Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD5724D63B2F11EEA88A35504AD9E6FC.roa
File: FD5724D63B2F11EEA88A35504AD9E6FC.roa (raw, json)
Hash identifier: u9M2CkX0hNCTfp6VJEfsBhaDjiZVaC5xC9FDY73lAoU=
Subject key identifier: 2A:A7:26:9B:03:3D:94:09:D2:AA:C7:44:6F:13:D2:FE:4D:2D:FF:4C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 362D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD5724D63B2F11EEA88A35504AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:52:59 +0000
ROA not before: Tue 15 Aug 2023 05:52:56 +0000
ROA not after: Mon 27 May 2024 05:52:56 +0000
asID: 140627
IP address blocks: 156.247.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13869 (0x362d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:52:56 2023 GMT
Not After : May 27 05:52:56 2024 GMT
Subject: CN=64db12bb-679b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:fd:6c:a4:d8:ae:f8:43:68:05:3a:39:11:
94:90:e0:12:d7:34:81:f6:a3:a1:7f:c4:54:23:55:
11:e3:56:95:0c:96:f0:8c:b5:05:b9:b0:50:13:f2:
0e:e2:7b:7c:a6:40:64:42:1e:9b:f4:c9:a6:e7:0b:
85:f9:bb:7f:41:57:cf:7e:cb:fe:56:04:f4:f7:0d:
81:9a:2f:f9:19:06:7b:00:2d:41:6a:ce:e8:fb:b2:
35:4d:25:d6:56:13:ac:60:c0:d4:6d:e2:04:44:24:
80:2f:54:88:3e:1e:d9:ff:6f:94:8e:8c:15:39:47:
51:d9:bc:96:8b:68:2a:b1:84:f1:a2:79:88:01:78:
9b:42:85:96:b5:b7:09:06:52:a4:f5:94:7c:ed:8e:
41:05:33:89:40:50:46:f6:71:0b:08:ae:3e:aa:82:
6a:f7:5a:b2:29:33:df:2d:d4:fa:14:47:32:6a:3e:
be:37:35:93:4f:0a:2e:e7:bd:68:b3:a1:37:66:3c:
e0:24:24:bf:6c:31:5a:8d:28:2a:5e:d0:a9:d9:a5:
6d:8a:f7:dc:69:91:e7:60:5b:8c:e6:35:b2:72:e7:
13:6a:5a:2d:db:27:35:95:33:d8:c3:e2:61:c3:27:
6d:61:85:95:d9:17:f6:a3:2c:ad:7d:2c:78:9a:13:
e5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A7:26:9B:03:3D:94:09:D2:AA:C7:44:6F:13:D2:FE:4D:2D:FF:4C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD5724D63B2F11EEA88A35504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.181.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:e5:06:d8:af:e8:ac:73:df:bf:a3:ab:7c:3c:c1:51:b6:92:
13:05:ef:aa:bf:6c:28:9a:b5:85:c0:1a:0a:8f:af:05:f0:4c:
41:a8:49:de:a7:ea:32:9c:13:18:91:64:e8:be:48:32:22:bc:
77:5a:8e:0f:37:e9:19:7f:07:21:c1:b5:3a:12:71:2f:ec:1e:
61:74:6e:5a:27:44:47:96:72:b3:8f:2c:38:f3:c9:8f:8c:01:
49:e0:55:e2:87:31:2b:92:6c:e1:cc:1e:7e:ac:81:56:f9:51:
8c:ff:72:58:38:a8:8e:da:c6:33:6a:f5:9f:98:be:b5:09:52:
f4:f9:45:63:8c:38:a8:14:aa:cd:d5:48:71:b3:75:8d:2e:9d:
04:0e:9a:7e:4b:a8:46:ad:fe:e3:37:a8:ec:10:bb:20:8f:24:
4f:3f:8d:26:df:b1:92:f9:b2:78:16:37:8f:45:d5:9a:73:0b:
3e:30:55:9a:ff:75:c9:a8:b1:57:0d:b8:43:65:e6:7a:ca:68:
ca:85:74:ec:89:03:31:a7:8f:ca:b6:d8:91:6e:1a:8d:fc:e6:
72:51:b9:77:93:fc:07:b5:27:7e:9a:69:40:3b:7f:32:92:89:
2c:49:b8:88:1c:5a:0d:3b:85:82:05:60:59:f7:7b:28:7f:62:
e2:26:0c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:05:01 2024 by rpki-client on console-ams.rpki-client.org