Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA0ADA6684F411EEA6EDB04B4AD9E6FC.roa
File: FA0ADA6684F411EEA6EDB04B4AD9E6FC.roa (raw, json)
Hash identifier: ZjUSA7iKnOhJoFNRUo8KO63drL2qx11ZP5fFToo5Mas=
Subject key identifier: EF:63:54:74:28:29:7C:9A:DF:FB:61:62:80:8A:5C:E6:23:63:56:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4965
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA0ADA6684F411EEA6EDB04B4AD9E6FC.roa
Signing time: Fri 17 Nov 2023 02:57:00 +0000
ROA not before: Fri 17 Nov 2023 02:56:56 +0000
ROA not after: Tue 12 Nov 2024 02:56:56 +0000
asID: 397630
IP address blocks: 156.225.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18789 (0x4965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 02:56:56 2023 GMT
Not After : Nov 12 02:56:56 2024 GMT
Subject: CN=6556d67c-8660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d4:74:1b:f7:83:30:4b:7b:a7:bb:48:da:a3:
12:db:66:be:23:32:71:6c:e5:55:1f:66:44:b3:47:
59:28:1d:e4:2f:84:a3:6a:41:8d:10:4f:7b:96:b1:
59:70:b5:a9:fb:d3:7d:e2:39:c0:23:b4:fb:45:b1:
78:81:3c:25:b7:83:ed:2f:e9:7a:36:ec:cf:30:0a:
28:93:7f:20:34:e9:22:c5:41:91:8f:d3:b4:f1:9c:
1f:84:ee:e6:d2:f1:91:4b:cb:1e:3c:1a:34:8e:44:
d7:d5:46:4c:1c:16:39:88:12:90:54:94:f6:0c:78:
ab:d3:a2:61:8b:7e:ce:ea:c7:05:66:ac:3e:c6:f6:
c4:a6:6d:14:af:8e:1e:16:26:d4:36:d6:21:3c:b4:
a5:0f:22:2c:6e:e5:1e:d1:92:da:06:2e:1a:50:fb:
30:36:c9:91:c5:07:8c:b4:c5:6a:e5:d0:0c:a1:6f:
f2:8b:cf:d9:85:d2:3b:49:4f:31:53:a6:fe:6d:aa:
7f:64:f9:a3:6a:54:2a:7a:a4:6a:c3:a1:e6:9a:26:
5c:f3:db:0e:32:24:5e:3f:28:c7:1b:50:ef:fe:2d:
0a:68:f5:f7:32:6e:0c:a1:01:21:21:e6:53:40:0e:
d9:74:27:67:6f:0d:a4:17:22:6d:4c:3e:e2:96:6a:
e0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:63:54:74:28:29:7C:9A:DF:FB:61:62:80:8A:5C:E6:23:63:56:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA0ADA6684F411EEA6EDB04B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.12.0/24
Signature Algorithm: sha256WithRSAEncryption
88:72:50:e9:20:66:8a:b9:3f:15:30:b1:86:82:0e:46:bd:31:
b0:c3:94:06:78:f0:6f:8e:ab:89:68:a3:95:9f:06:8d:5f:a0:
b5:e3:c4:70:7a:99:d2:e2:57:c7:ff:ec:a2:91:1d:5e:58:19:
3f:45:ae:60:c6:c4:1e:75:57:6d:f7:e6:71:26:4a:9c:c0:c4:
ce:05:aa:17:bb:b4:8b:6d:09:1d:b2:6b:7a:19:39:38:f4:79:
8d:cf:c6:8e:0f:0d:96:9d:9c:5e:64:a6:dc:10:65:d9:03:78:
cf:6f:22:7a:e7:b1:10:83:00:27:74:9b:08:f5:f7:42:93:ce:
6d:90:b6:a8:a0:03:70:60:a9:14:99:b2:b0:b5:05:5e:c9:d0:
c5:3d:61:2f:8c:4b:4b:41:d4:13:13:44:e8:9e:09:e8:8e:77:
58:b3:09:25:fb:b0:0f:ec:09:7e:50:d8:27:b5:56:84:a4:05:
54:a7:b6:3b:2c:da:5f:c2:c6:4f:4d:54:9a:be:03:c7:53:3a:
12:cf:b0:66:67:2f:c4:80:2f:e9:23:1b:4e:57:fe:13:69:c8:
0e:57:cc:0d:64:e1:38:20:7c:9c:c5:ec:57:98:19:00:3c:f7:
a2:46:43:44:d6:5f:a8:d7:0d:88:b3:87:1f:82:a7:c3:b4:27:
a5:c7:bc:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:20 2024 by rpki-client on console-fra.rpki-client.org