Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD9AA4D084FA11EE950D06614AD9E6FC.roa
File: FD9AA4D084FA11EE950D06614AD9E6FC.roa (raw, json)
Hash identifier: agQ62jjaSR2QF+dW81DEmXDKhGZFYmrpW1b+YtQDm4I=
Subject key identifier: A6:75:09:68:8A:A9:E8:52:A2:26:86:1B:2E:B1:69:4B:0E:DD:F4:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 497F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD9AA4D084FA11EE950D06614AD9E6FC.roa
Signing time: Fri 17 Nov 2023 03:40:03 +0000
ROA not before: Fri 17 Nov 2023 03:39:59 +0000
ROA not after: Mon 30 Sep 2024 03:39:59 +0000
asID: 133448
IP address blocks: 156.225.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18815 (0x497f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 03:39:59 2023 GMT
Not After : Sep 30 03:39:59 2024 GMT
Subject: CN=6556e093-2004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:29:0b:5c:32:1f:01:79:d5:9d:91:18:32:a2:
1f:7d:43:6c:67:7c:92:dd:06:42:70:cf:d9:35:ec:
5b:65:4f:8d:6f:06:fb:13:3c:c1:8f:4f:9c:bf:67:
f9:7e:c2:49:6e:50:4f:6a:eb:78:a3:d0:a3:5b:05:
00:32:8d:d5:cd:54:a0:39:fd:14:38:7e:1f:1b:ad:
85:2e:36:dc:e4:1a:20:ee:c1:63:e5:b2:0b:ea:23:
cb:af:4b:f6:cb:20:36:c2:38:7f:9c:eb:4d:8f:48:
ae:22:b8:23:3a:e5:f2:0c:37:e5:f0:f9:fc:48:7c:
a9:c0:ca:f7:c6:e2:15:7f:c9:db:56:fa:1c:78:1e:
89:58:c1:00:bc:95:9c:ad:e1:e8:eb:3f:e4:f8:31:
13:40:e3:6e:b8:f3:1a:30:5c:32:ac:2e:c7:55:53:
12:99:04:f5:45:fb:7c:d8:c3:50:42:ad:78:27:c5:
3f:88:ad:f2:c1:25:26:dc:40:ba:d6:d7:7a:93:0a:
e0:fc:19:5d:37:05:fc:20:ea:42:e6:d3:fc:2d:6c:
34:4a:80:47:5d:5e:13:a7:fa:1c:11:ac:4e:b4:9f:
f6:5d:1d:63:ce:5a:9c:c0:0b:ab:0a:ac:c0:20:8c:
d5:60:ad:10:8d:ce:4e:72:8b:18:f3:fb:dc:a8:d2:
9f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:75:09:68:8A:A9:E8:52:A2:26:86:1B:2E:B1:69:4B:0E:DD:F4:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD9AA4D084FA11EE950D06614AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.2.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:b8:30:c7:d4:0b:5e:48:44:94:99:0f:c2:ed:4b:51:d4:55:
89:b0:17:d5:b5:95:f6:08:37:41:bc:29:30:38:a9:a7:d4:7a:
a5:f6:66:00:cd:4b:54:7f:93:6f:42:63:d5:d0:f9:12:e3:64:
61:b2:4e:11:af:32:96:f5:3b:3f:66:b7:b4:03:f0:8f:42:10:
6e:86:e0:97:d3:9f:3e:c6:2f:4c:84:52:2b:ac:df:e7:4a:a6:
c0:f4:73:15:8d:a1:db:21:3a:a8:51:25:8d:15:7b:b8:86:f3:
a7:97:ce:50:48:d5:f3:ed:d5:96:13:2f:b2:45:61:d8:09:c6:
2f:7e:53:18:a2:67:34:0f:0c:00:50:df:76:00:64:e8:37:d2:
47:54:43:bd:89:45:75:9c:b2:80:c2:29:2d:f9:fc:fc:ee:7c:
c5:2b:da:5e:c4:9a:e1:52:fe:7b:07:d2:45:33:93:6e:9d:2a:
62:10:cb:c0:62:94:8c:eb:f9:a3:5c:67:2a:f7:a9:3d:3b:a9:
b8:a5:3c:3c:b7:fe:b0:e9:05:05:d2:f1:8d:a7:6b:f7:6e:97:
3c:25:a6:78:5d:35:b6:93:c7:cc:5d:2e:be:13:af:50:77:1c:
51:85:45:27:6c:b5:33:ab:52:68:a0:7b:51:61:50:e7:76:1a:
22:01:8c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:19 2024 by rpki-client on console-fra.rpki-client.org