Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71944DD4CCBB11EEA906EE80775412E6.roa
File: 71944DD4CCBB11EEA906EE80775412E6.roa (raw, json)
Hash identifier: EQwYPWjb/1xBvrJWAGLXS7dSbwvLjlhXCaDwYMzIMLE=
Subject key identifier: AA:D5:F0:4F:42:E4:9A:4F:6E:75:D6:D4:7C:CD:A4:14:D5:88:08:AF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7123
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71944DD4CCBB11EEA906EE80775412E6.roa
Signing time: Fri 16 Feb 2024 11:06:33 +0000
ROA not before: Fri 16 Feb 2024 11:06:30 +0000
ROA not after: Fri 26 Apr 2024 11:06:30 +0000
asID: 9009
IP address blocks: 156.246.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:06:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28963 (0x7123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 16 11:06:30 2024 GMT
Not After : Apr 26 11:06:30 2024 GMT
Subject: CN=65cf41b9-9534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:54:a5:0f:54:c5:0d:42:25:9c:fe:37:3e:42:
17:61:ca:2c:8c:db:b6:c2:60:0a:76:5a:bc:12:60:
9d:74:f0:02:9d:b3:29:9f:24:83:a1:84:6c:58:a1:
7c:77:fd:6e:e3:ec:11:0d:37:d3:fb:96:ff:49:56:
6a:fb:6f:5a:fb:24:c8:9a:47:6c:dd:20:21:0a:8a:
d6:2c:c0:df:71:5b:bc:84:c2:d6:0c:49:50:a6:7e:
c4:b8:12:8e:ca:51:c5:e2:f4:94:58:be:1d:c2:76:
2c:07:8e:4b:05:07:c9:dc:46:78:88:f1:96:9b:a2:
cc:1b:34:9e:7a:8a:6f:8c:40:72:7c:1d:ca:01:b8:
6a:4e:37:30:90:ee:e7:f3:9a:45:83:36:0f:e7:c5:
e8:c4:18:31:3d:82:70:23:77:f5:95:32:02:0b:bb:
47:df:14:1b:00:c6:65:16:4e:b5:4b:44:68:1c:d4:
89:4d:63:48:1b:00:ea:34:4a:5d:91:88:51:10:22:
12:ba:1c:a8:a2:51:5f:1a:ea:71:31:ad:b7:0a:e5:
a0:71:f0:bb:33:ab:10:83:75:aa:a9:4f:34:76:ba:
5f:ce:b4:ac:96:b7:bb:53:bf:56:47:ae:55:4e:70:
58:90:d0:28:a5:b0:d2:af:a0:1b:9e:8d:29:a7:5b:
51:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D5:F0:4F:42:E4:9A:4F:6E:75:D6:D4:7C:CD:A4:14:D5:88:08:AF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71944DD4CCBB11EEA906EE80775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.50.0/24
Signature Algorithm: sha256WithRSAEncryption
63:73:46:50:8e:6e:54:52:70:44:0e:8d:9c:3a:6f:f4:22:1a:
76:6a:fb:e3:6b:d3:af:19:3f:d9:ff:6b:45:8c:84:14:e9:9a:
10:6b:2b:b9:22:be:82:b7:c2:34:1c:a9:30:c2:de:5d:41:60:
6e:d9:d9:b2:8d:dd:d8:ee:f6:d7:75:9e:9b:f4:c1:61:14:47:
74:ef:56:87:56:0a:a2:7c:08:08:f2:b4:2c:66:38:42:12:32:
e9:28:cd:e0:19:79:6b:3c:6b:e6:d0:34:26:7f:9b:47:5f:7b:
d9:71:9d:2d:ca:89:c2:31:e7:f1:fc:c2:a6:b2:d5:0a:32:7f:
b0:dd:a8:24:cb:8f:9d:24:74:05:2e:43:d7:ca:11:93:98:c8:
49:9e:9c:bf:9c:ce:91:83:69:a0:1a:30:5d:60:65:94:23:c4:
67:26:11:68:a2:ee:2d:70:97:7c:6e:10:3c:36:ec:51:09:7c:
2a:79:90:25:3f:e8:dc:e2:72:18:52:af:53:a0:e4:84:ea:4b:
8d:2a:c8:70:c8:00:ef:ab:1f:36:0d:e9:ba:04:7b:92:af:9e:
90:6e:18:c6:db:39:8e:1e:3c:47:4b:fb:72:da:1c:b9:b5:51:
ef:3d:2b:04:fd:5f:9b:8e:d8:e1:01:b6:07:d4:79:88:10:1e:
aa:c1:bd:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:58 2024 by rpki-client on console-ams.rpki-client.org