Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EA86AC207FD411EE8D3A4A684AD9E6FC.roa
File: EA86AC207FD411EE8D3A4A684AD9E6FC.roa (raw, json)
Hash identifier: TQLknsZwzKFgYTtTLfyPgRHgebbCU74BffJr3ZxL69A=
Subject key identifier: DA:25:0D:D4:02:DF:D4:E0:7D:BD:E1:36:88:A5:0A:51:48:D4:00:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4622
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EA86AC207FD411EE8D3A4A684AD9E6FC.roa
Signing time: Fri 10 Nov 2023 14:24:54 +0000
ROA not before: Fri 10 Nov 2023 14:24:51 +0000
ROA not after: Tue 12 Nov 2024 14:24:51 +0000
asID: 397630
IP address blocks: 156.239.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17954 (0x4622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 14:24:51 2023 GMT
Not After : Nov 12 14:24:51 2024 GMT
Subject: CN=654e3d36-fa2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:94:e7:da:a2:48:1a:7c:1b:e7:e9:e0:05:2f:
88:d2:f5:34:48:14:b8:a0:7c:79:ca:6c:6d:24:70:
98:6d:7d:49:ef:d4:6c:8f:a7:81:09:a6:0a:8d:63:
a9:ba:2d:f5:ad:98:24:0a:16:69:e3:a5:28:85:78:
df:c4:0c:dd:9a:72:d3:fc:55:89:99:a8:2a:27:31:
8b:66:52:9c:db:aa:45:83:0a:aa:65:ff:00:14:18:
44:bf:ad:76:37:ff:d8:17:3c:8e:d3:a9:67:78:0d:
5b:87:5f:2c:14:df:6d:93:d8:9d:7e:6f:ca:99:be:
a8:b1:e6:02:f2:b5:57:e3:70:17:3d:fc:80:8e:22:
ed:0e:e6:f0:62:ae:34:21:50:6f:75:1b:40:61:21:
27:91:a5:27:87:ca:ea:fe:c8:da:30:05:9b:9e:21:
75:31:52:fb:36:41:bd:5b:26:00:85:dc:38:87:22:
73:70:58:5c:96:a2:2a:0f:83:45:7f:82:8e:45:45:
25:f9:13:c1:10:0c:73:ec:e2:2f:da:28:5c:4a:d9:
d9:a0:fc:7f:24:c7:4f:8e:31:a1:6a:14:fd:8a:d9:
83:d4:55:68:7c:a2:ef:97:d5:e3:27:b5:e9:19:07:
a7:9d:38:a7:82:1f:07:47:e8:2d:83:c4:b1:b6:6f:
73:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:25:0D:D4:02:DF:D4:E0:7D:BD:E1:36:88:A5:0A:51:48:D4:00:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EA86AC207FD411EE8D3A4A684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.59.0/24
Signature Algorithm: sha256WithRSAEncryption
43:d2:8f:9e:6d:49:c9:9a:55:b0:7d:48:a3:a2:e2:00:57:84:
87:e7:c9:eb:14:bd:a9:80:ac:51:29:dc:ae:df:9e:dd:c5:95:
70:41:cd:81:2f:66:70:52:2b:ad:c0:80:6d:42:f4:20:cf:34:
81:71:cb:2e:fe:0f:0d:7a:ba:f9:06:43:41:f2:e1:49:e2:da:
e3:1b:24:c6:37:d1:34:40:b2:e9:fd:f9:c3:d4:b5:b5:79:40:
2c:09:4d:87:d9:dd:d7:db:ab:e2:ac:7e:b5:69:bd:80:0f:3d:
c1:58:bb:03:44:be:24:d6:23:cb:6a:c6:07:ab:52:3e:fe:9b:
b2:54:ca:cd:33:15:ce:b4:86:a3:d7:30:02:56:b3:a0:68:48:
4b:0d:ff:ff:e7:0e:e5:34:4a:36:53:1d:d7:73:d8:1d:20:17:
c2:23:a9:ad:90:76:41:35:b4:8c:6f:e4:8a:21:d6:a3:ad:b3:
83:14:89:04:71:99:a4:7d:2f:14:94:1c:31:f2:b3:c3:01:e3:
66:53:8b:4a:ee:93:9b:23:23:6d:3b:a0:6f:1f:a7:e3:ff:fe:
4e:26:f2:71:01:35:05:50:94:98:bf:d6:53:30:b0:3d:bd:7d:
71:e7:0a:28:2b:10:6f:25:3c:4f:21:b4:be:4e:66:6d:94:c6:
e3:30:69:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org