Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2EF2C22FE9611EDA572D6484AD9E6FC.roa
File: E2EF2C22FE9611EDA572D6484AD9E6FC.roa (raw, json)
Hash identifier: WJONw7jZ8VlGcrFJUVgNzEgPcvzJ/jXJebcFaPAvGzk=
Subject key identifier: 52:E3:7B:E5:08:CD:BD:7E:59:5E:A2:E5:02:73:64:FF:23:39:84:82
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 281B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2EF2C22FE9611EDA572D6484AD9E6FC.roa
Signing time: Tue 30 May 2023 03:05:52 +0000
ROA not before: Tue 30 May 2023 03:05:47 +0000
ROA not after: Wed 15 May 2024 03:05:47 +0000
asID: 63888
IP address blocks: 156.255.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10267 (0x281b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 03:05:47 2023 GMT
Not After : May 15 03:05:47 2024 GMT
Subject: CN=64756810-5e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2b:d6:df:48:f6:aa:a1:1a:eb:a2:5c:34:f9:
44:5a:60:64:2f:b8:61:3e:08:86:a9:ec:ef:dc:cc:
99:c1:52:68:0b:71:2d:25:ca:db:3f:b4:a6:4f:a8:
b6:8c:48:d3:fa:c5:38:8d:51:c6:0b:41:c0:c7:63:
66:34:a5:b6:df:a0:8a:38:0f:54:54:0b:f9:cc:a4:
c1:67:5c:2a:51:1b:84:16:53:0a:7e:d9:76:24:02:
97:43:38:70:47:da:62:09:d6:a2:75:27:d2:22:14:
a2:70:e6:66:ae:d3:93:a7:17:bb:6e:dc:62:a2:c0:
e4:94:d1:09:f0:7e:8e:e5:01:d1:47:ea:11:50:eb:
e8:2d:ad:04:23:96:fd:55:4a:5c:d2:54:fe:10:50:
51:18:ba:b4:30:f4:45:a4:c3:f7:aa:27:ab:ec:21:
25:a0:80:77:8f:10:9a:b6:57:52:85:1d:4c:a1:6d:
c3:91:7b:46:ee:44:55:33:38:a6:17:93:ee:5c:28:
4f:1e:47:d3:ab:e7:f2:0e:05:d2:12:7b:7a:23:b4:
14:c4:46:06:b1:ab:53:77:6e:52:4e:6b:21:99:a9:
ac:ad:ca:47:6b:e0:49:cd:db:e2:c4:c8:f2:75:c2:
34:a2:fc:38:36:f7:ff:75:c4:da:98:0d:70:49:e4:
2b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E3:7B:E5:08:CD:BD:7E:59:5E:A2:E5:02:73:64:FF:23:39:84:82
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2EF2C22FE9611EDA572D6484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.114.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:17:b3:aa:a1:64:0e:58:48:de:08:3f:d6:b7:67:3c:9d:24:
12:c8:df:83:d5:59:16:04:e1:e7:21:73:86:bc:e5:7a:fc:42:
78:2c:51:65:6b:34:58:5f:42:83:f4:fd:9b:ec:97:4e:be:7d:
7e:2c:ab:b0:3b:f3:6d:17:a3:7e:34:57:6d:16:cb:72:67:0d:
a4:65:e5:18:15:cc:ba:bc:b7:df:83:3c:46:8e:5d:d0:8b:48:
88:80:5e:d3:ed:79:9a:b8:9d:a3:a0:d2:7b:41:25:ad:51:8f:
50:5a:f2:e9:c1:67:d9:cc:03:8a:5b:62:68:0a:71:32:97:97:
e3:4c:0d:74:51:72:f5:85:a7:2b:e2:50:82:dd:2c:a5:5f:d7:
08:91:44:57:81:eb:dc:f7:29:4a:06:3b:bc:ee:35:b6:3c:4f:
e9:23:4e:5e:de:15:d3:c6:78:32:87:20:36:0f:04:3f:b2:05:
d6:0a:12:a0:ad:7c:17:13:35:f8:d6:87:61:ee:87:e6:88:ba:
d9:a4:53:bd:27:20:c0:d6:40:be:fa:d5:3a:b9:c6:ae:57:f2:
a3:9e:b5:c2:df:59:0e:3b:c0:1a:0d:06:bd:51:3a:fe:bf:83:
53:f2:fd:a8:30:1c:a0:98:c7:f9:eb:63:fc:67:ca:b6:c3:32:
8b:88:1f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org