Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FBD05BF2FE9711EDA4963D4C4AD9E6FC.roa
File: FBD05BF2FE9711EDA4963D4C4AD9E6FC.roa (raw, json)
Hash identifier: x35g9J52H+voADieuyYz4axDSOMzWZ8UENYIi+pu2/k=
Subject key identifier: 1C:BB:E7:D7:ED:84:CC:C7:BA:B9:79:5A:1C:66:4F:58:89:75:A0:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2827
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FBD05BF2FE9711EDA4963D4C4AD9E6FC.roa
Signing time: Tue 30 May 2023 03:13:44 +0000
ROA not before: Tue 30 May 2023 03:13:40 +0000
ROA not after: Wed 15 May 2024 03:13:40 +0000
asID: 63888
IP address blocks: 156.255.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10279 (0x2827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 03:13:40 2023 GMT
Not After : May 15 03:13:40 2024 GMT
Subject: CN=647569e8-eb53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5d:b6:e4:88:18:8f:76:f8:37:7f:ae:e0:0c:
73:e8:48:a9:d9:95:38:e2:39:c0:4c:5d:09:ba:0d:
d3:68:92:72:74:e1:a8:0d:f9:f1:87:27:d1:8c:66:
72:b0:dc:7a:22:72:55:a5:5d:fd:f6:69:11:aa:45:
c7:32:81:77:4e:42:54:46:95:2e:95:88:8d:7c:ae:
c5:d1:c0:ed:4f:75:0b:c8:3d:c7:7f:e3:ae:18:ed:
56:17:84:6f:55:56:1b:2f:bd:7e:05:5a:a1:20:04:
81:4e:10:43:34:5c:fb:50:6c:57:0c:c3:ad:09:df:
a2:a3:94:87:90:b3:04:a9:bd:b5:1c:3b:35:f1:fa:
88:99:51:9e:88:13:62:64:32:1e:19:e3:6d:e8:4e:
af:95:a0:cf:30:d8:de:c2:d3:4b:1c:9f:9c:8f:a0:
94:e6:db:2d:dc:a6:4f:3a:52:09:d6:2a:a3:40:4c:
d1:fe:d0:ec:bc:79:26:5a:be:dd:6a:61:42:6c:7b:
ae:4b:a6:33:1b:e3:f8:8c:17:0b:26:6a:2d:98:55:
01:e4:a4:55:c2:90:b3:ef:d5:77:f0:1b:2a:1c:cb:
44:0b:3d:c4:bd:54:07:0a:9e:86:59:fe:71:31:cd:
8d:ec:51:1d:cf:eb:02:2c:29:8d:51:82:2f:cd:8b:
a2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:BB:E7:D7:ED:84:CC:C7:BA:B9:79:5A:1C:66:4F:58:89:75:A0:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FBD05BF2FE9711EDA4963D4C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.108.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:5a:0c:b6:f9:38:d1:ea:c0:be:b1:80:49:96:ed:08:a8:a5:
b9:41:d3:6c:65:64:e7:7f:cd:c8:ae:c4:81:0c:c5:18:30:eb:
a2:1f:89:bf:a5:67:8a:3c:83:02:84:a8:03:4a:e6:8a:f5:52:
e5:0e:9b:4e:90:83:59:81:5f:4e:2e:fd:63:ad:74:96:f3:00:
ac:06:12:de:93:c0:2b:40:78:94:8f:64:bf:68:fc:a9:0d:7d:
ee:89:a1:ec:1e:a9:41:fd:d0:a6:b1:a6:bd:d9:8a:a3:1a:fa:
2d:12:a0:6b:68:84:e7:44:ed:b6:b4:8b:be:93:e9:3e:1b:c3:
24:34:0b:45:85:8a:a3:4b:c8:a2:df:be:83:d4:04:4c:2f:d6:
7e:c7:7c:0b:e7:55:a0:fd:79:49:0a:80:35:53:6f:5d:b1:f7:
ba:45:1f:d7:7f:02:59:bd:ec:6a:78:e8:ca:36:1a:e8:f1:6d:
15:79:9d:94:e3:b8:b0:e9:1b:0c:c6:9f:a1:cd:63:00:f1:a6:
0c:b6:5a:93:48:0d:d9:a8:00:b2:06:25:1a:07:5d:43:ce:91:
b5:63:00:12:7e:c6:8e:6d:bb:23:b8:2c:d8:df:c6:d3:d4:9b:
da:06:61:ce:fb:84:10:d1:ff:ae:59:35:9b:21:95:11:c6:53:
47:76:f2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:53 2024 by rpki-client on console-ams.rpki-client.org