:53:d5:0d:63:3f:92:39:
f5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:5E:3F:F1:77:08:F2:6E:65:03:BD:E8:37:65:E6:A5:18:FD:ED:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A918AD1A689B11EEBCD9D6324AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.128.0/17
Signature Algorithm: sha256WithRSAEncryption
93:84:57:4a:e0:ab:3a:56:a7:09:d8:61:a5:6d:58:a4:13:46:
44:42:8f:d1:1e:e9:ea:5a:68:31:c4:4b:0b:e2:aa:6f:02:88:
5f:ea:2f:fe:d5:44:a1:e6:8b:42:53:8b:e9:3d:af:67:78:cb:
e7:c6:ba:c7:8a:7b:3b:b2:51:c8:90:65:cf:05:1a:a0:f1:78:
95:4a:9e:37:76:a0:c4:27:64:3b:da:9d:5e:84:b0:bb:38:74:
21:75:7c:91:84:46:9c:73:09:ba:59:fc:22:d7:56:09:eb:19:
c1:f5:0c:60:f3:bd:ec:03:4a:b0:5c:fb:d5:c9:45:34:3d:b2:
b2:82:d1:13:0f:f8:b5:cf:21:f4:b3:83:eb:47:c7:dc:27:7a:
0b:bf:af:06:6d:67:e1:b3:d9:f8:44:7e:1d:28:4a:f5:1d:a3:
44:7b:a8:83:77:fb:ab:34:d4:85:c0:47:22:b3:87:0f:89:e5:
fd:d5:56:6d:fb:b7:74:20:f3:36:4d:e2:51:7c:d1:3a:0b:1e:
77:eb:3e:96:fc:ac:1e:b0:a7:eb:3b:38:07:75:4b:48:1e:3b:
4f:d2:8f:c9:36:a5:f3:52:81:c8:5d:e3:e4:25:f4:9c:30:53:
af:c1:e0:a7:ae:ee:78:e5:39:a4:e1:91:28:84:0e:51:63:da:
6d:a6:9d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:20 2024 by rpki-client on console-fra.rpki-client.org