Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CFA9C6C0539D11EEA89CA6584AD9E6FC.roa
File: CFA9C6C0539D11EEA89CA6584AD9E6FC.roa (raw, json)
Hash identifier: z5JjXclcaa/e0jBiybcun9rPtTjN0jwmlwungg+V/Jw=
Subject key identifier: E3:44:09:B7:C5:A1:30:DD:94:0A:F5:D9:E6:30:88:07:6F:68:13:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 395E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CFA9C6C0539D11EEA89CA6584AD9E6FC.roa
Signing time: Fri 15 Sep 2023 07:59:35 +0000
ROA not before: Fri 15 Sep 2023 07:59:32 +0000
ROA not after: Sat 08 Jun 2024 07:59:32 +0000
asID: 138152
IP address blocks: 156.236.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14686 (0x395e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 07:59:32 2023 GMT
Not After : Jun 8 07:59:32 2024 GMT
Subject: CN=65040ee7-e8c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:73:cd:bf:1b:35:fb:47:82:60:5f:5f:84:73:
2e:67:5a:c7:0a:a9:3a:2c:4a:35:21:37:04:27:da:
be:38:94:b4:79:93:46:56:d2:8e:4e:19:20:02:91:
e4:9b:ab:83:8f:4b:9e:a8:18:8c:f9:29:19:57:21:
6e:30:ea:7a:b1:e2:e1:4f:a9:82:f6:1f:cc:71:ef:
f4:e8:85:c3:8c:cf:52:e7:25:7d:a0:09:c7:72:1d:
5d:e5:5b:30:2b:0c:bc:45:1a:23:71:d7:64:97:1c:
0e:26:b1:cb:c4:ad:73:ac:5b:6c:2c:17:03:18:09:
3f:ed:ba:e2:25:7e:6f:75:ed:db:d0:72:98:84:16:
d6:cd:62:f2:66:0f:d4:a6:39:54:31:b7:2a:de:fc:
2b:34:ff:7e:b2:f3:30:3c:31:f8:be:18:19:3d:7a:
44:d9:78:55:1a:5d:c7:9b:3f:1e:2d:1f:8b:e3:17:
cc:d5:e1:c4:b7:9b:15:ec:79:8d:b3:d4:fb:63:b5:
52:39:8d:54:b2:3f:1a:6d:55:7d:aa:fb:e1:c3:9e:
95:98:de:6e:1a:7a:7e:a2:af:bd:63:4e:87:c9:f7:
9b:94:dc:09:5f:d9:82:e7:01:34:cd:b1:a1:d3:7d:
d8:db:f1:1a:3f:8e:0e:05:d0:5b:2d:d4:a7:37:f8:
f6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:44:09:B7:C5:A1:30:DD:94:0A:F5:D9:E6:30:88:07:6F:68:13:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CFA9C6C0539D11EEA89CA6584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.75.0/24
Signature Algorithm: sha256WithRSAEncryption
09:34:31:7e:83:00:09:9c:57:a8:20:65:76:97:72:bf:c3:85:
41:f1:08:9f:d8:df:56:fb:35:90:66:c6:49:c7:b0:8d:c4:9b:
b2:79:ac:a5:fa:f2:67:a2:0c:d3:ea:3c:97:b3:7f:6c:02:a0:
6d:e8:34:aa:13:97:94:df:2c:cd:f9:18:67:83:0e:4f:ab:be:
9b:83:ea:d2:8b:d3:78:f6:4a:9f:51:e4:92:e2:31:0c:f2:cc:
9d:e6:fc:75:fd:09:fe:26:0d:a4:42:17:8e:18:f1:84:af:bc:
25:bb:80:8c:9c:f3:cb:eb:e7:fb:24:6c:4e:cd:06:73:51:00:
80:36:d9:23:9c:65:fc:90:8d:90:d7:36:c3:77:ab:85:51:a6:
24:c0:d5:23:03:bb:e7:e8:82:98:36:9b:aa:10:28:e3:07:a6:
5b:ce:d2:1e:c8:51:30:ad:4d:04:c5:fc:72:a2:65:36:53:90:
51:29:49:62:74:74:46:c7:c5:2a:1b:78:2e:f2:05:88:1e:79:
4d:8b:ca:3d:64:dc:b0:63:32:38:13:e4:63:5a:f8:bb:00:cd:
0d:d5:e1:03:70:23:8d:3f:83:e0:7c:25:25:65:bf:44:38:80:
4d:38:da:46:31:ec:cc:e5:18:92:bd:58:a8:8e:e9:78:26:97:
3a:6f:b1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:59 2024 by rpki-client on console-ams.rpki-client.org