Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9F12CBC539F11EE8DC2E75E4AD9E6FC.roa
File: C9F12CBC539F11EE8DC2E75E4AD9E6FC.roa (raw, json)
Hash identifier: PYd8CI/HUVa6fIqKI8M5rcukbzfaFgmj60yMDnuMr30=
Subject key identifier: F9:D1:48:1D:97:9A:D5:97:37:C4:1E:CC:EA:FE:42:90:A3:66:82:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 397C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9F12CBC539F11EE8DC2E75E4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:13:45 +0000
ROA not before: Fri 15 Sep 2023 08:13:42 +0000
ROA not after: Sat 08 Jun 2024 08:13:42 +0000
asID: 138152
IP address blocks: 156.232.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14716 (0x397c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 08:13:42 2023 GMT
Not After : Jun 8 08:13:42 2024 GMT
Subject: CN=65041239-680f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5e:c7:61:17:2c:d9:7f:ce:99:d1:78:a2:ae:
9c:df:6d:2a:b4:d9:34:74:0b:1f:95:7a:9f:da:51:
2a:c9:0d:8d:9a:c2:78:66:bd:a6:be:0a:da:55:c8:
b9:27:23:5b:b7:2c:15:4a:d0:54:43:df:90:01:49:
1b:78:8b:8d:86:c4:70:5b:91:71:91:3a:af:e2:a2:
31:10:e7:fd:6c:1c:6a:d6:4f:23:e2:b4:96:22:14:
76:03:2f:46:c5:e5:b2:5d:eb:9a:2c:7c:4a:50:f4:
35:15:04:73:95:c2:00:e1:ec:2f:79:1e:c9:0f:b2:
a5:8a:fc:f2:83:3c:d6:49:2f:bc:61:50:50:75:1b:
e3:e2:74:4a:a0:32:fb:81:12:21:0a:f1:21:7c:3e:
b0:59:70:08:f7:27:e5:71:5f:6c:db:c6:2b:ef:b0:
57:11:30:ca:95:1a:29:7b:ba:df:ae:2f:a3:2b:bf:
28:ad:f7:e2:a4:03:73:41:35:78:24:78:db:d9:70:
64:6f:c6:6d:e1:9f:8f:c1:5d:98:e7:6d:e1:ee:da:
cf:dd:64:b7:aa:b3:39:12:a9:57:79:bd:9b:18:d7:
b2:70:44:03:ce:42:8f:d4:af:65:bf:69:7a:3c:16:
84:9e:37:7d:30:3f:08:79:1e:68:d4:16:a4:a5:60:
0f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D1:48:1D:97:9A:D5:97:37:C4:1E:CC:EA:FE:42:90:A3:66:82:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9F12CBC539F11EE8DC2E75E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.9.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b8:2f:f4:85:32:6b:5b:86:86:7d:d3:d2:6a:5c:27:0a:ad:
a1:cc:5d:a8:e2:1b:ce:35:84:95:b1:df:fb:d8:42:28:0a:32:
b7:03:a8:94:c2:9d:1b:f4:ae:f4:b9:c4:3e:bf:c7:15:55:cc:
79:14:cf:98:fc:0c:8b:f7:15:80:06:1a:c0:ce:65:b5:d1:50:
9b:10:95:9a:4d:f2:85:3b:75:08:da:f6:4e:da:01:a3:39:d4:
11:26:a0:62:ce:6b:07:5d:23:34:ab:77:b0:e3:bb:c6:e4:5d:
f8:6a:3f:3d:74:32:91:d5:66:4a:34:a1:56:1b:cf:61:1a:4c:
34:59:4c:b7:30:9a:41:35:bd:1e:9a:c3:25:1b:cd:70:3f:11:
35:92:1f:10:c7:24:9b:fc:d0:7a:d4:72:02:a9:28:bb:57:67:
9d:1b:f8:3c:fc:e5:20:57:ab:05:87:74:81:dd:49:5e:01:66:
9c:3b:4a:24:b3:ea:65:00:fb:5a:16:a5:3a:cb:f4:66:3c:7f:
3e:11:db:e2:30:c5:fa:d0:c2:d6:48:48:9d:2d:07:57:52:b2:
f0:be:25:ad:29:01:e2:44:da:6c:d2:4e:5c:19:3d:72:2d:0d:
d5:67:5b:d0:71:ea:1e:e9:4a:e5:2d:6c:8d:e3:ae:57:b5:eb:
15:28:93:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org