Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B348A6CC3B2411EEAA1F302E4AD9E6FC.roa
File: B348A6CC3B2411EEAA1F302E4AD9E6FC.roa (raw, json)
Hash identifier: L7rC09UYIm3ZgFviZ2daQ/g9pIKp5Jn883DkANkkYkY=
Subject key identifier: 71:61:99:91:01:0D:64:49:85:A0:B1:FA:88:8F:1D:E2:CA:3E:F2:DD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 357F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B348A6CC3B2411EEAA1F302E4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:32:11 +0000
ROA not before: Tue 15 Aug 2023 04:32:08 +0000
ROA not after: Mon 27 May 2024 04:32:08 +0000
asID: 140627
IP address blocks: 156.247.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13695 (0x357f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:32:08 2023 GMT
Not After : May 27 04:32:08 2024 GMT
Subject: CN=64daffcb-35ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:a1:22:96:7c:29:eb:00:ad:2f:59:40:bd:
4a:85:4e:92:42:d4:e1:23:dd:38:d5:5c:a6:c4:70:
75:63:b3:21:a8:3b:d8:71:73:e8:3b:71:56:92:04:
95:32:62:83:e8:79:3a:47:c4:cf:17:07:8a:17:5e:
a0:c4:56:96:98:02:5a:f9:09:e5:cb:f6:55:d8:4d:
15:2a:af:25:54:de:8c:13:c4:33:c6:c6:9c:34:93:
2e:b7:e6:26:5a:8f:c4:48:05:28:d7:aa:45:1f:79:
52:80:ff:21:62:f5:d8:a4:f5:25:40:a4:c5:03:ab:
28:45:43:1c:b2:65:a9:b3:da:2a:03:f4:50:2d:24:
53:ac:1b:a8:ef:4b:54:a2:7b:2f:bc:cb:c5:b1:33:
c4:a3:1f:59:0d:9a:84:69:4c:39:69:c1:fb:ed:cc:
ae:44:f8:bf:65:2c:c5:77:9a:66:07:92:83:dc:6e:
38:6e:2e:af:8c:a8:8c:db:1a:fd:6f:97:13:63:3c:
12:df:c4:b1:0a:45:88:54:cc:82:f8:74:25:2d:8e:
b9:5e:44:e5:6e:eb:7a:fa:ec:41:d6:04:b2:b2:65:
05:b2:3b:3a:f6:d1:f1:07:81:f4:76:74:4f:a0:4f:
cb:57:4e:2b:b4:28:4a:bc:5d:07:0d:5f:3c:be:79:
06:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:61:99:91:01:0D:64:49:85:A0:B1:FA:88:8F:1D:E2:CA:3E:F2:DD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B348A6CC3B2411EEAA1F302E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.222.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:a2:44:fc:8c:8d:94:0a:dd:85:74:45:59:ef:a2:56:45:bf:
9c:f4:1b:06:31:20:4e:55:82:b6:39:0f:c4:3b:37:d1:aa:89:
23:7d:6f:70:58:48:e7:21:7c:4b:84:fb:11:de:40:fb:30:48:
c1:23:fc:13:bf:a3:0b:8a:8d:64:4c:e4:28:16:17:8f:db:0d:
67:9f:bc:5a:c3:fc:cc:2d:90:b9:49:f7:a6:ec:28:27:65:1a:
c1:a8:2a:66:24:e9:2d:de:fd:31:4c:40:a3:fb:3e:b7:ef:01:
33:42:04:93:01:c1:f2:20:40:49:60:c7:38:43:4f:d2:b5:03:
c3:27:f0:50:f7:20:88:11:a6:e3:57:b9:bd:44:28:07:83:24:
6d:eb:fd:d2:b5:be:80:c8:0c:9b:28:db:c2:e9:87:ff:ba:f5:
c2:79:98:4f:a4:58:95:9e:8e:7b:95:2f:49:18:76:64:88:9d:
e1:3e:22:11:ce:86:fb:56:5e:1c:e8:1d:81:48:df:64:8d:ea:
c1:e0:73:77:fc:0b:7a:e9:4e:7f:31:a5:9e:d2:a9:55:6a:e5:
84:65:d4:51:a7:a7:69:15:9b:06:7f:8e:7c:3d:b4:ea:a5:74:
fa:db:1f:ec:42:3a:93:40:fc:72:0b:5e:db:10:13:db:9d:1d:
dc:1d:26:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:57 2024 by rpki-client on console-ams.rpki-client.org