Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10CC6AD0FE1C11EEB78195FC007001B1.roa
File: 10CC6AD0FE1C11EEB78195FC007001B1.roa (raw, json)
Hash identifier: Xn8owDA7Y+ilteQ02Daw6+IWJ8x37dxgQL1oDsTKI7A=
Subject key identifier: 5A:C3:CE:32:79:FA:81:8C:B4:0D:B9:1A:5E:CB:80:1D:53:4F:76:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8380
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10CC6AD0FE1C11EEB78195FC007001B1.roa
Signing time: Fri 19 Apr 2024 07:11:39 +0000
ROA not before: Fri 19 Apr 2024 07:11:32 +0000
ROA not after: Sat 25 May 2024 07:11:32 +0000
asID: 135330
IP address blocks: 156.227.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33664 (0x8380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 07:11:32 2024 GMT
Not After : May 25 07:11:32 2024 GMT
Subject: CN=6622192b-3104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:66:40:ec:4c:78:3c:a4:f2:c8:85:70:48:75:
d4:17:5c:e8:34:93:3b:7f:c6:f6:e7:30:82:a1:b5:
cd:af:96:ad:57:d7:fa:c2:38:65:2c:df:86:95:fe:
6b:9d:70:bd:dc:c8:15:b6:69:04:f1:9a:a4:40:1c:
d8:77:34:63:3a:75:e3:fa:95:3c:57:e9:69:3a:b0:
de:57:bd:d4:23:89:ad:e3:15:46:b3:85:ea:6f:eb:
b9:dc:20:e4:1f:9d:24:ac:2f:6d:ae:b3:1e:33:f1:
c7:d8:04:65:69:90:91:55:e9:45:35:17:5d:9b:a4:
58:4c:4c:68:57:76:00:ff:f3:3d:15:3c:3d:2e:ed:
62:a8:73:72:5d:3a:1a:67:8f:2d:76:32:b6:14:c4:
3d:92:89:8d:da:fa:76:40:6f:74:8f:d8:73:45:89:
da:7f:08:8f:40:af:9e:f1:50:e3:d5:75:d9:11:85:
77:22:95:96:b1:1d:df:90:2b:24:ff:b8:00:28:6d:
5f:ae:b2:6f:b0:b2:be:bc:c9:9e:ee:95:56:5f:f6:
53:02:0d:f4:87:b4:8a:15:0c:31:55:3a:64:a8:c0:
34:ce:44:25:f7:5e:ea:e3:dc:cb:6b:8f:93:0d:9a:
93:ae:ed:6f:a1:be:0d:6f:ec:0c:4f:52:44:b1:d1:
17:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C3:CE:32:79:FA:81:8C:B4:0D:B9:1A:5E:CB:80:1D:53:4F:76:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10CC6AD0FE1C11EEB78195FC007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.6.0/24
Signature Algorithm: sha256WithRSAEncryption
82:9e:9f:82:cd:84:4c:ec:f3:33:88:1b:aa:ff:7b:76:61:49:
55:96:b9:50:ec:81:98:9e:5b:1c:4b:68:38:c9:14:ee:9c:c2:
f2:99:cc:de:16:78:73:bc:6d:4e:01:89:88:52:cb:6a:16:65:
ee:89:62:d2:a6:44:3e:f4:10:2c:11:03:28:32:bb:85:91:75:
14:22:34:59:a8:1e:03:50:44:09:45:c6:99:c8:57:b5:fa:98:
f1:3d:0c:2b:fe:7e:1e:42:4d:40:e4:33:3b:e2:a8:74:c8:82:
3c:fb:e2:c3:88:6b:7d:c8:ae:02:c4:71:57:7e:88:7a:64:51:
fa:2c:21:ac:46:18:ef:31:44:3d:6c:86:92:79:05:03:5e:00:
c7:71:87:bf:ba:10:9d:b2:17:a4:41:69:4f:7b:98:20:9f:df:
bc:6c:5c:75:45:54:f8:78:8c:c3:66:84:87:78:90:c0:db:80:
f5:a8:88:df:b4:3f:67:c9:75:44:bb:86:69:e6:5f:87:b1:f7:
b2:4f:81:dc:61:bf:c7:d1:97:f3:b6:71:40:93:76:18:2d:5c:
1e:f8:62:c6:ed:a2:f4:65:4f:a6:cc:9f:0b:82:98:a9:f0:63:
c7:29:37:08:73:2d:de:6b:ef:24:c3:2b:69:54:b0:8d:dd:83:
51:97:8a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org