Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/46B62F68CCA411EE81ED485C775412E6.roa
File: 46B62F68CCA411EE81ED485C775412E6.roa (raw, json)
Hash identifier: 4olfHmk1Pv6f69GewnZo9/feU16uVQ/i/XhILr14eEY=
Subject key identifier: A3:0A:90:8C:1A:B5:FC:7C:2B:4D:D3:FD:17:F6:EB:CB:AE:2B:55:28
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 70F7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/46B62F68CCA411EE81ED485C775412E6.roa
Signing time: Fri 16 Feb 2024 08:20:43 +0000
ROA not before: Fri 16 Feb 2024 08:20:39 +0000
ROA not after: Fri 26 Apr 2024 08:20:39 +0000
asID: 9009
IP address blocks: 156.246.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 08:20:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28919 (0x70f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 16 08:20:39 2024 GMT
Not After : Apr 26 08:20:39 2024 GMT
Subject: CN=65cf1adb-9ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:be:49:7f:de:01:ba:c0:85:3b:03:1c:25:c6:
0a:e5:75:93:28:4c:6a:0c:eb:40:ba:7f:0b:5a:25:
d5:56:17:02:ba:27:96:2e:df:d4:9c:9f:49:10:95:
32:36:7e:97:7c:f2:c8:e4:4b:d2:d9:5b:b9:10:6e:
3d:c6:69:38:a6:9f:83:22:6e:d8:72:8d:6e:e4:41:
dd:7d:df:4a:15:e2:96:27:38:d1:d2:5f:ad:42:84:
c4:88:59:7c:b9:e7:36:98:d6:58:f7:4f:02:8c:86:
82:74:f5:31:0f:da:5e:12:3e:5a:87:74:d7:37:05:
b5:16:f4:d6:60:e7:63:48:97:43:3f:b1:d6:d7:54:
3b:47:ab:c5:f6:9f:73:7d:24:f8:ca:97:da:f6:1d:
45:27:e4:be:21:f0:64:9b:8d:52:85:f4:92:69:ff:
4c:4f:b0:c9:b9:96:e7:f1:05:11:f4:10:6b:71:3f:
a4:08:d6:c0:fe:76:4e:10:eb:d4:9f:05:d1:38:b1:
89:d0:0e:24:df:71:c7:09:ea:b8:9a:0a:2a:e6:d4:
cd:7c:19:ea:40:88:c3:22:7a:e1:66:cb:6c:22:aa:
f7:a0:35:14:85:62:60:6e:e0:4c:6e:2e:4b:c1:ce:
75:94:e5:11:49:4d:07:ed:85:02:2d:ed:b0:d9:0b:
51:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:0A:90:8C:1A:B5:FC:7C:2B:4D:D3:FD:17:F6:EB:CB:AE:2B:55:28
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/46B62F68CCA411EE81ED485C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.45.0/24
Signature Algorithm: sha256WithRSAEncryption
16:28:b8:f4:ad:76:81:6e:76:57:b1:de:21:30:1b:b7:c6:85:
77:fe:bb:e9:65:56:03:52:dd:93:37:c1:76:d1:7c:a9:69:ec:
7e:1f:a7:a0:ba:b0:47:6b:5f:1c:1f:04:42:7b:b1:39:30:01:
79:27:5d:6d:12:52:83:87:0a:36:22:42:5e:59:33:87:c8:6d:
b2:51:1a:a3:ed:3f:69:19:8c:c4:06:64:98:78:9b:95:d8:29:
c7:8f:8a:9c:59:68:7b:e0:40:0e:bf:01:ee:1a:8f:3d:ad:8e:
3b:91:dc:ba:5c:d2:b2:80:06:f3:f4:b0:d1:47:1e:c6:37:1f:
70:76:8d:a6:53:20:01:6f:34:71:60:71:43:10:a2:95:cc:3c:
7f:89:83:82:47:18:95:14:35:a4:a8:d5:0b:b3:8f:6b:a2:09:
c2:5a:ab:07:31:ae:91:34:41:bc:8f:65:01:e3:9a:eb:ce:ed:
08:8d:c4:fe:27:5d:10:f1:ad:00:f1:15:77:e0:66:95:4b:79:
66:76:f2:d9:fa:86:38:e1:36:42:82:f2:14:3c:8b:c1:f7:bf:
5f:b2:12:a8:8b:e5:67:7d:20:f9:d7:2b:69:7a:f8:dc:e2:d3:
06:d0:a2:59:3c:fc:3b:87:1b:f5:a4:09:df:e2:2e:69:2f:47:
f5:95:d5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:43 2024 by rpki-client on console-fra.rpki-client.org