Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3E7DBB27EB411EE8865C74C4AD9E6FC.roa
File: E3E7DBB27EB411EE8865C74C4AD9E6FC.roa (raw, json)
Hash identifier: A6Hf8PFFwVOrjPg7uq8Mrgv1PljRMJFukkx+X9xYVQo=
Subject key identifier: 28:E2:CD:08:F3:97:E3:FC:20:33:56:75:50:99:E0:5D:8C:B5:C6:6B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 44C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3E7DBB27EB411EE8865C74C4AD9E6FC.roa
Signing time: Thu 09 Nov 2023 04:03:08 +0000
ROA not before: Thu 09 Nov 2023 04:03:03 +0000
ROA not after: Thu 08 Aug 2024 04:03:03 +0000
asID: 133861
IP address blocks: 156.245.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17609 (0x44c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 04:03:03 2023 GMT
Not After : Aug 8 04:03:03 2024 GMT
Subject: CN=654c59fc-0bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:54:74:08:dd:70:71:33:3f:65:60:70:d9:95:
68:f3:05:48:71:5c:bc:91:50:97:30:6b:9a:fc:db:
32:28:00:53:24:56:38:c7:e6:bb:5e:19:e4:0e:57:
89:da:6b:34:09:8a:0b:d9:51:c1:4e:03:ea:43:e7:
0f:20:c3:21:38:9c:2f:b8:5c:f2:cb:db:0d:da:78:
48:06:5c:54:24:67:2f:0f:fd:c8:14:81:08:0f:e4:
72:87:fa:57:49:b2:cb:8f:55:66:ea:d3:0d:50:40:
21:78:dd:50:ff:45:5f:f9:35:9b:41:8d:21:5a:f0:
00:16:17:21:78:28:02:49:62:6f:a8:30:c9:22:0a:
51:d8:92:9c:44:4d:85:23:de:52:ec:30:6c:08:5a:
8c:fd:94:24:fc:46:26:06:6b:10:75:ce:92:ee:fe:
0a:7b:2b:8c:ba:d7:49:98:3c:c2:d1:45:21:99:37:
4b:17:4f:f3:1c:7a:a2:7b:02:bf:11:34:fc:97:e0:
b9:18:64:9d:a6:2d:07:3d:fa:75:1a:19:ad:49:bf:
49:ce:12:1d:e7:dc:a2:8b:bd:e5:37:8f:ac:a7:fc:
2d:f0:b8:b1:2c:22:ee:b3:d7:cc:ee:a1:f5:86:c7:
e2:c7:9a:29:11:1b:37:92:70:f3:36:ac:c8:92:39:
d2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E2:CD:08:F3:97:E3:FC:20:33:56:75:50:99:E0:5D:8C:B5:C6:6B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3E7DBB27EB411EE8865C74C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.23.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:d6:3f:13:78:b3:f3:ab:0a:ce:e5:52:f7:ab:e4:63:27:ec:
77:35:a2:53:4b:2e:6b:cf:a8:e5:55:8b:5a:fa:09:8c:36:fb:
13:26:f3:ea:81:27:fd:e8:5b:fc:c1:1a:c1:68:5e:ae:11:13:
53:68:f2:ae:90:54:a0:4c:6c:a0:46:fc:93:1f:12:0c:a2:4c:
45:ee:72:bb:b3:59:88:87:6c:26:08:cd:ae:be:b5:29:9e:09:
24:e5:0f:0b:b9:45:c8:99:ee:65:38:20:3c:bf:0a:24:6d:a0:
ff:4d:99:06:89:fe:2a:97:49:f5:8a:cd:ca:62:a2:c8:c7:93:
59:b0:c5:b8:68:52:ec:1c:d5:08:15:4e:98:b4:f9:2d:70:04:
75:4c:bd:ef:1a:3b:d1:8a:27:ee:ef:7e:ee:a2:60:e1:75:40:
5a:dc:09:76:25:06:74:27:03:bd:32:da:b1:6e:90:c0:d4:be:
b1:47:9c:74:aa:29:32:78:a0:d8:68:53:37:a5:bb:ae:86:80:
16:d7:ba:b9:12:16:aa:0d:fd:d3:8e:be:88:88:7b:c0:1e:35:
a1:30:e4:9d:da:0b:98:11:5a:0e:63:a7:48:b3:43:a6:29:8f:
89:3c:37:58:df:8e:61:84:94:21:86:da:06:a7:99:e2:37:7f:
83:7a:ef:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org