Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C324F4A2FE9711EDA990764B4AD9E6FC.roa
File: C324F4A2FE9711EDA990764B4AD9E6FC.roa (raw, json)
Hash identifier: m3VS7vvtMDM9YGDoVNY4mQaWpHpv8GwqHyiQ9aS3uOs=
Subject key identifier: 9A:8E:02:89:10:D0:CA:78:C3:DE:3F:65:59:F9:E8:25:2D:7E:4C:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2825
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C324F4A2FE9711EDA990764B4AD9E6FC.roa
Signing time: Tue 30 May 2023 03:12:09 +0000
ROA not before: Tue 30 May 2023 03:12:05 +0000
ROA not after: Wed 15 May 2024 03:12:05 +0000
asID: 63888
IP address blocks: 156.255.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10277 (0x2825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 03:12:05 2023 GMT
Not After : May 15 03:12:05 2024 GMT
Subject: CN=64756988-df9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:06:e1:b1:37:e5:12:52:0d:8e:c6:62:fa:62:
13:1c:fe:09:98:61:89:08:24:5e:06:0f:31:35:7c:
61:d9:73:60:6f:66:a0:2b:32:8d:43:c9:3e:55:9a:
bc:65:c2:36:a3:dd:5e:63:d7:e4:cf:21:a7:e7:e9:
54:22:b7:8c:c0:86:4f:39:dd:37:8c:d9:e7:48:3d:
37:4d:19:07:ae:9e:1b:de:58:94:1c:ba:c1:d8:cd:
ef:a0:53:39:98:f7:1a:8e:66:0a:c0:92:75:c9:03:
1c:a8:28:77:3d:30:95:d0:ca:c1:6f:ea:6d:f0:c9:
ab:a5:90:d5:5d:a0:87:99:94:8b:33:6a:ac:96:72:
c7:d7:3e:1a:9f:65:1e:3d:e8:a2:06:89:63:25:91:
74:69:50:96:78:e4:83:f6:fb:b1:0b:ef:51:81:0b:
7f:f4:47:63:35:00:2f:a7:16:a6:be:59:54:a1:7b:
72:f4:84:de:4d:81:ab:f6:40:e6:ec:7f:fd:96:34:
eb:c0:91:a4:63:c2:9e:33:da:53:30:ca:67:26:92:
95:87:28:a5:05:47:2a:e7:1d:e9:3a:08:b9:27:c4:
a6:21:b7:b7:5c:93:74:af:55:9c:fe:9f:2e:46:c2:
17:a5:16:d8:35:23:30:9f:8f:9c:21:b4:aa:ff:75:
01:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8E:02:89:10:D0:CA:78:C3:DE:3F:65:59:F9:E8:25:2D:7E:4C:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C324F4A2FE9711EDA990764B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.109.0/24
Signature Algorithm: sha256WithRSAEncryption
60:bd:e5:46:2f:67:99:a2:26:06:6f:5e:b5:98:46:d3:eb:14:
66:aa:de:c4:b4:fc:06:72:92:1e:c5:4d:96:85:f0:14:55:6c:
12:c7:d7:a5:15:25:9d:fd:97:b2:d5:dc:00:1f:5b:83:cc:e6:
01:0d:cd:77:42:26:93:82:2f:31:bf:13:b1:b0:67:a2:2b:ca:
df:e5:6f:6b:3b:24:ac:ca:09:4e:29:73:bb:43:3b:19:a7:79:
87:5a:15:59:b7:9b:09:20:46:86:5f:c8:a6:36:8f:8a:b9:b7:
e0:f5:8d:36:80:94:25:e4:87:90:26:86:a6:73:3a:77:36:19:
82:3b:b8:57:0c:41:3e:2f:59:e2:77:5a:23:5f:37:ea:44:18:
10:83:8f:bf:4b:85:09:ec:13:7d:60:ce:ee:15:30:37:89:d2:
e4:fe:9f:35:b6:99:54:7e:bd:92:21:7b:e1:47:53:a6:46:f9:
77:03:3a:c1:56:d2:61:e4:b4:01:c9:8c:1a:45:dd:06:59:02:
78:60:53:8b:bf:e9:ea:ab:2f:c3:a0:e9:00:8c:89:68:bb:d7:
c9:4c:f3:3b:c9:3f:51:63:9b:67:2c:9b:06:fb:3c:16:c0:7b:
88:85:f8:6e:5f:57:13:ac:42:1d:e9:ef:d9:d8:d7:23:0d:bd:
c5:c9:a7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org