Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0179CC78047D11EF8116EA6D017001B1.roa
File: 0179CC78047D11EF8116EA6D017001B1.roa (raw, json)
Hash identifier: wMEe6m0kAhEA8dcq1C+ab9fh0dJMVFEhSgPekoVhnzE=
Subject key identifier: 6B:B5:3C:B4:CC:7E:0A:45:7E:90:9B:46:40:1D:B4:34:10:ED:E8:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8671
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0179CC78047D11EF8116EA6D017001B1.roa
Signing time: Sat 27 Apr 2024 10:00:41 +0000
ROA not before: Sat 27 Apr 2024 10:00:38 +0000
ROA not after: Wed 29 May 2024 10:00:38 +0000
asID: 55410
IP address blocks: 156.236.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:16:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34417 (0x8671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 27 10:00:38 2024 GMT
Not After : May 29 10:00:38 2024 GMT
Subject: CN=662cccc9-1b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7c:16:24:96:e1:f8:c8:7b:d8:fa:81:09:63:
90:ff:af:ee:ab:2b:b4:9a:18:6a:a7:d4:ca:79:71:
80:4a:a3:fd:bc:02:2b:f6:7f:77:33:ef:cc:cd:ea:
44:a5:61:6a:e9:df:ca:da:f2:1e:6b:53:0f:45:e5:
a7:bc:b9:1e:ed:34:8f:ea:7b:5a:92:15:83:85:51:
87:89:f7:a0:89:35:f4:0f:d2:31:5b:4d:45:03:79:
7f:f5:38:35:70:1e:93:26:48:68:b1:1d:0c:4c:8b:
dc:5a:b5:8c:76:a4:4e:55:1f:04:c9:75:cf:a3:d8:
4f:d4:01:56:a3:f4:97:a8:a5:ce:90:69:ca:9d:22:
d4:96:0d:99:36:fa:19:ed:26:6e:27:b8:3b:bf:52:
86:3d:31:ce:90:d8:ec:30:c6:6b:6e:b7:ae:04:ea:
64:cb:8d:22:c4:6b:1a:69:f5:15:be:d0:3a:69:14:
80:3b:77:e9:20:fd:6a:61:92:29:2f:e0:d9:21:99:
ea:36:52:cb:e5:03:d7:3b:3d:b9:60:39:53:c6:7b:
cf:69:35:9f:4d:04:6a:e3:16:e7:17:43:2e:7a:f2:
ad:06:e2:06:bf:dd:4e:48:d1:81:b6:1c:c3:ce:98:
b2:a8:a6:11:4c:54:1f:f4:db:a7:97:67:b5:3a:da:
5f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B5:3C:B4:CC:7E:0A:45:7E:90:9B:46:40:1D:B4:34:10:ED:E8:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0179CC78047D11EF8116EA6D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.18.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:df:56:f4:9b:72:61:28:c6:ae:f8:5c:12:b2:7b:64:8f:e3:
83:6c:25:72:e9:b4:50:75:5f:23:e7:cc:48:da:5a:ca:08:63:
5b:50:87:72:19:47:47:ca:82:b1:97:7f:4e:7b:17:a9:be:c1:
44:bc:8d:0a:f2:4d:77:f2:1d:32:fc:7d:20:24:a8:32:77:ef:
01:d2:0d:ad:4a:f3:ca:23:21:25:04:4f:70:55:ab:73:05:d3:
c3:9f:6c:77:57:30:7a:3c:81:90:5b:88:e9:5d:25:2b:2b:b6:
97:96:5a:78:4b:1b:b7:51:5e:28:89:ed:08:0f:1d:cc:92:00:
22:1a:1b:f0:4c:08:5e:84:1a:3f:e6:ed:17:5b:a2:24:de:c0:
56:f8:78:d8:a0:c8:6e:1f:cc:36:cd:db:d5:de:0e:9a:da:38:
45:ab:ec:e1:35:92:60:43:10:88:95:64:6a:cb:f5:fb:9f:25:
a5:d7:14:5f:6d:8a:44:dd:9d:85:b4:71:87:d3:85:39:37:af:
b2:31:cc:f5:0c:ca:8b:59:ed:21:9f:d6:71:01:85:61:7d:04:
e0:af:23:51:76:36:ee:54:df:8e:31:fa:ba:f7:9d:89:28:cf:
dd:49:3b:52:af:a8:55:50:af:21:ac:14:fc:05:ec:0c:21:2f:
f7:d9:3c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 14:39:23 2024 by rpki-client on console-fra.rpki-client.org