Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D637F93C278111EEB8A2301D4AD9E6FC.roa
File: D637F93C278111EEB8A2301D4AD9E6FC.roa (raw, json)
Hash identifier: t1d66/gMHJNd/T+prEOGgUvf+CEfjD3PESj1vsaRERA=
Subject key identifier: 63:3E:61:0C:C4:58:14:80:EC:B8:B2:9C:BD:A4:68:63:71:6F:F4:4B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 31CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D637F93C278111EEB8A2301D4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:48:29 +0000
ROA not before: Fri 21 Jul 2023 04:48:26 +0000
ROA not after: Thu 13 Jun 2024 04:48:26 +0000
asID: 5065
IP address blocks: 156.233.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12751 (0x31cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 04:48:26 2023 GMT
Not After : Jun 13 04:48:26 2024 GMT
Subject: CN=64ba0e1d-d8c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ed:90:27:0d:0f:f4:16:a5:aa:54:a1:f4:75:
94:39:41:16:f0:d2:a5:2b:fd:ee:f0:e3:3a:60:59:
80:6c:0f:21:ec:1c:0e:ce:3a:0c:9a:23:43:bc:a3:
52:2d:62:fe:25:d5:70:c0:28:69:b4:7f:5a:63:68:
11:4f:ea:97:4a:09:33:55:13:1e:83:91:6e:22:a6:
38:e1:93:60:2f:03:7a:e6:12:5c:9f:11:a8:0b:f6:
c4:e7:cd:4f:10:b2:37:17:66:01:be:20:ab:e1:2d:
44:6d:7f:03:c8:a3:94:20:e3:37:fa:54:b3:04:ad:
56:98:42:fc:c6:7c:ce:81:70:10:e4:4f:95:b4:3f:
bc:b1:91:05:13:3f:0c:1e:03:d1:45:16:8f:86:eb:
7b:43:ce:0d:51:92:90:d5:f1:11:f1:f1:7b:8e:fb:
fa:b2:88:88:44:03:92:af:2a:d2:4b:41:23:f6:9b:
ad:f1:4b:93:20:7d:10:6d:cc:59:f7:38:32:fc:7e:
25:c9:21:53:4e:be:fa:df:96:db:b0:b2:f3:ca:98:
7e:73:22:68:35:ad:65:21:95:c1:0c:94:85:e9:7d:
7b:f5:93:f1:8b:39:fc:3f:6c:36:81:d4:9a:ef:cb:
17:66:4c:fa:99:a0:95:0f:e1:b1:1a:d1:72:df:3f:
0e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3E:61:0C:C4:58:14:80:EC:B8:B2:9C:BD:A4:68:63:71:6F:F4:4B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D637F93C278111EEB8A2301D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.22.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:8a:ef:b5:09:79:cd:20:17:0d:c4:a5:46:aa:38:bf:5f:b8:
4c:e4:d7:e4:98:30:67:d6:2a:15:38:4b:ba:e2:a5:75:df:05:
d7:a8:1c:a1:b0:77:6f:9c:b9:90:20:f2:e1:eb:fb:58:1e:18:
3c:57:19:98:5f:53:53:b1:6f:55:5c:e9:58:74:8d:aa:31:e8:
d5:1d:67:64:44:a5:e1:87:f0:7a:ec:5e:25:83:93:0d:13:66:
74:99:89:ab:e0:30:f3:39:5a:5b:08:53:e6:79:08:f3:6e:6d:
6b:c3:e1:27:2f:6a:69:ae:d8:51:b1:10:ca:e4:92:d8:e4:3c:
8d:ca:02:cf:3c:4e:90:ef:be:cc:21:55:29:74:00:43:2e:99:
52:81:6d:79:47:48:ff:a7:a7:e1:21:57:2e:db:0d:8d:24:63:
b9:7a:e1:a9:8b:51:b5:91:73:5d:90:41:d8:1a:2e:03:24:bf:
8a:28:d0:07:c3:0c:21:77:3d:5a:7b:1d:84:b1:55:51:39:51:
16:e5:d4:30:b4:f8:3c:e8:76:df:d5:26:f8:2e:80:40:43:1f:
fd:1f:3d:be:be:f7:be:04:49:81:1c:77:84:36:72:19:fb:e5:
36:a7:3c:56:13:f3:25:4e:34:ac:c0:30:67:39:90:d0:8f:e4:
3a:a8:20:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:33:24 2024 by rpki-client on console-fra.rpki-client.org