Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E151CDF010CB11EFAFDDB849017001B1.roa
File: E151CDF010CB11EFAFDDB849017001B1.roa (raw, json)
Hash identifier: RfDEEvrKQqm3vHtIa7vqhIVhVos4RUoBNyshMCSIH34=
Subject key identifier: EB:CE:CA:15:E7:7E:C4:DD:65:0A:98:3F:50:9E:E3:BB:83:F3:DF:EB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 89C1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E151CDF010CB11EFAFDDB849017001B1.roa
Signing time: Mon 13 May 2024 01:55:32 +0000
ROA not before: Mon 13 May 2024 01:55:28 +0000
ROA not after: Tue 25 Jun 2024 01:55:28 +0000
asID: 137547
IP address blocks: 156.245.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35265 (0x89c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 01:55:28 2024 GMT
Not After : Jun 25 01:55:28 2024 GMT
Subject: CN=66417314-03c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:34:34:70:6f:05:f1:be:78:36:91:69:47:17:
be:b6:f4:6a:48:0d:ca:b8:c1:33:8e:4f:fb:a4:ca:
ea:1d:25:0c:e8:8a:d8:8d:36:a7:4d:02:50:45:a9:
ae:a2:0d:c5:47:69:55:38:3e:e0:07:d1:35:d9:e1:
5f:97:58:75:88:1a:ad:3e:92:83:dc:4f:a9:6a:6c:
d2:65:4c:20:67:3d:43:30:a1:85:f2:51:59:13:54:
71:1b:b3:9e:95:75:33:76:57:5f:6d:7f:e9:ab:35:
9d:fb:c4:42:46:fe:40:64:16:d4:bd:d9:70:1f:3b:
ef:90:80:ea:a5:2c:66:65:33:3c:d8:b2:9a:0d:6c:
85:4b:13:3b:e6:75:ca:9b:1a:85:b0:5f:a2:11:a4:
ed:18:53:3d:bd:8c:e4:38:fe:a9:33:bb:1d:73:e6:
0c:7f:62:f4:88:ee:17:89:8d:22:88:4c:82:96:ff:
c8:c5:c6:58:4b:aa:17:00:38:c0:ad:00:59:92:fe:
4b:56:74:d1:ae:36:fe:fe:e1:44:d9:89:a1:f7:96:
84:e1:a9:a8:1e:4a:7f:14:5c:f5:22:55:0a:cf:89:
81:a9:39:be:75:80:0a:76:b6:15:88:21:3a:83:67:
1c:5a:e4:1d:f2:fb:ea:e7:e0:74:ad:7d:d6:71:f0:
77:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CE:CA:15:E7:7E:C4:DD:65:0A:98:3F:50:9E:E3:BB:83:F3:DF:EB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E151CDF010CB11EFAFDDB849017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.210.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:bd:05:c8:7e:34:a8:d1:67:d7:05:73:27:24:71:05:ae:de:
50:6f:a3:e1:0b:1d:00:fc:fc:27:e2:59:56:1b:1f:0d:f5:d8:
50:89:05:5f:b2:86:d2:b8:5d:83:c9:6d:30:28:04:d8:9e:9a:
68:cc:8a:c0:dd:37:a4:58:56:d5:94:c7:4e:8a:4f:df:c4:59:
1f:95:e3:f7:43:ce:ca:43:0d:f5:06:6e:53:ac:c0:d2:0e:b4:
09:67:96:ce:55:46:8c:f9:52:b4:b8:1b:94:40:a8:83:45:23:
bf:0f:ca:0a:86:80:ab:4a:4e:c5:5f:27:82:38:0a:aa:fb:80:
98:89:a1:22:a8:ec:d7:49:63:31:e5:7f:09:50:3b:70:1f:5a:
77:00:ba:d2:12:51:31:7b:7a:0c:1f:a7:fb:2e:e7:70:b8:e6:
a0:0d:10:0c:35:c3:90:5d:56:97:e0:87:d4:2c:b5:13:00:99:
49:5b:3c:f5:29:e3:94:e6:b5:ea:99:4e:37:da:0d:04:b5:1f:
3e:f8:d2:2f:3a:2e:0a:49:ad:2a:55:71:15:16:8d:26:f7:2d:
57:39:eb:38:e4:0b:3f:0d:de:2a:36:34:b1:5a:5c:b6:08:b8:
54:74:2f:74:d1:f3:ef:49:05:08:bf:98:2f:3c:ea:cb:85:bd:
13:e7:11:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:10:26 2024 by rpki-client on console-fra.rpki-client.org