Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FEED5EEA222511EF97A187F27CDC24C2.roa
File: FEED5EEA222511EF97A187F27CDC24C2.roa (raw, json)
Hash identifier: 5o6OJYzEAX9jjtT4p60ByQUvnAQB1/YmpqI719Jh9Bc=
Subject key identifier: E2:6B:0F:1E:5D:AC:FC:01:83:49:3E:EA:6E:51:41:2B:24:3D:74:00
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8EC6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FEED5EEA222511EF97A187F27CDC24C2.roa
Signing time: Tue 04 Jun 2024 03:53:26 +0000
ROA not before: Tue 04 Jun 2024 03:53:23 +0000
ROA not after: Mon 24 Jun 2024 03:53:23 +0000
asID: 133522
IP address blocks: 156.227.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 24 Jun 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36550 (0x8ec6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 03:53:23 2024 GMT
Not After : Jun 24 03:53:23 2024 GMT
Subject: CN=665e8fb6-a01a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:11:50:2d:c9:f7:b1:e6:fa:3b:c0:50:c4:d9:
47:8c:ce:54:8d:70:03:0f:6d:a9:a3:1a:10:b8:89:
70:14:72:f5:60:a1:85:73:65:29:bb:22:3f:a0:34:
84:db:d6:b2:22:a2:34:ba:27:54:40:ad:04:85:36:
e2:0b:ca:21:ce:93:35:c2:7f:c9:50:d6:60:30:a6:
39:c0:38:f8:b0:39:14:f8:91:e0:4b:6c:df:54:b8:
db:45:20:84:a8:57:39:e7:1a:7c:04:2c:2a:2d:66:
e2:17:b4:8e:a7:11:89:46:dc:c4:9d:e4:58:c7:f0:
5e:45:e0:01:a2:9e:e2:fd:b1:85:ea:6d:cd:11:ca:
94:13:b9:6a:9c:fa:5b:48:2e:52:25:06:59:08:03:
1e:44:04:0c:78:3a:16:cb:e2:58:0d:ed:65:1a:4f:
2b:2d:11:5d:67:ba:24:29:30:10:e7:ba:97:56:c1:
59:9a:39:7a:12:86:8c:f1:c5:7c:74:e2:46:be:77:
c4:8e:3e:1a:86:ab:2a:3e:4e:73:6d:ac:b2:a5:83:
05:18:22:04:9f:ca:0d:ce:19:25:32:cb:8e:2d:1e:
cb:dc:88:1a:b7:61:f4:d0:91:02:08:ad:21:ac:91:
8b:40:ac:92:25:59:9f:af:12:ca:0f:9f:18:4d:5e:
3c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:6B:0F:1E:5D:AC:FC:01:83:49:3E:EA:6E:51:41:2B:24:3D:74:00
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FEED5EEA222511EF97A187F27CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a0:18:5a:20:92:b7:93:8b:1d:90:32:ff:60:29:95:03:27:b8:
46:ea:f2:87:9f:c9:56:21:a2:85:ee:58:34:37:b4:58:07:37:
d6:9d:4e:81:f2:f3:b9:63:fd:07:cd:3b:8e:2c:d9:1c:db:a4:
01:5e:6a:6e:23:73:21:3c:08:b3:41:ee:bf:cc:3a:85:97:f1:
89:67:84:a1:57:11:26:e0:4c:b6:8c:11:e5:25:29:9a:c0:10:
a5:41:cc:9e:1d:ea:60:7e:33:52:cd:da:7e:67:99:7f:e6:f4:
d9:83:6f:7d:fb:14:f8:1d:40:70:b1:c1:62:e4:3e:83:59:ca:
27:4b:3e:85:5f:c3:d2:d9:a7:79:9c:1b:1f:17:49:89:d3:94:
5d:b0:61:ab:07:ae:43:7b:e1:c6:a8:6c:db:4c:9b:51:9c:a6:
19:58:26:2e:15:b5:96:1e:11:ee:77:fd:09:8d:e5:6e:d9:d9:
fb:b6:5f:2c:f4:26:0a:08:48:d6:38:89:0b:89:03:7d:df:82:
4f:cd:27:4f:c1:c2:96:7d:c8:df:73:92:0a:ff:dc:ce:49:80:
82:17:99:8c:d2:c1:d2:db:3a:c7:97:50:3e:cc:b7:40:41:79:
a7:92:2a:8f:67:a5:59:97:8e:c0:19:00:aa:32:69:37:fc:72:
82:63:7d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:14:30 2024 by rpki-client on console-ams.rpki-client.org