Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0FB62DE3B2E11EE8602424D4AD9E6FC.roa
File: F0FB62DE3B2E11EE8602424D4AD9E6FC.roa (raw, json)
Hash identifier: xPhZ4/rUdZJj24hvTd3G3sKWPgIWrAl9wgDGmYoVyTQ=
Subject key identifier: 04:2A:65:C7:27:DB:77:C8:5C:8A:FB:78:12:29:77:BD:5F:E4:09:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 361D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0FB62DE3B2E11EE8602424D4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:45:29 +0000
ROA not before: Tue 15 Aug 2023 05:45:26 +0000
ROA not after: Mon 27 May 2024 05:45:26 +0000
asID: 140627
IP address blocks: 156.247.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13853 (0x361d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:45:26 2023 GMT
Not After : May 27 05:45:26 2024 GMT
Subject: CN=64db10f9-5703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ec:2f:43:23:43:58:b8:7f:89:e8:c4:45:9d:
a1:e6:50:c7:85:8f:a4:7f:a8:09:a3:cb:65:84:06:
01:ae:8b:46:dc:48:8f:74:6f:f7:4b:74:ac:a2:84:
b3:67:84:9e:31:22:d9:b6:28:40:9e:17:22:ba:a1:
f6:8a:b7:52:9e:7e:84:ad:2e:6a:84:94:39:fa:aa:
c5:a4:ec:cf:65:86:1e:ca:e8:59:32:6a:f3:68:00:
ca:66:92:39:6b:43:16:53:ab:d4:a3:73:fc:84:7b:
4e:f3:b4:58:82:6a:60:70:2b:1b:4a:c9:31:be:5f:
10:63:d3:fe:da:d2:dc:30:41:f8:1b:d7:d8:e9:84:
0f:9c:ac:5a:6e:7d:ec:25:f6:2b:0f:c5:28:71:6a:
c1:39:db:82:54:44:25:ed:14:d5:b9:51:14:82:db:
74:70:51:98:c2:20:72:24:cd:f6:90:07:fb:ea:55:
ba:50:15:9a:b0:b0:a9:db:b0:66:d1:b2:51:5e:28:
0c:ab:73:bd:de:2a:24:a2:00:8f:a8:8e:45:2e:21:
f9:69:42:c9:e7:66:29:88:de:0e:4c:c6:ed:aa:a9:
92:15:cf:c8:6a:f4:61:62:36:47:fb:fa:75:27:b1:
d0:60:fb:f4:71:dc:52:1a:e1:8d:91:91:ff:b0:77:
81:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2A:65:C7:27:DB:77:C8:5C:8A:FB:78:12:29:77:BD:5F:E4:09:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0FB62DE3B2E11EE8602424D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.173.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a9:a0:15:b8:fe:b3:ea:23:6c:06:d3:cb:9a:c9:5c:97:df:
c1:69:af:90:74:21:2d:04:9e:ac:78:3b:73:09:b0:b8:e1:36:
4d:52:58:b4:ed:d2:9b:2f:e4:ba:bd:2a:cb:82:20:09:91:35:
85:93:18:1e:18:75:60:6f:89:d8:ef:dc:d3:6a:8b:23:b9:c2:
1b:d9:ee:6f:3b:c5:4d:fd:43:82:09:46:c7:aa:0a:3e:2b:38:
ff:ad:52:f2:03:c8:75:d9:9d:70:95:d1:0e:7f:0e:e4:75:93:
4d:18:62:7b:d4:37:9c:6d:2a:db:46:a1:0d:c8:31:b5:09:be:
0d:5f:23:55:54:4e:eb:53:6b:85:4f:89:19:2f:89:ab:93:38:
b4:8c:f5:fb:ef:ca:36:0d:8d:89:bf:d0:71:1b:fb:06:ef:32:
19:c1:96:51:c1:5d:68:86:a6:8b:bd:39:74:6b:ec:4f:fa:d2:
6b:63:c2:03:24:7b:46:2e:7d:9c:f1:50:5a:b3:72:bb:54:90:
e1:32:00:ae:fb:29:fe:97:cc:d0:a0:97:0c:87:69:cc:89:f3:
4f:c4:4a:bc:35:a5:7a:02:f3:fb:9f:60:52:95:91:62:76:e2:
62:2f:4b:1a:53:14:5a:31:fd:2c:b0:2e:21:e2:eb:ad:0c:8a:
9b:ce:ae:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org