Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D59850FAE811EEA1E64162017001B1.roa
File: B8D59850FAE811EEA1E64162017001B1.roa (raw, json)
Hash identifier: 5sSkkexQ0K/gT9V1TppxSOg1b4ZwihXNDwwqi3spvj0=
Subject key identifier: 86:F9:F5:15:BB:AC:90:DB:A6:66:11:73:93:AC:2D:34:E6:AA:99:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8270
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D59850FAE811EEA1E64162017001B1.roa
Signing time: Mon 15 Apr 2024 05:26:34 +0000
ROA not before: Mon 15 Apr 2024 05:26:30 +0000
ROA not after: Wed 22 May 2024 05:26:30 +0000
asID: 23470
IP address blocks: 156.252.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33392 (0x8270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 05:26:30 2024 GMT
Not After : May 22 05:26:30 2024 GMT
Subject: CN=661cba89-d15d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4f:74:66:a4:f4:17:88:2f:24:cf:3f:a6:9f:
a7:76:e1:8c:28:fd:81:d2:e4:70:f9:cf:c1:07:5b:
9c:30:43:c7:31:d9:19:7f:14:08:8d:e4:83:5b:a8:
0b:29:99:c9:7b:1b:04:85:f1:b0:58:6b:19:58:23:
89:01:ef:61:46:32:31:c2:bf:a4:09:3d:13:aa:36:
fd:70:da:5b:65:45:6a:98:c0:75:8e:33:83:02:ca:
6e:50:36:1b:53:d9:06:92:ad:0e:c7:92:7a:cf:89:
3c:7f:59:ce:7a:fa:55:01:f8:f0:f9:21:3b:56:62:
ea:d9:43:9d:62:63:bc:69:29:a1:c9:5c:e4:0c:31:
18:ac:61:5e:e1:4b:1d:0a:9f:17:83:fd:d0:28:ad:
da:6f:f6:ae:02:36:ab:54:38:ab:4c:95:25:52:27:
34:89:64:ff:af:79:43:c6:7d:62:f8:b3:98:0b:d9:
1b:03:e9:2c:53:b2:26:08:f1:54:4f:9b:cc:ab:17:
d3:70:fb:e9:5f:02:00:f6:1c:79:db:7a:9f:36:16:
5a:ad:ce:cc:96:c5:6c:c2:7a:8e:04:35:c8:37:da:
1b:13:3d:e5:a3:9b:ed:38:55:19:a2:9c:9b:5d:8e:
29:b2:2e:00:5a:33:70:98:c2:b4:da:07:64:29:e1:
3d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F9:F5:15:BB:AC:90:DB:A6:66:11:73:93:AC:2D:34:E6:AA:99:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D59850FAE811EEA1E64162017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.22.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:01:5c:b3:9f:31:59:93:00:cc:2e:a6:5e:7c:09:42:cb:0b:
db:96:92:82:b0:64:0d:53:52:13:5c:70:4c:dd:7f:d7:7b:f4:
14:ac:0d:4e:e2:04:0f:f1:4c:57:02:01:cc:5c:a4:7a:95:53:
74:a2:72:51:b4:ae:90:d1:ee:fc:87:74:f7:66:cb:1a:05:b4:
14:1f:25:71:f8:0a:9a:f3:ff:86:6b:bf:81:15:7b:14:ae:d0:
b3:63:c7:45:f3:12:2e:75:ac:9a:84:f3:49:e2:9e:25:d1:73:
b9:e0:6b:fa:bb:63:1d:f4:0c:7b:0b:fa:8e:de:2d:a3:fb:1c:
fd:a2:89:bc:2d:69:7c:7c:ed:e3:47:4b:92:7f:7b:3e:03:25:
7d:df:89:fc:4b:91:7e:49:7d:c5:6e:0b:ae:0c:d3:4a:3a:f2:
df:19:68:2a:17:74:db:d8:30:da:d1:a9:cb:e9:ba:f5:de:b6:
fd:cd:3a:80:99:ad:f0:15:be:b7:b8:8d:bd:1c:b9:d9:71:aa:
70:aa:ac:24:e6:7c:d6:3d:c4:a2:fe:20:36:14:ee:0f:a5:bb:
98:6d:65:b5:eb:58:5d:ba:54:a4:50:71:fd:a9:fe:e5:15:ed:
cc:51:1b:d7:b1:6c:e8:03:2d:79:3d:4f:59:9a:e4:88:b6:43:
79:ba:23:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:12:45 2024 by rpki-client on console-ams.rpki-client.org