Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A80EB37E039111EFA2D580FD007001B1.roa
File: A80EB37E039111EFA2D580FD007001B1.roa (raw, json)
Hash identifier: z1ZcqBmrSbUlLIf6/cT0uUXYmOYxTPH4LHVgVBnNxDY=
Subject key identifier: 63:34:DF:6D:B4:0F:E6:4A:2B:51:1D:25:4B:7C:30:06:87:EC:14:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 861F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A80EB37E039111EFA2D580FD007001B1.roa
Signing time: Fri 26 Apr 2024 05:56:00 +0000
ROA not before: Fri 26 Apr 2024 05:55:56 +0000
ROA not after: Sun 29 Dec 2024 05:55:56 +0000
asID: 138415
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34335 (0x861f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 05:55:56 2024 GMT
Not After : Dec 29 05:55:56 2024 GMT
Subject: CN=662b41f0-109b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0e:5b:9b:e2:a0:7b:65:8e:1b:73:51:d7:55:
d5:e3:c2:5c:4a:34:d5:7d:2a:90:9d:b7:f8:2f:c6:
5f:ef:91:f7:d9:2e:38:75:c6:8a:91:85:5a:a0:f0:
24:73:be:a6:28:30:28:ad:d0:a1:59:e6:80:1d:f6:
8b:89:03:6c:b9:61:d3:9a:fc:05:b4:32:d0:f6:01:
14:47:40:fa:f0:58:f9:1d:e2:a5:0e:12:bd:de:72:
cd:1b:ce:01:dd:d8:d3:b0:f9:a2:23:5e:20:33:82:
1c:ef:c3:84:09:75:dc:d9:1b:2e:a8:4b:42:15:3f:
d5:07:59:c7:9b:55:aa:5a:20:25:6b:23:52:8c:b0:
81:81:2e:2b:09:aa:3b:68:bd:6f:53:d5:6d:06:29:
ca:58:a5:1c:cc:a1:e2:07:43:6a:cb:2c:f9:6c:6b:
d3:9f:ff:7f:54:e2:3b:16:48:82:91:53:57:63:af:
85:b8:2a:dd:54:11:0a:e1:cd:15:3a:8e:60:52:53:
c9:a0:04:ae:a7:3a:09:c3:42:35:25:28:64:b6:c2:
27:f0:3b:1d:32:d2:dc:0d:e3:5b:e6:aa:e8:fd:42:
a5:82:11:3b:13:00:47:d1:fd:3d:ea:71:f6:46:e5:
12:54:cc:52:ce:90:a6:77:89:d9:74:80:c0:74:6c:
dc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:34:DF:6D:B4:0F:E6:4A:2B:51:1D:25:4B:7C:30:06:87:EC:14:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A80EB37E039111EFA2D580FD007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b3:46:50:c5:1a:9f:9d:ed:c1:6d:12:ea:dd:2e:0f:78:d9:64:
24:d4:63:01:bf:50:78:17:50:60:0b:10:a3:9f:93:fa:55:b5:
2f:9a:6c:64:62:8f:2b:a2:a6:61:e3:49:b3:79:0b:92:2f:b4:
38:17:6b:a4:3b:b2:67:bd:04:c8:10:f1:8f:90:85:7c:04:90:
a3:35:15:2d:dc:68:48:37:99:15:41:ad:b6:9e:ad:fe:56:a0:
a8:5d:1c:0b:29:04:e9:ba:58:72:44:8b:cc:45:cc:49:f1:61:
94:78:31:65:5f:69:f8:bb:c4:5c:3c:52:76:67:69:4c:5f:ba:
a7:80:4d:06:2e:7d:61:2e:08:7d:3f:80:c2:89:91:e8:4d:cf:
ad:62:09:68:15:cb:e9:b1:44:a6:45:41:86:1a:ef:cc:8b:d2:
93:35:2a:2a:09:02:d3:8e:dc:3d:3a:da:a8:88:e6:b2:b9:e7:
53:53:9e:61:5a:ec:fc:b2:2c:65:ad:24:69:fc:ff:02:42:76:
b8:73:3f:7f:94:38:c2:97:40:65:dd:35:44:46:a0:91:54:ad:
9a:a6:80:c9:9f:5c:09:10:ad:65:c9:fc:30:6f:f3:9c:35:ee:
14:59:9f:04:77:7f:86:90:00:ea:f4:42:42:d5:30:d2:a2:49:
db:f9:13:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:19 2024 by rpki-client on console-fra.rpki-client.org