Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CD8E99EA226211EEA491ED624AD9E6FC.roa
File: CD8E99EA226211EEA491ED624AD9E6FC.roa (raw, json)
Hash identifier: SgrCRSUvEQ0sixmRHVQ1BvJuvN/4+y4E60nHsLxwfo8=
Subject key identifier: 33:2C:8C:4F:AB:E4:08:3E:32:FC:A9:70:98:B1:A6:15:64:5A:FE:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3090
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CD8E99EA226211EEA491ED624AD9E6FC.roa
Signing time: Fri 14 Jul 2023 16:23:45 +0000
ROA not before: Sat 15 Jul 2023 16:23:41 +0000
ROA not after: Fri 10 May 2024 16:23:41 +0000
asID: 138456
IP address blocks: 156.240.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12432 (0x3090)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 15 16:23:41 2023 GMT
Not After : May 10 16:23:41 2024 GMT
Subject: CN=64b17690-7c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:87:67:5a:a2:70:b5:ed:23:07:1f:05:f7:
c6:2f:a7:1e:00:c3:d1:b0:69:29:43:31:57:f9:0b:
24:ef:a8:74:79:5b:7a:ad:4c:4c:8f:d8:ee:e7:78:
64:64:84:d8:6e:14:25:be:de:be:07:00:e1:50:fc:
43:80:6f:8e:be:15:66:55:dd:98:61:83:ed:ca:13:
b8:6c:d5:16:6a:30:5c:9c:fb:23:61:d3:bc:b5:7a:
75:1e:38:17:34:65:6d:6e:39:11:3a:c8:c2:a1:0a:
ee:ed:65:58:52:44:36:f4:15:47:de:6c:f4:e2:ec:
82:c9:ae:5b:5c:fc:48:97:0b:62:76:d4:69:5e:fb:
b9:bb:2c:4f:01:29:c7:7c:86:32:21:29:8b:a6:22:
e9:2b:aa:01:77:50:5d:c9:09:1c:6a:0d:a9:97:e8:
ba:da:2c:c5:9c:90:cf:1f:ec:3e:d0:7d:20:0d:83:
aa:e0:47:4d:e3:30:76:e0:68:09:23:49:79:31:03:
56:16:5b:6c:ca:58:79:80:24:f5:cf:bd:34:3e:70:
03:8c:35:17:66:cf:b4:e4:31:b1:66:55:1f:69:3f:
09:9b:b1:49:7e:74:d9:96:84:31:af:2c:cb:63:bc:
b8:c3:a6:ad:a3:6a:ca:e3:c7:17:fb:8d:de:a8:d6:
7d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2C:8C:4F:AB:E4:08:3E:32:FC:A9:70:98:B1:A6:15:64:5A:FE:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CD8E99EA226211EEA491ED624AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.92.0/24
Signature Algorithm: sha256WithRSAEncryption
21:43:43:c3:92:eb:cb:f8:0d:19:ae:13:c0:93:69:d7:49:0b:
d4:f3:1f:1d:3b:0e:e8:cb:c7:66:c7:22:41:38:74:c6:4a:c3:
6f:da:93:1f:f3:fe:f9:8c:ec:3f:8f:58:29:e8:b0:42:c0:81:
1e:df:0a:26:61:2d:d0:f9:9d:38:f5:18:0f:71:fd:16:50:42:
d3:b4:55:48:95:a7:3b:7e:58:74:11:70:5e:46:44:76:8f:f6:
8f:c7:18:c8:8e:10:76:8d:90:c0:44:33:37:53:8b:2f:d3:56:
d3:37:e2:25:1c:97:81:6c:a9:3b:c9:6f:ed:c7:c4:df:db:ab:
c2:3d:03:91:e1:09:3a:08:c2:a7:fa:a1:c0:c9:ad:eb:ff:5b:
6b:77:ad:7b:0b:1b:01:68:14:3e:0a:34:ed:11:16:f3:1f:b9:
0f:9c:71:e8:c6:90:92:49:c1:6e:dc:10:3c:48:5a:80:d2:31:
a0:51:be:e1:ac:22:bb:23:bf:25:50:b3:15:d8:0c:69:15:8d:
d1:81:d2:4b:25:4d:2e:57:91:44:47:71:89:ea:89:4d:94:e1:
57:e3:9d:62:cc:eb:6e:0d:5f:65:ce:ef:f3:f7:4d:ff:fa:eb:
9a:85:66:db:5e:4b:53:b7:08:19:0a:c0:5f:aa:ba:bd:bc:dc:
55:cf:6c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org