Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E581EF54FE9811EDA0F1144F4AD9E6FC.roa
File: E581EF54FE9811EDA0F1144F4AD9E6FC.roa (raw, json)
Hash identifier: rD8uKtv+B0HKRX+jWHgEoOEADed/C7Po6A/7b9Uw27Q=
Subject key identifier: 02:0F:47:7A:71:B0:36:4C:37:5B:F5:E8:57:50:87:BE:3B:69:DD:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 282F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E581EF54FE9811EDA0F1144F4AD9E6FC.roa
Signing time: Tue 30 May 2023 03:20:16 +0000
ROA not before: Tue 30 May 2023 03:20:12 +0000
ROA not after: Wed 15 May 2024 03:20:12 +0000
asID: 63888
IP address blocks: 156.255.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10287 (0x282f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 03:20:12 2023 GMT
Not After : May 15 03:20:12 2024 GMT
Subject: CN=64756b70-e904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:13:3f:78:84:bb:b5:99:c5:86:12:6c:5f:bb:
32:28:45:27:62:5e:f7:7a:de:80:e6:d8:9d:01:97:
18:23:5b:96:b5:43:bd:a3:e2:76:49:ab:f6:d2:2d:
2b:68:df:5f:dc:ac:af:28:14:12:4b:4b:3f:de:fe:
38:59:45:cd:30:4b:89:33:a8:26:b2:12:35:e0:b5:
e3:5f:94:45:b0:44:fa:8c:df:73:eb:71:a6:7a:22:
0b:69:0e:71:02:75:76:e8:b3:49:4d:08:33:92:57:
45:6c:1a:d1:55:d8:ef:f2:72:18:0e:66:bc:b8:02:
27:3f:67:c0:7e:3f:af:3b:62:1d:69:1b:28:ad:52:
ba:be:8b:cd:84:a2:2b:a8:04:4f:8d:4a:1e:3f:0b:
b4:dd:cc:16:df:87:d7:64:d1:69:99:3b:aa:ec:75:
d8:cf:96:ef:79:93:58:c8:a3:6d:e2:2b:8a:6c:a5:
7b:38:47:77:32:d4:25:e1:9a:ea:5e:de:8b:7c:fb:
dd:ab:25:6f:3a:61:27:23:93:da:88:60:bc:60:4f:
10:7c:45:74:25:5f:dd:4d:0a:2d:79:1f:6d:7b:08:
21:e7:64:ab:97:9f:0f:fb:22:f4:0c:2f:48:5b:5e:
bb:98:37:da:b3:16:6a:aa:1f:51:2e:e5:71:bf:c7:
de:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0F:47:7A:71:B0:36:4C:37:5B:F5:E8:57:50:87:BE:3B:69:DD:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E581EF54FE9811EDA0F1144F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.104.0/24
Signature Algorithm: sha256WithRSAEncryption
81:de:26:37:b0:eb:67:72:32:3c:79:69:7b:71:34:ce:3b:c6:
e4:4c:cc:90:fd:af:75:d7:6c:72:5a:37:f7:35:17:03:5a:f0:
e4:d3:1f:1b:bf:2c:a4:e6:9b:36:86:49:06:72:af:87:a1:93:
ff:8d:6b:20:be:6a:f3:20:f2:10:68:d3:a7:e9:8d:b9:db:57:
a2:32:f8:2c:f8:50:86:ae:40:3e:0b:9c:34:f7:dc:87:83:ce:
da:1f:71:77:67:0a:4e:00:7f:70:31:34:6e:6a:3d:f2:0d:64:
93:bc:30:c1:41:49:fd:4f:7e:57:87:62:dd:52:aa:6e:44:02:
d1:df:91:b6:7d:bf:62:5a:ef:4b:e1:a3:4f:1c:a2:a3:ca:be:
f4:47:fb:7d:51:e7:20:77:25:a9:6b:0c:c6:10:14:aa:1b:09:
58:28:f3:0f:45:c8:94:5c:9f:f4:d9:94:2d:f7:44:7b:4e:dd:
8b:4a:e6:0c:fb:7d:bc:2f:a6:28:24:32:56:7a:b8:e1:d6:61:
8d:01:c0:38:2b:f6:5b:cf:47:a9:3c:3e:47:0d:9f:9c:ec:5b:
85:e2:95:13:30:86:ed:6b:2f:77:1d:c4:6e:aa:2d:b5:0b:09:
4b:71:cf:0c:f0:0e:35:e2:98:e5:9c:d9:7a:af:27:9d:37:36:
2b:c7:4d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org