Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E04108E83B2611EE974EAC344AD9E6FC.roa
File: E04108E83B2611EE974EAC344AD9E6FC.roa (raw, json)
Hash identifier: +afORtgCINbXWH4ozQExHlw/jIqqUmjzi5sYTToDwvU=
Subject key identifier: E1:5F:0C:B8:3D:CB:9B:D1:25:43:EB:53:A3:91:8F:2B:36:9D:49:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35A1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E04108E83B2611EE974EAC344AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:47:45 +0000
ROA not before: Tue 15 Aug 2023 04:47:42 +0000
ROA not after: Mon 27 May 2024 04:47:42 +0000
asID: 140627
IP address blocks: 156.247.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13729 (0x35a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:47:42 2023 GMT
Not After : May 27 04:47:42 2024 GMT
Subject: CN=64db0371-c796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:77:8f:2c:d1:28:c8:12:4b:3f:70:60:4b:f0:
43:6f:c1:e0:8f:72:1b:a5:da:af:3d:c0:f6:e8:d2:
2d:4c:1e:fa:9e:d8:60:3c:0e:b6:a8:e2:52:0c:2d:
f2:ec:38:ce:75:33:a8:7f:33:b3:98:4f:ee:36:d0:
6f:52:af:87:a2:7c:7a:7e:a1:35:4e:fd:36:1f:64:
52:f4:9f:71:92:d8:19:b0:8e:2a:4b:e1:09:75:5c:
4b:d1:05:37:9e:51:74:02:29:99:1f:f1:4f:f3:54:
72:bd:99:ed:a3:90:0f:c8:64:55:44:fc:e5:fb:32:
6b:f4:18:8c:b2:fa:45:64:24:56:4b:79:66:67:23:
83:f5:ef:a6:f1:f9:b7:38:34:84:d8:43:41:97:ae:
30:64:06:dc:d9:0c:23:3c:31:e5:8f:a1:8e:7f:31:
43:12:dd:69:a6:88:d4:8f:a9:d1:57:fa:f2:10:83:
00:75:98:55:a8:56:ee:5a:ed:4d:d5:ea:9e:3f:0e:
30:1b:a7:53:a7:68:f7:0c:1e:6f:38:93:81:fc:ff:
fd:b5:9f:e7:23:25:f8:a1:38:27:74:c6:0d:91:a8:
74:6f:35:06:1d:2e:e0:fb:4b:20:0d:f2:dc:ea:84:
7f:0e:45:08:1a:a9:0f:60:fa:56:f2:1d:cf:07:ad:
a1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5F:0C:B8:3D:CB:9B:D1:25:43:EB:53:A3:91:8F:2B:36:9D:49:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E04108E83B2611EE974EAC344AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.239.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:9f:8d:c2:66:9c:1a:18:98:00:15:15:58:26:21:3a:46:ab:
28:2a:71:d6:d2:61:fd:4a:87:61:18:7d:f4:c4:b3:8d:2b:6a:
c1:62:60:75:b0:08:94:7e:2f:c6:be:5e:60:1e:63:e0:31:e8:
ed:08:9c:30:e4:15:1d:46:b7:64:71:23:62:9e:92:d7:e0:01:
5b:29:43:e1:66:82:ab:9c:2e:0c:45:fc:79:00:f7:b0:e6:dc:
38:d6:87:4f:40:57:c9:a8:3e:4f:f8:f6:3b:62:44:8f:2a:05:
9e:1d:ef:a9:e4:d5:38:46:a5:27:62:c7:2a:49:81:17:84:52:
0e:ca:c2:b6:3a:7b:e3:3b:e5:ed:ba:6d:d0:76:9b:e4:0f:a9:
46:91:39:bd:a7:89:b7:fc:5b:5d:61:7a:e9:70:c4:60:32:3d:
14:06:10:b5:2a:79:12:ed:87:db:95:cd:ea:8b:c8:9b:9e:a5:
d3:0a:c8:c7:b2:07:2c:e6:fa:9a:41:1f:c2:52:7e:a4:27:fe:
7b:42:32:f7:05:70:b2:fa:82:1d:f4:e7:38:f0:73:cc:16:52:
f1:d5:f4:cd:e0:bb:c5:d5:3c:7f:c2:c2:1d:9c:b3:dc:4c:39:
3d:e4:d1:ad:68:f7:fa:39:98:2c:d0:e4:86:28:a6:a3:6f:bb:
58:b4:34:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:59 2024 by rpki-client on console-ams.rpki-client.org