Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEAB98226D5E11EEABFB50694AD9E6FC.roa
File: CEAB98226D5E11EEABFB50694AD9E6FC.roa (raw, json)
Hash identifier: pF/onAQsPBhgRYvUFYj8SzgHn0swmOsQUkueKZH4Dns=
Subject key identifier: 85:92:3A:B5:8E:5B:7A:7D:FD:27:0F:05:B2:08:BB:EC:7B:B5:ED:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3EED
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEAB98226D5E11EEABFB50694AD9E6FC.roa
Signing time: Wed 18 Oct 2023 02:34:06 +0000
ROA not before: Wed 18 Oct 2023 02:34:02 +0000
ROA not after: Sun 13 Oct 2024 02:34:02 +0000
asID: 132585
IP address blocks: 156.241.4.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16109 (0x3eed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 02:34:02 2023 GMT
Not After : Oct 13 02:34:02 2024 GMT
Subject: CN=652f441e-c903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:aa:46:d9:31:f8:21:7b:f2:9b:a6:96:2e:f3:
ca:30:04:6d:23:2a:eb:d2:e3:ef:b7:bf:fa:dc:89:
91:fd:f3:75:4e:7c:97:b1:7d:6e:8a:70:a9:23:70:
44:66:24:58:3c:88:a3:8e:1c:39:3c:01:99:57:0a:
01:48:44:44:09:11:99:12:e6:fe:48:2c:db:33:c4:
d7:28:a1:03:5f:a7:75:c1:18:fb:7f:ff:af:7b:a9:
53:a7:29:8c:32:10:2f:ad:29:97:3a:c1:2b:23:38:
15:1e:ea:70:be:54:4c:ab:38:91:e5:b7:05:b8:59:
09:64:6c:7a:bc:f0:da:8b:b4:9d:b9:32:3e:61:ce:
6d:41:ec:69:d9:6b:aa:65:2d:59:cb:f8:b6:56:6f:
31:73:3f:77:29:d2:e9:af:7c:45:1f:0d:5b:92:de:
cb:cc:c9:10:04:89:3e:83:38:ea:0b:8e:30:3c:fb:
40:47:aa:13:2e:37:98:d6:6e:e6:ec:e2:13:9a:08:
d2:d7:e0:7e:d5:e2:91:34:56:4c:ec:4f:eb:58:13:
96:3e:05:00:b7:c6:70:f4:38:9d:51:b2:b8:20:c6:
05:76:7b:f0:e6:32:15:b0:5e:43:e7:85:bd:34:85:
a6:65:d9:62:b5:d4:fa:ef:6f:3f:c6:ef:34:9c:df:
7c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:92:3A:B5:8E:5B:7A:7D:FD:27:0F:05:B2:08:BB:EC:7B:B5:ED:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEAB98226D5E11EEABFB50694AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.4.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:21:a7:50:a3:0c:de:8d:04:2e:c8:ac:1a:1b:d9:0d:67:9b:
e2:30:32:3f:70:ee:b9:04:2d:6b:a0:8b:df:d0:1d:3a:77:70:
8a:a7:f8:16:6e:81:de:63:3f:b7:a0:63:cc:75:13:6c:56:fa:
44:cf:91:94:7b:2c:1d:94:57:f4:7f:ad:83:dc:b9:ad:d0:c7:
a4:32:bf:9b:a5:70:f2:ba:75:00:cd:38:d4:1e:4f:ac:d0:d6:
32:89:a1:40:3c:0e:29:48:2d:a7:1c:f9:54:80:f8:91:ff:e5:
43:78:9b:3c:60:97:54:c1:15:eb:37:e0:e9:0a:35:aa:2d:94:
58:63:73:1e:74:f4:19:48:e4:f7:96:a2:2b:3e:5c:36:94:14:
f1:fd:94:62:21:5a:cc:c8:cc:8f:13:f6:01:af:3e:16:a3:84:
3e:ba:4e:56:48:83:ab:5e:bb:69:1b:8c:26:0d:88:fb:5f:55:
7e:b7:d5:1f:83:e5:b0:d5:0b:c6:d8:7a:66:d1:c1:82:28:06:
5e:f1:f4:0b:d3:75:c4:a6:76:ff:6c:98:2b:ec:a2:a6:4e:a1:
7b:8f:32:4d:df:43:e3:47:94:aa:31:8c:75:46:bb:56:e6:78:
1a:0b:4b:57:e2:eb:03:d5:84:71:73:49:9e:27:d4:03:93:7b:
17:2d:65:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 01:58:06 2024 by rpki-client on console-fra.rpki-client.org