Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/B3154C7CC81F11EEAA20E967775412E6.roa
File: B3154C7CC81F11EEAA20E967775412E6.roa (raw, json)
Hash identifier: 8UfO1Zdj7sHYai3qFl14GvhjEbZMOyrK3RfMcTYVc3I=
Subject key identifier: 42:E0:87:29:17:57:D5:EA:4B:E2:56:6B:BA:86:15:6A:D7:38:F3:73
Certificate issuer: /CN=F3626CB6AR/serialNumber=B9FDD8953349716ADAE7A8D1BB13CC27F520FFD6
Certificate serial: 05A7
Authority key identifier: B9:FD:D8:95:33:49:71:6A:DA:E7:A8:D1:BB:13:CC:27:F5:20:FF:D6
Authority info access: rsync://rpki.afrinic.net/repository/arin/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/B3154C7CC81F11EEAA20E967775412E6.roa
Signing time: Sat 10 Feb 2024 14:21:37 +0000
ROA not before: Sat 10 Feb 2024 14:21:31 +0000
ROA not after: Sun 10 Feb 2030 14:21:31 +0000
asID: 328227
IP address blocks: 156.0.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.mft
rsync://rpki.afrinic.net/repository/arin/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1447 (0x5a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3626CB6AR/serialNumber=B9FDD8953349716ADAE7A8D1BB13CC27F520FFD6
Validity
Not Before: Feb 10 14:21:31 2024 GMT
Not After : Feb 10 14:21:31 2030 GMT
Subject: CN=65c78671-0ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a5:5e:9a:8a:86:e9:8c:a7:12:71:a9:a0:87:
ae:12:21:a2:0b:6b:d4:fc:8b:a9:0b:b1:0f:3f:b2:
22:a3:8a:24:c0:bd:05:74:3a:68:f4:b3:97:06:a4:
1e:31:3a:f1:91:81:bd:06:a4:3f:a3:8b:a6:d5:ad:
e9:f8:b9:a4:cf:12:12:29:51:3f:83:2a:63:d1:52:
f6:7b:cf:fc:20:5d:b9:e0:c4:a9:7a:00:b3:c9:97:
e2:38:94:d1:87:2d:66:e9:8b:14:83:6d:74:84:db:
b0:a7:87:63:c9:50:89:a6:d1:b9:87:23:e0:dc:4c:
ba:72:a8:22:5a:40:be:a5:6e:3f:60:2d:1a:24:7f:
e4:3a:d1:fa:75:a6:92:9b:37:8b:31:86:cb:30:a6:
d8:c6:84:d9:c9:3a:3a:15:4b:0a:5d:a6:ef:ab:27:
81:ad:e4:11:74:2b:8f:0c:6b:52:f3:f9:91:d3:0c:
b0:cf:35:e9:db:2c:5b:ac:20:98:e8:85:26:a6:21:
86:95:e6:b0:87:48:cb:2e:67:f8:14:7b:bf:c2:99:
e3:e5:02:ee:6f:b9:01:4c:12:de:a7:cf:e9:03:e0:
6d:01:a5:69:58:40:1c:9e:a7:4a:77:4b:7a:c2:5a:
af:05:b0:9c:2d:c6:b3:ce:5a:4c:35:02:57:e9:ec:
57:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E0:87:29:17:57:D5:EA:4B:E2:56:6B:BA:86:15:6A:D7:38:F3:73
X509v3 Authority Key Identifier:
keyid:B9:FD:D8:95:33:49:71:6A:DA:E7:A8:D1:BB:13:CC:27:F5:20:FF:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/B3154C7CC81F11EEAA20E967775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.96.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:fe:44:11:e8:9c:32:03:4a:bf:cb:b2:98:f3:ee:dc:88:73:
3c:a4:dc:0a:3f:96:6c:5c:cf:b4:d9:74:8c:9d:7a:dc:b4:08:
30:db:a4:6d:4b:9d:b1:03:d5:3b:35:7c:e3:bd:48:6a:99:3a:
11:c3:38:d9:18:51:cf:51:d4:80:c2:db:18:d2:64:29:10:66:
62:57:97:85:1a:16:23:68:22:b9:db:99:ac:a1:5d:e9:38:ab:
c8:24:aa:ea:d8:23:3b:0f:09:6c:c7:50:d7:74:ca:14:fa:92:
57:a5:a5:85:72:f8:97:1d:ed:d4:55:d2:a0:ec:62:4d:c1:43:
69:6a:8b:2a:8a:a0:4d:bc:89:51:b0:55:50:19:55:a0:b8:d2:
a2:bf:c5:67:02:2e:02:9b:ac:5e:65:ba:b9:fa:4b:50:9a:84:
3f:1d:cc:ba:c7:4e:04:c4:0a:9b:6a:84:d3:97:5f:ca:6b:69:
e3:e3:5a:41:4d:73:9c:bc:55:44:2a:b6:dd:e0:16:21:53:da:
65:62:e0:a1:b7:87:3b:df:57:a2:d1:ca:f6:6a:bc:c3:b2:35:
df:0e:0d:80:87:ba:90:f5:09:49:f9:92:df:1d:65:27:c0:08:
f5:91:b8:af:32:f7:fd:5e:d3:45:b8:e4:81:c8:82:18:29:e2:
10:42:bd:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org