Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/EBAB53E0EA3E11EB96CC7D3AD8A014CE.roa
File: EBAB53E0EA3E11EB96CC7D3AD8A014CE.roa (raw, json)
Hash identifier: 8ccVEiAliBiH1WhFkoVeVW9p7ZDUf8PeWahrlb8I6+s=
Subject key identifier: 84:1E:B6:09:19:57:42:17:54:7E:59:F2:33:04:64:6E:E0:42:AA:61
Certificate issuer: /CN=F367FECCAR/serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Certificate serial: 02
Authority key identifier: 70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
Authority info access: rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/EBAB53E0EA3E11EB96CC7D3AD8A014CE.roa
Signing time: Wed 21 Jul 2021 16:16:02 +0000
ROA not before: Wed 21 Jul 2021 16:15:57 +0000
ROA not after: Wed 31 Aug 2033 16:15:57 +0000
asID: 328210
IP address blocks: 156.0.216.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.mft
rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FECCAR/serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Validity
Not Before: Jul 21 16:15:57 2021 GMT
Not After : Aug 31 16:15:57 2033 GMT
Subject: CN=60f84842-6c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fa:8d:98:cc:5d:a8:97:15:b0:88:c1:5c:99:
e7:ff:79:02:60:b6:a4:36:5b:3b:bc:6d:39:ba:6a:
33:e2:97:db:69:3f:5b:88:2f:1c:0c:71:2c:27:29:
99:1d:a8:c8:23:ec:1d:2e:43:74:65:53:ee:cf:9b:
8c:78:9b:bc:10:40:76:e3:60:ab:87:95:cd:70:97:
87:1a:fd:ee:af:47:49:cd:9e:c8:39:25:36:e8:0b:
4c:35:13:7c:4c:f4:3c:c9:ce:aa:18:79:b7:96:d2:
92:08:81:cf:22:7a:fe:e5:f7:79:8a:86:03:47:0c:
ae:96:bc:13:7d:84:aa:86:b4:2f:31:9e:f8:6a:b7:
35:ac:c4:30:45:3d:97:7d:9a:d3:77:ca:af:81:67:
1b:40:11:c5:a9:8a:c9:48:42:df:95:8b:57:83:6c:
23:9a:24:79:cc:c1:81:ea:70:77:34:fe:0a:f7:94:
42:7c:d3:c3:c0:6e:2e:10:dc:26:a9:2d:83:ec:4d:
41:5b:1c:63:c4:8e:ff:2a:10:56:85:da:c5:14:85:
7b:58:8a:a7:bd:83:f2:5c:34:df:51:7e:fa:c5:22:
f1:e8:cc:b5:c6:5f:42:c8:84:da:db:56:4b:e2:3b:
38:85:ba:ab:3e:4a:33:7a:80:88:fd:d3:75:e9:70:
be:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1E:B6:09:19:57:42:17:54:7E:59:F2:33:04:64:6E:E0:42:AA:61
X509v3 Authority Key Identifier:
keyid:70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/EBAB53E0EA3E11EB96CC7D3AD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.216.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:d0:71:c4:ca:06:fb:8b:28:e1:c4:65:29:46:96:1e:99:c0:
1c:25:7d:b9:d8:88:8d:74:23:ef:35:3e:55:1a:31:10:4a:c4:
18:51:0d:45:88:99:1a:d6:9c:13:06:3d:6e:3e:8f:90:98:29:
58:21:82:4a:81:30:62:5a:f2:c9:a6:c9:1a:8c:a9:ba:76:78:
ff:f8:26:ed:16:16:55:ae:83:85:84:0e:af:fc:38:5d:69:bd:
02:3e:f5:f6:2b:5f:11:ea:31:ea:fc:5d:95:c1:53:34:4a:ad:
ac:85:f7:16:16:07:c8:30:c4:55:25:b1:cb:18:37:db:82:fb:
79:9c:09:3b:77:de:14:02:7e:c0:a3:a0:2e:d5:37:39:c5:46:
f0:7d:d6:68:f9:85:20:8e:df:34:2e:f7:69:61:17:0f:c6:e4:
ed:fb:29:8f:b4:fd:6b:c6:31:3b:c9:29:79:34:52:58:a9:1e:
27:69:78:7f:c6:9c:d9:7c:f4:a2:87:80:ec:de:99:6e:f8:ab:
60:35:88:73:5c:53:de:2b:f5:b3:86:aa:f9:b0:85:1b:52:bf:
f8:9a:90:dd:9d:af:bb:9e:fb:ac:b7:69:0e:19:00:b7:c2:7d:
db:43:7f:4e:bf:11:32:fe:9c:c1:af:b8:28:3a:d6:74:1a:79:
11:8a:c9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:13 2024 by rpki-client on console-fra.rpki-client.org