Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9F63AB299B111EE9B3ACD37D25BE465.roa
File: A9F63AB299B111EE9B3ACD37D25BE465.roa (raw, json)
Hash identifier: pU5BgTiDZmFi3mj/XKtAwDSGSrvdzLXMmn80tY1X4Z8=
Subject key identifier: 23:3D:2E:8D:69:E3:DD:F9:0C:A7:62:E0:81:B6:DA:57:12:DA:4B:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5163
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9F63AB299B111EE9B3ACD37D25BE465.roa
Signing time: Wed 13 Dec 2023 12:18:03 +0000
ROA not before: Wed 13 Dec 2023 12:18:00 +0000
ROA not after: Fri 06 Dec 2024 12:18:00 +0000
asID: 151206
IP address blocks: 156.240.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20835 (0x5163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 13 12:18:00 2023 GMT
Not After : Dec 6 12:18:00 2024 GMT
Subject: CN=6579a0fb-2acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:5e:81:61:ff:b9:f7:b6:5e:61:be:23:23:
01:92:f3:12:88:ba:d9:b5:9a:7f:cb:a3:00:bc:56:
21:8e:49:cc:b7:01:1d:28:7a:5c:c2:f3:a8:8d:5a:
5a:1e:c0:c6:6a:4b:03:7f:d0:ff:e6:46:42:4b:31:
97:97:8c:81:18:45:db:f4:8d:21:81:de:11:88:e2:
ce:26:b8:64:b8:d0:a2:28:9c:ce:58:ba:7d:20:a3:
81:b0:75:53:40:d4:9a:ba:8b:59:56:f9:36:6d:bb:
43:02:3d:ea:00:f0:b7:06:d9:6a:31:11:13:19:bd:
e8:48:73:1f:b1:d0:ff:1f:bc:76:e9:04:7f:51:b3:
97:aa:09:d1:bf:44:f6:9c:03:6c:b3:d2:5b:05:fe:
7f:f1:83:98:16:f3:b6:dc:b2:fc:a9:05:59:83:5d:
82:50:c5:19:4e:bd:31:a8:85:f3:fa:b0:75:d3:11:
c6:be:78:21:89:9b:30:c2:7e:b8:61:c2:e5:f2:50:
7a:66:81:c3:5e:b5:bc:48:3e:fe:ca:3b:05:fe:93:
94:b5:5a:05:96:eb:8e:98:0a:de:f1:52:85:9b:6b:
ee:d4:3d:d3:bc:db:c6:8a:5a:c7:5c:c4:c1:27:40:
87:26:ad:02:db:c0:4c:ee:bb:2d:fc:1a:b3:f2:ce:
7c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3D:2E:8D:69:E3:DD:F9:0C:A7:62:E0:81:B6:DA:57:12:DA:4B:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9F63AB299B111EE9B3ACD37D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.63.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a4:13:fb:7c:ca:4f:f4:1d:0e:98:e2:92:eb:d9:d7:0c:f6:
57:b7:2d:2a:86:de:7d:b2:cf:7f:44:a3:1e:e0:07:ee:7c:b9:
47:f8:0e:b0:ae:22:55:b3:ee:9a:da:39:51:39:84:20:38:39:
a9:fa:09:1c:75:28:43:e4:93:57:d5:18:dc:b8:88:b7:9d:b4:
1e:1a:53:73:57:46:6f:e0:96:2f:74:84:6d:4e:d7:68:b3:4a:
9f:8e:37:2e:31:11:08:fc:0d:43:4d:0d:e3:80:a2:a4:30:b7:
b8:b8:ea:1d:5c:c6:84:e9:2f:d2:cc:40:74:c5:6d:f4:5d:a5:
8c:b4:9e:97:5b:54:08:57:16:20:8d:84:a4:19:d7:96:eb:c0:
94:04:9b:d5:12:80:76:0d:43:5d:3b:5d:19:dd:b4:1d:17:7a:
b5:2a:05:52:14:94:c1:80:f2:ce:13:5e:17:02:cf:42:f1:96:
73:3f:e4:6d:5c:c9:b0:6f:6b:17:49:dd:04:f2:2f:13:27:bc:
8a:fc:6f:3d:eb:00:06:c1:5b:81:a4:07:69:c8:62:79:71:5f:
e5:24:57:e3:92:66:36:a5:d5:4d:2b:61:2a:ab:b7:78:d6:25:
80:8b:11:83:13:2e:d9:7f:c4:e7:ed:c1:42:a3:91:25:66:14:
64:93:d7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:43 2024 by rpki-client on console-fra.rpki-client.org