Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD9F40A6385311EEAF58B91A4AD9E6FC.roa
File: AD9F40A6385311EEAF58B91A4AD9E6FC.roa (raw, json)
Hash identifier: Gyn8Px3KyZ/VKehYy6cVdYN2veL53CqX5aZBpoupmEM=
Subject key identifier: EA:34:54:F0:74:09:84:D8:B1:26:0C:6E:37:81:24:FB:AB:94:31:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3475
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD9F40A6385311EEAF58B91A4AD9E6FC.roa
Signing time: Fri 11 Aug 2023 14:30:54 +0000
ROA not before: Fri 11 Aug 2023 14:30:51 +0000
ROA not after: Sat 03 Aug 2024 14:30:51 +0000
asID: 136907
IP address blocks: 156.230.32.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13429 (0x3475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 11 14:30:51 2023 GMT
Not After : Aug 3 14:30:51 2024 GMT
Subject: CN=64d6461e-1ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:dc:7e:b9:96:ef:06:bd:82:15:bc:9e:56:47:
1e:ca:0e:a2:eb:32:c3:81:9b:fc:d4:7a:26:e8:02:
0f:ca:e0:3c:c0:c2:2d:7d:c9:97:53:49:d3:a0:ab:
16:1c:0f:2c:c6:f3:0c:99:59:45:c0:ee:f0:39:c0:
f2:50:03:bd:e5:7f:19:16:08:87:3b:60:14:ff:45:
ef:59:08:a2:db:6f:fa:ae:3b:bc:5a:d3:ad:ed:ad:
62:86:32:eb:d1:57:f9:63:e6:2f:89:c5:38:d2:13:
6d:6e:1c:77:5b:cf:75:62:66:46:ad:05:f0:11:63:
c0:69:c3:48:03:39:32:b2:9e:77:9c:25:9e:c3:85:
f8:5f:e6:24:bb:3b:d0:cc:4e:f6:c2:17:ce:0a:c3:
c7:a0:13:0f:d5:59:2b:81:3e:35:ae:5e:2a:e6:b0:
a5:38:66:8c:a1:e3:68:81:6a:bb:07:cf:a2:df:c8:
d1:e0:28:15:73:26:37:b6:7b:d2:79:23:ff:11:a1:
3f:27:fa:53:28:c5:63:78:c9:7a:11:90:a4:19:74:
08:bd:b4:b2:cc:42:dd:a9:be:4b:99:76:7c:b1:a8:
3b:72:7b:a7:f9:de:f8:bc:fa:d9:38:9d:19:1c:f1:
82:b2:47:4f:37:dc:21:ab:67:c6:0d:6e:17:b1:2f:
a2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:34:54:F0:74:09:84:D8:B1:26:0C:6E:37:81:24:FB:AB:94:31:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD9F40A6385311EEAF58B91A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.32.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:8b:bc:43:8e:c6:45:69:20:36:73:e7:60:b8:4d:e1:9d:55:
1b:09:10:1b:51:bf:ca:a7:ff:e5:74:89:f4:b7:07:97:29:69:
90:84:c6:65:e4:99:58:ac:07:70:62:15:00:2c:7d:62:c8:3b:
e4:ba:a8:2e:d3:21:55:40:77:b9:58:af:24:88:aa:c1:01:23:
03:90:76:33:28:eb:c4:29:e3:39:20:1b:60:2d:24:c0:ad:a9:
0f:51:f4:2c:c0:55:42:ba:63:6b:d7:60:e6:89:eb:53:37:5f:
8f:b2:63:32:2d:a6:ae:ca:0f:86:8e:e9:30:8b:4a:2b:49:fe:
c8:e2:2d:f3:59:2f:2c:52:e1:27:60:8d:b5:33:19:35:2f:48:
f2:dd:13:6a:ab:1b:34:0e:10:d3:49:99:10:7e:3a:e5:fb:bb:
0a:3c:7d:1f:95:6c:a9:45:15:a5:f1:da:60:98:75:de:3c:6a:
21:50:90:de:19:17:bc:12:ec:05:90:76:8c:f2:c8:b6:0a:57:
58:ce:0b:c0:fe:ca:57:d8:e9:48:eb:87:d9:45:cb:f0:f7:6d:
fb:f5:2d:45:ae:f9:25:0d:85:fb:e5:f2:b1:11:d0:8f:f3:2e:
ee:ae:36:ef:df:38:80:44:c7:53:b7:86:7f:60:25:d9:e6:36:
a9:39:ba:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 13:34:19 2024 by rpki-client on console-ams.rpki-client.org