Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9B3B65005F211EF8035E566017001B1.roa
File: D9B3B65005F211EF8035E566017001B1.roa (raw, json)
Hash identifier: RNdA9JU4fgSlEnmaNxQWvI+/NS8ScUqhOfaGv49TXyw=
Subject key identifier: 1A:13:DA:E3:81:38:77:BF:62:8F:10:A5:7D:E5:C6:C4:FB:57:4B:E1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8696
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9B3B65005F211EF8035E566017001B1.roa
Signing time: Mon 29 Apr 2024 06:36:47 +0000
ROA not before: Mon 29 Apr 2024 06:36:43 +0000
ROA not after: Fri 24 May 2024 06:36:43 +0000
asID: 133522
IP address blocks: 156.227.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:16:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34454 (0x8696)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 06:36:43 2024 GMT
Not After : May 24 06:36:43 2024 GMT
Subject: CN=662f3ffe-01cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:61:58:5b:d4:93:94:a8:7b:b8:e7:7f:41:64:
27:47:96:82:e6:8a:06:e0:b4:b6:e3:d9:fd:11:3a:
69:ce:52:00:42:24:40:32:84:1c:13:32:e6:99:1a:
be:8c:0a:12:6c:d2:e2:dc:b2:50:bf:bf:a4:af:b4:
bc:07:44:d6:09:18:b0:50:a5:99:81:4d:bd:a9:1b:
dd:60:a0:0b:7b:00:97:52:70:c2:8e:c4:90:7a:ca:
25:5f:92:fd:85:78:a2:4d:fe:8f:8c:2c:b3:c0:88:
e2:c3:1d:f0:c1:f8:6d:e9:f3:ea:45:b1:c5:1f:42:
2c:e6:09:eb:83:74:d1:69:5e:0d:be:2b:47:13:d6:
88:4d:76:04:6c:63:e3:3e:77:3a:19:4f:25:16:17:
fc:46:21:d5:23:e7:7e:9f:d9:48:5a:71:90:12:20:
46:a1:33:08:cc:ff:46:25:48:71:7d:07:24:e6:81:
ec:84:95:f3:79:0d:ba:fb:09:bc:77:b0:1b:50:25:
2a:b3:ba:1e:86:2a:51:1b:fa:05:8f:60:8e:20:7c:
1e:92:30:ad:8e:82:10:49:cf:c9:99:2a:76:d1:9e:
87:3e:4f:bc:6b:84:61:4f:f9:8b:c6:ab:2b:30:ec:
a0:26:26:e2:89:3a:7e:8a:ad:13:b5:bf:af:0c:6b:
c6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:13:DA:E3:81:38:77:BF:62:8F:10:A5:7D:E5:C6:C4:FB:57:4B:E1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9B3B65005F211EF8035E566017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.32.0/19
Signature Algorithm: sha256WithRSAEncryption
65:36:1d:ce:84:78:06:09:48:5a:72:05:72:0c:20:e6:f4:ba:
2f:0a:82:db:0d:55:4a:6e:a8:36:b8:cf:f7:77:0a:59:76:f8:
b1:09:42:83:9e:64:e0:b5:ed:36:9e:81:b8:85:30:13:c8:99:
08:de:a5:82:5f:eb:4d:c3:24:bd:77:3f:5b:2c:39:3f:7b:80:
cc:e4:7b:d3:37:21:7e:b0:3c:23:80:f3:cd:fe:69:f1:eb:d0:
56:6d:66:70:6b:cb:89:bd:c8:c7:5e:9f:09:ab:4b:ff:8c:05:
da:f7:83:4b:05:57:d5:e7:3b:69:2b:dc:a1:fb:b3:48:44:7e:
7c:9b:c1:37:c4:16:a4:d7:82:5e:8e:10:ca:48:dd:80:8c:cd:
06:15:c1:4b:da:87:ac:a6:31:8e:85:02:ab:c4:e4:e8:54:29:
f0:50:cc:ef:3e:f7:6e:4b:5e:f5:25:bf:9d:e4:bb:dc:24:b3:
00:8e:64:e1:2e:37:46:17:af:c3:07:44:b9:c5:a9:39:e1:59:
5a:39:15:b3:33:c1:21:62:a4:2f:0f:4c:c8:bb:c8:4f:56:c8:
ff:77:18:1f:f1:14:8f:4f:66:62:09:75:9a:7e:aa:08:23:e1:
38:4c:23:e5:fd:ac:48:86:9e:6e:81:df:d0:34:62:95:31:ed:
b8:43:82:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 16:21:27 2024 by rpki-client on console-ams.rpki-client.org