Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCC41C1C544811EE9E8B2E814AD9E6FC.roa
File: BCC41C1C544811EE9E8B2E814AD9E6FC.roa (raw, json)
Hash identifier: Eod5iIcJQL0xtQRTsSRDA0eStR5G4BLx0MvAe0Xj88g=
Subject key identifier: CA:A1:6D:86:01:83:3A:71:B0:13:32:DB:BB:FF:BA:5A:D1:0E:56:3D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3A3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCC41C1C544811EE9E8B2E814AD9E6FC.roa
Signing time: Sat 16 Sep 2023 04:23:08 +0000
ROA not before: Sun 01 Oct 2023 04:23:04 +0000
ROA not after: Thu 08 Aug 2024 04:23:04 +0000
asID: 133861
IP address blocks: 156.247.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14909 (0x3a3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 04:23:04 2023 GMT
Not After : Aug 8 04:23:04 2024 GMT
Subject: CN=65052dac-d710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fb:e5:68:b7:46:2a:1e:96:36:b5:92:72:95:
65:5e:e5:b6:9e:d5:c4:62:b0:40:81:1f:cb:11:93:
d8:f2:93:bc:95:dd:cc:74:2c:7a:d0:ec:92:58:e2:
68:17:d8:e9:0b:fc:f8:17:d2:dd:cd:84:45:7f:1c:
3b:8f:5e:c1:c9:66:45:58:35:71:3c:89:0f:d8:59:
bf:20:8f:bb:c6:d2:9d:0c:59:2c:61:1a:47:8f:85:
1c:ff:e7:7c:06:d9:47:71:ed:26:c0:50:f0:86:a4:
56:0d:6a:34:7d:5b:33:02:16:2a:29:3e:90:db:7e:
85:0f:de:c6:ff:97:6e:3a:a4:f9:da:13:55:75:ce:
60:07:33:c5:50:ae:d5:6e:f9:14:6f:97:9e:f3:97:
51:2a:79:32:71:76:aa:65:dc:a9:e5:bd:6e:9f:ab:
87:0e:c2:40:5a:94:ef:11:7b:3e:6e:88:de:6c:df:
2d:6a:b0:ad:71:ba:c6:21:26:01:85:73:33:09:bf:
a4:91:8a:0d:e3:4f:a6:5d:c5:c0:59:2c:6e:e7:3a:
b0:9d:2b:2b:b3:70:95:eb:e3:44:3f:6d:38:cb:c5:
87:b2:8b:9b:91:26:9a:0a:52:60:fb:d0:6a:9e:42:
c7:89:4d:da:2e:1e:a0:39:00:26:0c:c5:91:7b:71:
72:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A1:6D:86:01:83:3A:71:B0:13:32:DB:BB:FF:BA:5A:D1:0E:56:3D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCC41C1C544811EE9E8B2E814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.8.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d4:96:61:62:f8:85:02:95:55:ce:1f:2a:57:02:ab:06:07:
17:88:77:0c:b3:83:59:8c:67:45:34:89:af:09:96:ab:82:05:
f7:60:3a:9c:1b:30:05:43:c8:09:f7:5b:b7:91:7b:52:3c:65:
d2:6e:f0:ad:3f:2e:d4:88:69:fb:9d:fb:8d:d0:fb:48:75:9e:
1b:bc:c9:da:23:cb:e2:82:9c:db:06:6e:79:b7:ee:af:d0:a1:
96:6f:11:0f:ed:e8:90:9f:32:b1:99:9f:6d:e8:5c:99:5f:9c:
ca:f8:65:07:29:63:55:9f:0c:3a:c6:ee:14:f5:cd:d8:2a:2f:
60:86:93:7f:00:e5:3f:33:6c:a5:9c:dd:15:9a:68:98:c5:99:
2a:ad:b5:df:c5:15:15:67:13:f8:17:ad:a8:bd:8a:da:11:a2:
ef:ec:64:a9:b4:70:4c:64:de:33:cf:a2:11:a7:e7:0b:d1:bd:
77:40:e5:18:32:c9:55:d4:cc:dd:ec:49:75:b9:4e:11:eb:00:
ec:75:94:53:47:12:79:21:be:9c:07:7f:13:5d:04:6c:1e:9c:
e2:21:ad:00:24:70:9f:c1:98:b2:44:c7:ed:c2:66:e0:6b:47:
44:d7:6e:25:52:3f:ac:fc:f0:58:6f:a0:89:1f:54:8a:a5:27:
04:48:aa:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org