Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0471610C039211EF9805F801017001B1.roa
File: 0471610C039211EF9805F801017001B1.roa (raw, json)
Hash identifier: nOFho+bsO5F9EaEI2+iLfIgYPeP7GhASBUmiwZGK+ng=
Subject key identifier: 76:3F:A0:7A:E0:C4:D4:7A:05:89:72:6E:15:60:73:A2:CA:4D:17:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8623
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0471610C039211EF9805F801017001B1.roa
Signing time: Fri 26 Apr 2024 05:58:35 +0000
ROA not before: Fri 26 Apr 2024 05:58:31 +0000
ROA not after: Mon 27 May 2024 05:58:31 +0000
asID: 138415
IP address blocks: 156.226.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34339 (0x8623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 05:58:31 2024 GMT
Not After : May 27 05:58:31 2024 GMT
Subject: CN=662b428b-c0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:01:b0:61:a9:b4:ca:a2:b7:eb:c3:30:99:21:
0a:41:ca:ef:f0:80:a8:20:96:37:c1:55:69:9c:7f:
74:88:c6:ff:ee:0a:b3:32:ef:1e:00:1b:11:95:34:
07:d0:dc:5f:89:0e:42:95:4a:38:e0:7f:74:c8:bc:
72:f8:f7:7f:94:fd:d7:74:89:f5:70:7d:6b:95:25:
17:ec:f6:8d:62:99:05:6e:a3:03:23:b6:d1:2b:22:
41:a1:65:97:3f:77:06:71:ff:b2:9a:61:1c:c7:3f:
f1:ee:4a:3b:36:da:29:c1:da:3b:05:96:5f:3e:a8:
23:23:ab:2d:f0:96:c3:01:b3:37:5c:89:2a:c8:7b:
9e:9c:b0:35:f5:d4:44:a6:03:1b:4e:31:4b:2c:59:
cb:21:6f:ce:d6:c6:08:44:ba:81:d0:da:01:6e:04:
c1:a2:89:39:45:02:50:5d:ef:39:c1:81:05:c9:1f:
58:2e:e9:d0:bf:91:99:95:f8:d8:f3:9c:5b:17:af:
31:fd:9a:86:5a:c2:d9:6e:63:81:32:3f:bd:70:f9:
11:43:48:e7:94:22:4a:d8:98:c5:59:62:a5:e1:e2:
ae:3c:e4:1e:40:cb:b2:dc:db:d3:4b:ec:c0:7e:7a:
c9:54:29:d4:da:36:76:a0:79:a3:24:ab:c6:97:b5:
4c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3F:A0:7A:E0:C4:D4:7A:05:89:72:6E:15:60:73:A2:CA:4D:17:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0471610C039211EF9805F801017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.128.0/18
Signature Algorithm: sha256WithRSAEncryption
70:7f:e1:0c:5b:b6:fb:bd:e8:99:66:a7:9a:ee:21:59:fe:0a:
0b:7e:73:b7:83:ac:6c:16:ae:d0:a8:03:8a:a0:b0:6a:89:19:
47:fa:9d:2e:84:c7:29:56:c0:dd:50:23:6e:5b:df:48:2b:4e:
6a:6f:b0:2e:67:2c:c6:99:9e:94:ae:2b:cc:d7:f0:f4:37:f0:
5e:37:7d:f2:1a:3b:82:ce:9c:57:9b:bd:88:8e:31:f5:40:e4:
50:5d:01:fd:f7:bf:5d:76:9e:1e:18:77:81:c2:19:04:67:b9:
3e:40:e7:3d:f8:e2:20:cb:44:4f:92:4a:21:66:53:05:5c:57:
1e:75:8b:d3:e4:e8:76:77:a5:59:61:ef:69:39:4e:77:b6:4a:
50:c5:97:54:8a:8b:51:02:7b:d9:51:9a:f8:18:b4:f6:bf:64:
cf:77:20:f0:78:1e:24:d7:08:dc:a5:b6:b6:4d:bb:47:aa:e2:
23:d7:b7:57:5d:b1:76:c3:e4:3c:02:00:d2:e0:0a:2d:33:38:
0a:5d:27:0d:03:5b:9c:60:7c:87:2a:27:26:3a:0e:40:1d:59:
b8:c5:87:e1:52:f6:70:bc:00:e2:f8:4c:f2:1c:26:b2:1c:39:
35:70:72:c1:0f:b8:d3:cb:5f:a1:09:96:79:8e:32:68:47:e3:
55:55:b8:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:03:52 2024 by rpki-client on console-ams.rpki-client.org