Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F08E86843B2C11EE9E393E474AD9E6FC.roa
File: F08E86843B2C11EE9E393E474AD9E6FC.roa (raw, json)
Hash identifier: Ji6Idy/Qe0KFqkmF3/lCMnjeYY9czcA0LUvYHzYhq1M=
Subject key identifier: 4B:54:81:CD:0E:F4:E8:0A:0E:B6:79:E3:BD:9B:6E:2D:76:7C:DD:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35FF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F08E86843B2C11EE9E393E474AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:31:10 +0000
ROA not before: Tue 15 Aug 2023 05:31:06 +0000
ROA not after: Mon 27 May 2024 05:31:06 +0000
asID: 140627
IP address blocks: 156.247.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13823 (0x35ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:31:06 2023 GMT
Not After : May 27 05:31:06 2024 GMT
Subject: CN=64db0d9d-ff83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5b:9f:0b:9a:0a:3b:2b:c2:c7:8c:50:8e:be:
61:dc:8b:78:4d:5e:bd:8f:0d:1b:85:ee:52:bd:2f:
b7:5c:aa:e8:2b:bb:c5:b9:70:f6:e1:03:37:4d:a8:
30:67:a0:d0:5e:02:50:d3:5e:9b:29:7d:a1:9a:3a:
d3:d0:3a:47:0e:56:06:41:3d:f6:53:2b:e2:a8:65:
b7:2b:9e:12:a1:57:e6:bf:7b:3f:1f:2d:9b:ec:1b:
8e:43:1f:b0:df:a0:dc:c0:df:9a:48:ab:50:3a:73:
35:3f:5b:6c:d4:c0:24:57:ef:b5:fb:19:64:5b:6c:
23:24:47:c9:a4:f9:f0:cb:fa:74:05:ed:42:f3:b5:
70:a1:d4:4a:96:9f:4d:89:d6:f2:dc:b8:bc:63:7f:
0d:92:a7:2c:78:11:d7:04:ae:4a:f6:ad:c0:2a:94:
6c:ee:5b:51:b6:85:e9:42:f6:01:d5:45:15:b0:bf:
b4:f1:90:7e:ec:41:c0:eb:aa:db:af:70:3d:62:e5:
a0:21:9a:f7:cc:98:00:22:3f:2e:f3:e0:07:84:dd:
8e:62:1c:66:33:04:b6:c2:0d:40:a2:df:f3:ea:41:
14:be:23:39:c5:14:57:de:85:4c:70:24:f5:e9:f9:
24:24:f0:c8:a2:1b:f0:09:99:f3:70:73:91:a7:40:
fe:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:54:81:CD:0E:F4:E8:0A:0E:B6:79:E3:BD:9B:6E:2D:76:7C:DD:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F08E86843B2C11EE9E393E474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.158.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:8f:bd:02:46:18:78:2c:c0:bc:8f:a1:96:f1:2f:34:18:1a:
be:5b:f2:5b:c1:d0:62:d2:d6:ab:27:c4:74:43:0e:a1:86:1b:
7f:ef:0b:f3:5c:b5:63:3d:93:fe:dc:cd:a3:05:3a:fa:6b:35:
c1:e5:4e:10:98:7e:0b:92:40:99:ed:39:6c:f5:bd:2f:f8:59:
dc:c5:0e:c3:c0:b8:fb:ff:4b:9c:94:19:81:dd:47:d5:44:33:
0a:39:6d:7a:98:90:65:59:6b:0b:35:06:54:90:35:09:b7:31:
e1:c0:fa:95:26:1d:98:a0:1a:77:00:09:b9:5f:e7:ee:a4:e8:
62:3d:b1:97:10:ed:61:13:8c:05:be:83:2c:87:92:46:19:25:
0e:dc:88:9d:0d:c0:b2:00:3f:1a:78:88:44:7e:13:73:00:86:
19:93:89:89:8c:3d:5a:6a:00:b1:7d:f0:f6:43:13:61:5d:d1:
33:19:26:d7:08:01:1d:8c:08:a0:a7:6e:bb:da:08:3d:90:d6:
92:1e:85:9c:2a:2f:53:1c:6d:be:14:29:a1:e0:fd:80:89:f1:
b9:e8:ea:d4:2e:4a:42:ef:f8:3c:a5:8c:d6:b2:8c:f5:29:7f:
5e:90:47:30:7b:2b:61:51:f0:85:74:a1:80:1d:41:5c:96:a3:
fd:6e:10:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:53 2024 by rpki-client on console-ams.rpki-client.org