Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6154F93E286211EF9F4AD5E77CDC24C2.roa
File: 6154F93E286211EF9F4AD5E77CDC24C2.roa (raw, json)
Hash identifier: 6HG7lW/tiI0Xuiub9Cc1SGGn5IZbkO9G17rbbawtfDg=
Subject key identifier: 5B:44:1F:2D:A2:46:CB:11:A9:B8:18:79:F4:D4:79:EB:25:99:12:CA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 90BF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6154F93E286211EF9F4AD5E77CDC24C2.roa
Signing time: Wed 12 Jun 2024 02:20:48 +0000
ROA not before: Wed 12 Jun 2024 02:20:44 +0000
ROA not after: Sun 15 Dec 2024 02:20:44 +0000
asID: 272018
IP address blocks: 156.235.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 24 Jun 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37055 (0x90bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 02:20:44 2024 GMT
Not After : Dec 15 02:20:44 2024 GMT
Subject: CN=66690600-3a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:50:5a:48:85:3b:84:e9:ff:56:80:8b:92:64:
c6:c9:e6:d1:b0:f1:c0:16:fc:61:cc:cc:f3:b5:41:
d4:ec:5a:65:54:ff:9d:ac:ea:b5:f0:97:02:1d:c9:
92:ef:6f:75:6a:2b:68:7b:26:29:8e:51:13:7f:ce:
42:f0:53:ff:e0:99:7a:80:d2:14:26:f6:da:ee:0f:
5e:60:74:66:3d:dd:69:1e:0c:df:89:36:c4:c9:d5:
b4:cc:90:91:c0:0a:10:23:5e:a5:9e:14:00:d2:54:
2a:db:31:1b:f4:33:e0:07:45:5e:39:90:46:2f:49:
84:9b:d0:82:0b:53:6f:87:cb:76:3d:ad:08:47:48:
1a:79:de:0a:d3:0b:66:14:a1:23:dd:4f:83:74:9b:
17:37:36:56:ac:46:18:ce:3c:32:54:6d:0a:92:5a:
27:1a:6d:ab:93:5d:79:7e:4c:8b:5e:c7:e4:ff:88:
65:3a:25:29:d3:e1:2a:6c:88:3a:9e:9f:5f:dc:55:
72:47:41:87:a0:de:97:8b:79:62:24:68:1a:31:df:
f1:b0:18:26:5b:1b:e7:3e:5e:1a:83:65:ec:38:ab:
2b:66:7b:5a:98:79:29:85:46:71:8c:6f:a3:ad:13:
65:12:32:5f:9a:f8:e5:c6:fc:33:32:d5:11:d6:40:
60:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:44:1F:2D:A2:46:CB:11:A9:B8:18:79:F4:D4:79:EB:25:99:12:CA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6154F93E286211EF9F4AD5E77CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.91.0/24
Signature Algorithm: sha256WithRSAEncryption
43:dc:69:98:e0:0e:e7:7e:53:26:1a:1c:74:cf:6b:af:0a:fe:
ee:9a:52:bf:87:5e:a2:ed:f4:88:92:66:86:70:32:08:9f:97:
64:85:ed:26:b2:a0:19:fe:2c:26:d9:93:c4:30:30:49:85:c1:
ad:ab:da:10:0d:a5:8a:3e:d4:7f:be:d9:dd:7b:0a:d8:b5:d8:
2e:9b:c3:86:41:c0:b6:de:46:2d:5c:72:8f:45:65:33:ab:33:
fd:9f:86:f9:c8:25:34:64:b4:b5:dc:18:3b:f1:09:8c:63:95:
64:de:2d:fe:83:a9:4d:47:a9:49:23:15:8e:24:37:ee:98:28:
28:4a:a6:9f:85:8c:65:4b:b4:b8:f7:84:86:44:8d:dd:de:94:
8e:fd:ff:f5:8e:a9:a4:58:30:b7:18:84:e0:fd:18:f1:da:66:
8c:1a:3d:77:c6:d3:07:a4:73:e6:f8:44:61:a0:99:61:c3:e4:
86:64:af:86:42:bb:28:ef:e2:82:d9:81:30:0c:c3:cd:18:2a:
b0:c9:47:ad:80:b7:dc:76:3b:8f:34:0b:7d:13:d7:43:92:f4:
d4:3e:94:8d:59:96:93:54:11:70:ab:dd:33:c1:19:74:82:e0:
3f:c7:af:5e:20:6d:33:7d:a4:61:dd:4f:5a:9e:eb:e7:38:68:
57:c1:b8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:14:19 2024 by rpki-client on console-ams.rpki-client.org