Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18899ED0038711EFA03B6E26017001B1.roa
File: 18899ED0038711EFA03B6E26017001B1.roa (raw, json)
Hash identifier: vVFnDR+2YMDkPJjz29ifo536zv3tfLLf9RIRL+GMy3w=
Subject key identifier: 7C:B9:3A:58:86:2F:F2:4C:D8:5A:49:27:CE:AE:D7:99:C5:AA:80:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85AE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18899ED0038711EFA03B6E26017001B1.roa
Signing time: Fri 26 Apr 2024 04:40:24 +0000
ROA not before: Fri 26 Apr 2024 04:40:21 +0000
ROA not after: Tue 03 Sep 2024 04:40:21 +0000
asID: 138195
IP address blocks: 156.234.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34222 (0x85ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:40:21 2024 GMT
Not After : Sep 3 04:40:21 2024 GMT
Subject: CN=662b3038-1ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d7:c6:7b:96:66:26:8e:84:9b:cf:dc:e8:ae:
d4:5d:d5:68:af:c6:50:6b:38:b4:5e:f0:7b:7c:a7:
6d:82:4a:a1:e7:35:c2:c0:0f:05:e2:a4:fd:7a:d5:
7c:ec:53:9b:65:3b:75:73:aa:c5:cd:d7:fe:68:cc:
5b:2a:da:0a:51:4c:46:1d:8f:5b:76:55:e6:32:35:
27:49:11:51:5a:e1:96:49:66:ae:61:db:ff:5d:ba:
c7:1e:50:08:de:a4:1d:6b:2a:f5:40:e0:e7:56:fb:
c4:4a:c8:76:85:74:05:55:37:d7:f6:16:fb:6d:88:
02:66:1b:8a:25:a5:b6:1c:55:73:71:ae:ec:0d:fb:
30:e4:6b:24:11:41:8e:8d:bf:45:5a:86:4b:fd:64:
7c:8a:7b:39:00:a1:d3:9a:b1:ca:3d:19:cb:8e:95:
60:bf:74:fc:c4:80:69:fd:d4:90:40:7e:43:7a:e0:
96:2a:53:f2:b3:2f:97:4f:0d:f8:05:6e:c0:01:21:
ca:64:a2:72:1c:b8:7f:8a:14:a4:0b:0c:9e:4a:29:
4b:0b:a6:76:6f:69:65:68:df:c7:dc:c2:d7:9b:0d:
b8:b3:7c:b9:c2:a3:76:67:af:c4:eb:d6:92:58:31:
ad:fe:09:6a:c1:23:ad:71:02:30:d4:98:0e:af:f3:
af:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B9:3A:58:86:2F:F2:4C:D8:5A:49:27:CE:AE:D7:99:C5:AA:80:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18899ED0038711EFA03B6E26017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.76.0/24
Signature Algorithm: sha256WithRSAEncryption
65:44:7d:8f:5f:7c:be:ec:b7:6a:e9:fd:ef:72:47:50:da:2e:
3b:e2:a9:b8:51:64:aa:66:86:99:33:d4:ae:c8:df:cd:63:d1:
02:eb:8c:ff:3c:c9:47:ef:c8:bc:68:f1:29:32:91:84:13:9c:
53:b9:d0:47:50:e8:ea:f8:b2:94:8f:97:e0:b3:bb:44:bd:67:
f0:c1:c3:e4:72:95:86:45:87:ab:df:5d:8b:48:b8:07:2c:bc:
65:0b:c4:6d:6f:71:9e:67:f0:9f:db:4f:4b:a9:57:ed:c9:ff:
14:d3:1a:1e:e3:7c:f1:ec:3e:72:ac:66:f5:2d:bf:b2:ab:ea:
c6:8e:39:f3:44:8e:99:96:2a:73:9e:6a:78:58:ee:db:c0:8b:
13:b9:74:66:d5:0b:ee:5a:9e:1c:83:64:01:93:8e:ae:57:46:
3c:2c:4f:72:01:d3:05:98:3b:48:c1:95:7f:c1:36:5e:c3:f7:
45:35:db:7d:26:44:9b:2b:aa:3b:99:3b:78:8f:0a:27:83:13:
cf:bf:a1:e0:5a:39:dd:e1:5d:05:49:94:40:51:16:c3:18:52:
d1:9d:27:49:94:16:a9:2d:ca:c2:6f:aa:0e:4e:72:a1:de:4d:
04:b4:4f:1a:64:27:c5:76:78:d1:28:5a:c5:50:eb:9a:cd:a1:
ab:ef:89:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:05 2024 by rpki-client on console-fra.rpki-client.org