Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/B9EDE330EA3F11EB9BDDAB3BD8A014CE.roa
File: B9EDE330EA3F11EB9BDDAB3BD8A014CE.roa (raw, json)
Hash identifier: UpWRiY04Rhit9Uj9Y+xZz3ZrxHoCtYC3IGMvoMbSZgE=
Subject key identifier: 0A:DE:DC:CE:0E:8A:1F:8C:B0:87:93:28:80:33:B9:CF:F9:F0:1B:38
Certificate issuer: /CN=F367FECCAR/serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Certificate serial: 04
Authority key identifier: 70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
Authority info access: rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/B9EDE330EA3F11EB9BDDAB3BD8A014CE.roa
Signing time: Wed 21 Jul 2021 16:21:48 +0000
ROA not before: Wed 21 Jul 2021 16:21:37 +0000
ROA not after: Wed 31 Jul 2030 16:21:37 +0000
asID: 328210
IP address blocks: 156.0.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.mft
rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FECCAR/serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Validity
Not Before: Jul 21 16:21:37 2021 GMT
Not After : Jul 31 16:21:37 2030 GMT
Subject: CN=60f8499c-46e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:75:d4:9e:8e:88:a3:b5:8b:68:e4:51:d5:d0:
4f:0b:85:8a:a7:a5:49:06:ea:eb:ee:9a:88:ac:cb:
1f:f8:94:50:67:a6:fa:1e:7a:6e:0c:ea:d9:a1:d0:
c6:0b:d8:d1:a8:e6:0f:47:72:6e:54:7e:86:c9:d3:
65:29:0d:08:46:4e:f3:27:8c:f4:5a:23:a8:fb:c1:
c3:73:74:49:3a:18:b5:91:84:1c:b8:bb:79:8e:fc:
6c:76:5b:f4:2b:95:e9:36:3b:17:54:3b:ca:05:34:
b4:80:51:3b:4c:ef:84:16:4b:ea:61:df:7b:f2:e3:
ca:50:d6:55:ae:83:e3:fc:a1:49:5b:4c:a3:3c:d9:
e3:01:29:21:f7:7a:52:a5:2b:2e:16:84:7b:ed:3f:
56:af:2f:83:18:3e:83:e5:0b:1b:f8:65:2f:33:41:
98:a7:85:de:2e:44:51:5e:20:c3:b6:68:0b:72:ed:
98:16:26:e9:94:14:ab:9c:df:00:8b:fb:05:dd:bb:
d0:3d:d7:5f:73:b0:c7:a4:91:3c:ae:66:82:9e:4d:
4e:af:b4:7a:34:d8:27:5a:57:0a:a0:d5:4b:8b:90:
37:a6:a5:cb:79:2c:5a:a1:1d:35:90:b5:c7:17:55:
48:6a:8b:53:59:26:57:31:cd:06:8e:f9:8a:7e:5e:
b1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DE:DC:CE:0E:8A:1F:8C:B0:87:93:28:80:33:B9:CF:F9:F0:1B:38
X509v3 Authority Key Identifier:
keyid:70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/B9EDE330EA3F11EB9BDDAB3BD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.216.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:6e:c1:43:ce:9d:1c:d6:e5:6a:af:29:11:5e:a2:ea:74:e1:
8b:08:1c:04:0d:be:0e:47:e7:d6:40:05:50:82:88:4c:05:cd:
f5:0f:0b:14:d1:85:af:d2:cd:2c:18:c5:6c:f2:91:9e:77:cf:
e1:1e:70:16:07:d4:14:64:38:06:43:30:2c:d4:c0:83:35:c9:
bd:c7:bc:d8:91:8a:98:71:51:bc:73:ba:80:fe:dd:4a:a4:ea:
cd:fa:af:74:a3:81:93:27:3a:2a:10:09:b7:e8:85:f0:1b:64:
ef:f4:28:6b:ed:5c:9a:29:30:ab:92:1b:3c:ea:12:f2:8b:b3:
35:5e:38:92:47:76:da:9d:77:0a:9a:05:41:e9:7d:bc:0b:f2:
db:97:bc:78:b5:4e:69:9b:30:d8:6d:c0:94:79:85:3d:dd:f1:
18:79:2d:62:2f:f0:53:a5:9a:30:85:dc:df:4c:91:0e:c9:16:
0f:ca:d6:59:c8:ab:72:c4:bf:42:ad:c3:2d:37:e4:2f:14:35:
87:e3:6a:4d:16:c6:1b:b2:04:67:65:b6:df:fe:84:4b:3a:09:
cf:b8:38:1b:9c:b0:0c:94:23:27:ae:d3:54:13:7f:54:7c:27:
9c:13:41:5b:ca:8c:d4:a5:18:b6:0b:4e:30:db:b9:82:1c:ac:
9b:7e:3c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:45 2024 by rpki-client on console-ams.rpki-client.org