Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBBAFB40F91611EDB03E0A174AD9E6FC.roa
File: EBBAFB40F91611EDB03E0A174AD9E6FC.roa (raw, json)
Hash identifier: llMQJL6hG4EDXiy4s+z2QKnFcAJuYp53Rc8Vu8a1t4o=
Subject key identifier: E2:37:14:99:12:8A:ED:5B:12:39:F0:96:11:EA:2A:29:74:94:0C:4A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26B2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBBAFB40F91611EDB03E0A174AD9E6FC.roa
Signing time: Tue 23 May 2023 03:07:16 +0000
ROA not before: Tue 23 May 2023 03:07:12 +0000
ROA not after: Tue 15 Oct 2024 03:07:12 +0000
asID: 399626
IP address blocks: 156.230.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9906 (0x26b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:07:12 2023 GMT
Not After : Oct 15 03:07:12 2024 GMT
Subject: CN=646c2de4-64c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4d:52:af:09:b3:2a:de:01:cf:36:ac:9e:3d:
5f:43:d6:35:6f:7b:f8:1d:e6:46:83:0b:55:dd:0a:
0e:f1:2f:40:6f:ae:20:9a:cf:36:49:f5:d5:01:bc:
a7:e6:41:de:b6:a1:50:3a:3f:27:b8:d2:a3:ef:fa:
18:0d:cd:f5:c5:d3:e2:7f:4b:d8:0a:78:ff:d4:79:
04:5b:6e:60:c0:f1:98:ed:36:c8:85:e9:ab:ae:1b:
b8:b4:ec:33:75:64:3f:5d:a2:14:25:17:16:71:85:
2d:52:21:e4:1e:eb:8e:c2:2a:77:ac:0f:64:82:06:
a6:a4:4e:ff:6a:f4:ca:3c:17:95:dc:fb:63:1c:cb:
c0:05:4f:2d:c3:f3:26:6e:c3:3e:dd:13:57:f6:d6:
e5:80:1d:1f:24:33:44:b9:63:87:02:57:06:3e:d5:
19:f8:cd:78:18:da:c0:1d:2b:9c:30:73:65:65:0e:
c9:d1:a1:ff:8f:f0:72:f0:88:2b:70:ce:8a:67:3d:
e7:06:01:e4:9e:7c:26:47:70:fd:18:5f:56:37:1e:
f7:6d:97:1d:a7:0a:da:7b:55:9b:27:0d:d4:63:cd:
d7:74:cc:66:40:45:68:05:de:4b:1e:fe:e9:61:1f:
71:af:d4:47:5c:12:7f:b7:a5:ef:b3:a8:9c:63:25:
3b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:37:14:99:12:8A:ED:5B:12:39:F0:96:11:EA:2A:29:74:94:0C:4A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBBAFB40F91611EDB03E0A174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.128.0/19
Signature Algorithm: sha256WithRSAEncryption
80:1d:60:61:1c:df:31:1b:0b:f7:2c:ce:d3:99:83:8d:9f:3b:
e2:d5:9c:4d:c8:23:92:07:7d:ac:16:74:ac:10:97:72:79:7d:
cc:12:94:57:69:1e:26:40:ce:56:53:d3:38:24:6c:fe:8c:b3:
6b:2d:7e:8a:9a:38:8f:1d:72:90:61:9e:d9:8e:2f:fd:a3:1c:
07:b8:7b:69:d3:26:eb:a6:04:54:84:ca:3c:3b:f7:97:02:d2:
16:71:1a:fe:4a:e3:a8:94:16:c0:5a:7a:6f:b5:5d:d9:35:89:
29:4f:3d:47:c5:47:ad:85:0b:9b:4f:fa:62:ec:7e:59:d7:99:
48:c7:63:8b:7f:e4:cc:b0:17:4c:f8:30:04:25:d5:32:94:4d:
22:47:d8:7a:81:45:f0:31:3d:a1:95:6d:b9:81:89:62:95:44:
88:49:c7:bd:2d:98:a0:71:49:c3:26:de:73:ef:aa:9f:93:66:
3d:c5:8d:d7:ec:76:ae:ba:07:41:e2:c3:fa:43:c6:12:86:61:
b3:be:2a:4c:7b:0e:92:c3:18:42:69:7a:1e:66:bc:c9:03:b1:
c4:cb:94:cf:c7:da:fc:b3:83:3f:9d:7c:44:c2:48:fe:6d:68:
88:cf:df:91:64:8d:1f:a5:57:c5:33:a8:97:e1:f6:ea:bd:12:
72:25:46:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org