Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A2808628E46311EEBA78408F775412E6.roa
File: A2808628E46311EEBA78408F775412E6.roa (raw, json)
Hash identifier: Q9xmS/89kSHVL3KGHDm+38bzokyLCR6sIsCpVmnQYak=
Subject key identifier: C1:49:2B:06:1F:81:C1:8E:84:D8:1F:9F:DB:84:EF:F4:21:37:30:EE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7E98
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A2808628E46311EEBA78408F775412E6.roa
Signing time: Sun 17 Mar 2024 13:38:27 +0000
ROA not before: Sun 17 Mar 2024 13:38:24 +0000
ROA not after: Mon 22 Apr 2024 13:38:24 +0000
asID: 23470
IP address blocks: 156.252.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 13:38:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32408 (0x7e98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 17 13:38:24 2024 GMT
Not After : Apr 22 13:38:24 2024 GMT
Subject: CN=65f6f253-05d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9e:fc:b9:89:26:55:d3:02:55:11:fc:3b:fe:
48:a4:b3:ec:ad:38:76:cb:e8:3e:8b:c3:7e:4f:43:
3c:54:52:a1:d8:82:68:6e:67:a8:a0:ae:16:29:f6:
cf:69:21:56:fe:ad:54:63:a1:3a:ab:fc:97:24:ba:
ae:7c:a6:ed:9a:6e:9f:15:11:b1:b0:94:7f:23:4e:
c0:01:4b:47:81:a5:26:ca:99:8c:2b:7a:f5:37:19:
66:ef:a8:07:45:0d:5e:fb:3d:2b:07:a7:b7:fb:66:
96:b0:0f:a9:29:9d:ba:54:ba:cc:d0:0b:37:57:08:
f2:77:a0:b5:94:a4:61:80:3b:b3:7e:0b:8d:b4:5e:
7b:06:59:95:77:d1:ff:97:d6:09:b3:72:2c:cd:66:
84:41:56:4a:14:f4:fd:d7:1c:0a:47:ea:2e:ba:eb:
d2:06:a3:7a:f8:b4:bd:40:c4:5b:e3:f9:7d:6c:1f:
db:c9:d1:d5:75:b7:80:fd:b8:89:27:d4:3c:a2:63:
0d:33:86:3b:23:ae:49:1d:95:d2:4e:fc:fd:04:aa:
32:7f:36:a8:9d:87:be:92:0d:1e:38:32:b6:b6:1e:
05:8f:8b:c0:8b:16:b4:d3:cf:81:a5:e4:bc:bb:f3:
10:b5:95:f4:4d:26:69:9e:1e:9a:14:75:f2:0c:38:
e9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:49:2B:06:1F:81:C1:8E:84:D8:1F:9F:DB:84:EF:F4:21:37:30:EE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A2808628E46311EEBA78408F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.22.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d2:de:3b:f2:09:ab:cc:83:68:b1:5e:17:a8:ba:42:49:99:
78:e1:cc:1f:fd:65:54:27:91:19:fb:88:b2:c8:1a:a8:c2:8d:
49:73:c6:b4:70:ae:87:f9:83:3a:e2:06:33:e4:e1:69:b0:39:
ce:d3:7e:b8:6a:98:08:b3:e0:70:c9:1b:2e:3c:ec:74:b7:04:
f0:75:02:e1:b2:32:13:48:23:f1:de:61:f0:43:88:4d:98:48:
bf:42:39:cb:57:af:4b:de:29:b8:fe:74:56:6e:81:a8:4f:45:
ed:b1:e8:fa:3d:84:f2:34:51:8b:83:44:fe:e1:ef:8f:7a:a5:
16:7e:ca:4f:9b:00:b0:20:f9:13:db:7a:b0:c0:bb:79:1b:27:
87:79:51:3c:43:2c:d8:aa:05:32:ed:87:fd:bb:d1:2b:fc:2d:
aa:0d:0d:9d:9c:48:ee:39:9a:a6:7e:e7:6f:3a:7f:76:63:58:
cc:ca:0a:e8:35:58:47:85:60:38:89:76:4b:ec:69:ee:7b:e5:
8f:37:e8:7a:cf:a5:68:36:0f:65:54:c0:01:40:6b:2d:ed:df:
1b:6f:b8:41:36:a5:90:19:51:6f:c3:14:cb:a3:5e:ab:7c:d1:
09:d7:46:9d:fe:04:05:9b:90:30:95:50:31:b5:8f:f3:86:c5:
89:50:cd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:34 2024 by rpki-client on console-ams.rpki-client.org