Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D52B4D96417B11EE854ABE124AD9E6FC.roa
File: D52B4D96417B11EE854ABE124AD9E6FC.roa (raw, json)
Hash identifier: wsbAtCqvYWakVfi2SGEP0idHJaIJSKQa9PaodCEDgEE=
Subject key identifier: 8C:87:25:41:F8:FB:73:7B:4C:29:56:69:9F:93:8E:53:BA:96:8C:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 36CB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D52B4D96417B11EE854ABE124AD9E6FC.roa
Signing time: Wed 23 Aug 2023 06:11:01 +0000
ROA not before: Wed 23 Aug 2023 06:10:58 +0000
ROA not after: Wed 21 Aug 2024 06:10:58 +0000
asID: 136442
IP address blocks: 156.236.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14027 (0x36cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 06:10:58 2023 GMT
Not After : Aug 21 06:10:58 2024 GMT
Subject: CN=64e5a2f5-a52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:82:1b:10:7c:fb:1e:b5:ab:cf:55:9a:c2:47:
7a:52:4d:d0:db:b6:6d:49:55:55:91:f9:e0:ff:cd:
2e:9f:82:ca:7e:ab:af:ff:2b:29:e1:99:5d:7f:69:
6d:39:ca:12:ad:f6:58:b3:f6:ed:29:4f:f4:6d:7a:
b1:c2:e2:d6:88:67:7f:df:9c:26:fb:1a:08:7f:0e:
1c:24:8e:c1:7a:70:ee:a7:49:db:6e:85:c0:84:52:
49:23:fb:41:e7:89:5a:10:a3:c6:25:d3:0c:ae:74:
ff:53:2b:79:f0:05:11:34:f5:cd:ca:ac:97:b6:a0:
23:ac:70:a3:95:a6:96:b7:92:e4:10:f9:79:cd:75:
2d:45:90:9f:e4:a0:4a:b3:ce:94:61:18:f7:f7:29:
b2:ae:b1:b5:67:33:da:c3:55:43:86:c8:c8:f7:97:
e0:61:16:8a:1a:7f:84:3d:2c:c3:56:75:0f:ea:fa:
0f:9f:6a:a8:a7:23:ed:98:83:bd:b1:d1:01:96:cf:
cb:04:97:ae:95:e2:4f:a1:44:c7:12:8d:20:70:92:
24:4a:a9:a2:e8:72:30:c7:c5:ca:c8:b1:46:05:3a:
18:db:45:32:a9:55:86:8e:80:2c:ce:b2:5f:d7:bf:
95:5d:37:4c:ae:f8:84:4a:06:ea:3f:43:2a:f1:d1:
59:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:87:25:41:F8:FB:73:7B:4C:29:56:69:9F:93:8E:53:BA:96:8C:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D52B4D96417B11EE854ABE124AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.3.0/24
Signature Algorithm: sha256WithRSAEncryption
76:fa:58:d6:84:c9:f8:3a:da:0e:00:aa:a8:63:27:2b:cb:30:
a8:40:5e:7d:12:4c:6d:43:ea:34:c5:26:2f:3e:8e:6d:99:ca:
ec:d7:2d:91:3d:6f:fc:11:ae:62:1b:11:43:91:b3:76:7a:53:
bd:d4:5d:27:42:5f:1d:dd:2e:6f:e4:c9:fa:73:ce:55:a3:24:
63:91:c0:ee:fd:a1:30:af:cd:b7:44:0f:a5:99:f9:bb:af:15:
1e:c1:eb:2b:28:2b:4f:ee:54:86:22:19:96:9f:3f:60:d2:be:
1d:ce:da:00:40:a5:a2:32:d4:8a:80:34:b6:68:72:60:f6:c4:
fb:52:95:80:d1:3a:10:7a:15:27:d5:3f:94:aa:81:4f:fd:4f:
f5:2d:8a:35:d0:f6:5b:a5:b5:aa:4d:3d:1b:f7:ff:5b:a5:1c:
65:e6:9b:a9:a4:77:02:55:d5:09:1e:60:4f:a2:c3:6c:2e:1f:
ec:e1:cf:16:5c:c3:6e:a8:49:72:c8:b1:2a:5f:d8:52:cb:60:
6b:6d:96:77:6b:12:01:73:24:df:83:4d:05:e6:f6:e4:d8:86:
f0:f8:ff:40:fb:e4:f9:b2:85:cb:f7:a0:d4:76:17:33:bc:c6:
18:3c:66:bd:20:39:69:3d:54:c0:9f:6c:f7:9a:d3:ff:96:78:
34:48:50:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org