Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A47B189C05F311EFB52EBC6C017001B1.roa
File: A47B189C05F311EFB52EBC6C017001B1.roa (raw, json)
Hash identifier: 1nLbqgwIRvIi9p9iFzjug4NF1aFJjE0kyiHs8agUViw=
Subject key identifier: 10:C3:7E:03:C4:91:30:B7:07:F8:BC:D4:69:61:80:19:6A:92:93:90
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 869E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A47B189C05F311EFB52EBC6C017001B1.roa
Signing time: Mon 29 Apr 2024 06:42:27 +0000
ROA not before: Mon 29 Apr 2024 06:42:23 +0000
ROA not after: Tue 04 Jun 2024 06:42:23 +0000
asID: 142062
IP address blocks: 156.242.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34462 (0x869e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 06:42:23 2024 GMT
Not After : Jun 4 06:42:23 2024 GMT
Subject: CN=662f4153-8c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:7a:57:44:7e:c1:b3:92:84:c4:68:c3:df:
1c:55:c5:57:b3:e0:c2:f6:f2:6a:e4:fb:db:4e:2e:
c5:07:7a:c8:11:5f:ef:ac:e6:d2:c5:13:89:3b:71:
e4:e3:b1:ac:89:20:8e:8d:4f:0c:98:37:b6:03:3c:
f7:3d:ab:46:20:ed:64:4d:57:16:26:25:93:c8:d7:
9e:b8:01:6b:a1:6b:74:03:29:4f:c3:8a:f1:cc:1c:
66:8e:3a:c0:b3:31:04:d2:8e:10:1a:17:56:29:37:
74:f8:89:a8:80:63:29:36:18:e3:4e:f1:4c:6b:06:
e0:05:79:da:e4:85:24:08:76:da:5f:38:34:84:1d:
30:21:5d:13:32:a1:b5:e4:cd:26:6b:08:ad:15:cf:
42:18:1a:3b:e4:ec:8a:5c:0c:ec:a2:6c:82:a5:0e:
bc:c2:3a:4f:86:4e:9f:9b:31:81:ab:9e:33:62:4e:
e4:8f:76:34:e9:f9:30:c2:b7:08:64:98:74:50:d3:
0e:ae:72:5c:27:03:db:80:9b:9a:24:9a:40:79:a5:
d6:0e:82:e4:ad:8e:54:ee:7e:5a:fd:b4:f2:09:f3:
12:d2:5c:a9:e1:c8:d8:8f:48:8a:1d:5e:ac:fd:cb:
fc:ba:e5:40:b7:b4:53:8b:30:6e:45:ae:12:68:88:
47:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C3:7E:03:C4:91:30:B7:07:F8:BC:D4:69:61:80:19:6A:92:93:90
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A47B189C05F311EFB52EBC6C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.32.0/19
Signature Algorithm: sha256WithRSAEncryption
61:8d:10:8d:3e:3e:fb:52:17:bb:d2:da:b8:e3:5a:d2:1e:3d:
36:f5:08:88:63:2a:17:19:36:99:e4:c8:1e:f4:4c:04:3c:bc:
70:21:ba:b4:62:54:2f:84:72:b9:fe:fe:2c:5f:64:40:29:87:
b8:bf:d8:82:77:92:c6:65:37:52:79:7c:5a:92:25:6a:26:15:
29:44:e1:06:50:31:34:cf:c1:18:f7:76:7a:c8:05:4a:e7:f3:
55:ab:e0:1b:b4:b3:3d:8b:19:8c:c4:53:55:d0:96:1a:3b:23:
c5:9d:9b:9c:db:4e:49:83:b6:7b:c2:5b:fe:2c:05:ae:25:16:
a8:bb:fa:d3:74:08:a2:50:7b:08:f2:a1:37:cc:7c:0b:07:be:
0b:58:cc:1c:3e:11:c5:c7:67:fb:1a:5f:b3:cd:92:6e:68:8c:
1d:43:78:6c:5a:19:4c:3a:bc:a0:c6:48:44:37:7e:5a:d3:08:
ea:42:53:20:0a:55:0f:2d:41:b5:fb:05:43:99:41:2d:6b:3b:
fe:3a:87:87:d9:38:30:e8:91:a7:8f:d9:35:ab:b0:68:a1:16:
66:7b:57:7a:1d:c4:8d:b4:7d:b7:50:14:2f:a6:c6:e2:da:5e:
60:81:2b:b7:68:67:6f:71:fc:59:73:d1:a3:7c:d1:65:e7:ea:
5e:d9:68:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:44:53 2024 by rpki-client on console-ams.rpki-client.org