Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03F03E44F91911ED9912F41D4AD9E6FC.roa
File: 03F03E44F91911ED9912F41D4AD9E6FC.roa (raw, json)
Hash identifier: 7I+xOVHrfYhYm4HpCVbJFeyLyoPbvUT9Bu5hknWZszQ=
Subject key identifier: 9F:78:42:B1:0B:09:51:7F:AD:A7:70:32:8F:90:90:C7:AC:E5:D5:14
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26EC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03F03E44F91911ED9912F41D4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:22:15 +0000
ROA not before: Tue 23 May 2023 03:22:11 +0000
ROA not after: Wed 15 May 2024 03:22:11 +0000
asID: 399674
IP address blocks: 156.246.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9964 (0x26ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:22:11 2023 GMT
Not After : May 15 03:22:11 2024 GMT
Subject: CN=646c3167-1970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:25:b6:b3:fd:26:4b:4c:ac:72:06:02:47:72:
fa:f3:fb:89:e8:ea:d5:57:b3:b3:dc:77:f2:cd:ab:
95:80:79:d4:b6:b7:98:63:a6:68:8b:f6:34:03:ae:
1d:92:7e:2b:24:9f:1f:05:1a:88:fd:c5:f1:d6:9f:
5c:88:67:f1:6c:26:a3:2e:39:c3:65:14:a5:74:66:
04:1f:17:d6:d9:7d:cb:66:4a:3e:6f:9b:87:f9:fd:
00:b8:9b:56:23:7b:dd:85:12:ab:8b:9b:4a:1a:c4:
10:48:fa:78:4d:c7:03:8c:00:a2:a1:e8:d3:65:6b:
d3:ce:fb:ab:3e:e3:24:4b:8c:1f:4c:e7:c8:e9:d7:
91:45:b3:a8:c3:db:6e:c9:45:c9:b3:d4:96:c5:0a:
50:5f:4f:14:0d:b7:95:ab:b8:b4:d3:0e:53:95:61:
66:5c:23:13:4f:55:e3:d1:53:64:89:bd:5f:83:9c:
51:2c:59:26:38:34:f8:2c:74:f3:4e:6c:e4:1a:16:
84:42:65:45:6d:60:81:f4:00:25:df:ec:98:56:36:
82:c8:47:ec:63:b2:e2:19:e0:f5:f7:a1:2f:98:8f:
2b:4d:d3:eb:ca:b6:dd:56:a2:f6:95:8a:e6:16:a5:
7d:42:87:dc:33:82:93:fc:93:94:bb:a4:3f:18:dd:
62:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:78:42:B1:0B:09:51:7F:AD:A7:70:32:8F:90:90:C7:AC:E5:D5:14
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03F03E44F91911ED9912F41D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.160.0/20
Signature Algorithm: sha256WithRSAEncryption
85:6b:db:b2:18:b8:37:c8:9b:31:d1:3c:62:4c:35:e4:69:ad:
2b:ec:d9:58:dd:b1:d7:70:41:7d:23:2a:30:d3:b0:ea:f7:97:
c6:cc:23:6e:e6:90:f8:df:bf:4b:a0:94:2f:9a:4e:47:38:ea:
fc:ff:96:34:63:b7:da:82:95:f0:37:da:62:2d:67:26:da:53:
f1:5c:98:2a:3a:b5:39:8a:25:47:99:db:d9:ea:c8:bf:36:b7:
03:6c:da:be:a5:61:df:03:25:0d:e6:7c:91:d4:e5:ee:6b:a2:
9f:d6:9c:af:0f:9a:a4:cc:6d:17:b6:b8:c1:6f:0b:c6:42:01:
2c:ca:e5:ad:26:41:27:43:c2:78:7d:c7:45:59:5b:80:70:c5:
4b:ba:22:c0:14:09:f0:8f:a2:a8:24:f7:59:24:95:58:7d:7c:
82:f2:90:a8:d7:e4:c4:2f:6f:0b:38:e3:97:a2:02:87:3a:64:
65:81:90:4f:61:85:72:5a:2d:06:fd:6a:95:63:97:45:96:86:
d8:82:fb:27:62:bf:a4:24:c2:76:4b:e8:de:7d:99:fc:44:cd:
4f:09:ff:e0:db:03:35:82:84:13:de:d2:6e:6a:72:04:64:90:
ef:82:f6:a0:9c:07:33:62:fd:a1:a4:d1:98:79:3a:c9:5b:a7:
06:b8:c7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:42 2024 by rpki-client on console-ams.rpki-client.org