Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD7676903B2211EE805AF7274AD9E6FC.roa
File: AD7676903B2211EE805AF7274AD9E6FC.roa (raw, json)
Hash identifier: OINUt6tr5Zel9ooEENLab1aiaSNZcSP17wCL401NM6o=
Subject key identifier: 7C:FB:28:2D:2F:55:58:C9:25:30:20:9F:F5:88:F1:B1:F8:9D:E9:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 355F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD7676903B2211EE805AF7274AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:17:42 +0000
ROA not before: Tue 15 Aug 2023 04:17:39 +0000
ROA not after: Mon 27 May 2024 04:17:39 +0000
asID: 140627
IP address blocks: 156.247.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13663 (0x355f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:17:39 2023 GMT
Not After : May 27 04:17:39 2024 GMT
Subject: CN=64dafc66-5487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:27:56:c8:7c:4f:a3:91:8a:8c:82:a5:ee:18:
d1:fd:eb:f6:54:ff:b9:d9:0d:a5:5d:b6:58:58:ef:
3d:c2:f5:0c:41:00:b2:2c:96:a5:34:74:81:e6:19:
00:c8:71:37:85:8b:67:44:92:dd:e8:e5:0b:17:d5:
b2:9e:cc:6a:fe:f1:44:74:4e:5b:70:fd:28:e1:23:
89:31:03:4e:eb:fa:a0:b8:c1:03:5a:ce:9b:c8:44:
d9:86:b4:14:c1:44:93:a3:45:2f:bd:25:87:49:60:
bc:c6:85:70:ef:e3:2b:e5:16:62:e5:38:89:43:bb:
63:f4:2d:80:5e:8f:b9:8b:1e:0c:91:38:99:05:67:
08:32:1f:dc:88:30:24:a0:61:bb:b7:59:3c:32:4e:
71:c9:2b:ae:10:17:86:39:af:07:b7:96:13:8a:1f:
4c:94:9c:8b:10:05:10:00:5c:e2:b9:84:f5:03:5d:
a0:8c:dd:7c:f2:58:28:a7:54:19:b7:19:36:50:c7:
a9:0b:b3:3d:ab:90:a2:f5:cd:87:31:f4:f9:de:02:
c3:f4:20:af:01:d2:25:f7:27:45:d1:29:00:fa:2f:
f9:14:a1:13:b2:1d:a3:5e:af:d4:c0:0b:3a:3a:c6:
71:d0:b5:6e:6a:87:71:5e:61:7d:ff:16:d2:d6:5b:
5f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FB:28:2D:2F:55:58:C9:25:30:20:9F:F5:88:F1:B1:F8:9D:E9:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD7676903B2211EE805AF7274AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.206.0/24
Signature Algorithm: sha256WithRSAEncryption
56:96:79:cc:1f:f5:95:f5:2a:5f:09:6f:9c:68:7f:47:01:62:
30:be:df:01:1c:9b:e9:3e:f1:e8:d1:29:94:fe:f9:e7:c0:3f:
12:de:6f:d9:b5:97:4a:4f:ea:98:7c:d4:44:76:92:ba:64:67:
a1:dd:ae:54:f0:91:ef:e3:75:f9:97:62:e5:bd:9f:f1:52:48:
cc:58:7e:73:3b:b6:71:0f:2a:f6:bb:ba:28:7a:70:08:c9:2c:
22:2b:04:6e:4f:8d:65:8c:d7:05:55:2e:06:4f:3b:e1:93:2b:
8f:68:85:6c:67:93:a9:4a:92:e3:af:80:d1:20:6a:67:55:98:
4b:04:2e:46:a0:4b:d8:d5:22:29:0d:10:ac:a7:e0:5c:64:bf:
a2:f1:04:9d:d1:25:46:67:f5:38:64:07:7f:40:b2:62:2f:97:
41:0e:a4:88:1a:ad:97:66:ba:33:3a:da:7e:56:ee:35:6e:3f:
35:67:c6:14:b9:aa:fd:e9:a6:0f:d8:85:04:2f:be:cd:19:ff:
e3:55:e4:7e:bf:ef:37:a9:34:86:ea:eb:7f:aa:46:2f:bc:de:
b8:a1:d7:6e:90:99:21:23:e5:ce:07:e4:91:d9:9b:8e:1f:4b:
04:0e:18:96:72:62:dd:96:2b:25:93:54:19:8e:bf:95:19:3f:
f9:f9:5d:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org