Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/199438C6F70211EEAB1B3771775412E6.roa
File: 199438C6F70211EEAB1B3771775412E6.roa (raw, json)
Hash identifier: e00j06DfiRNcq4fucElRpwQsIkn/NJhMTf8Bf7HaV3g=
Subject key identifier: 1B:90:97:F7:CC:10:0D:86:33:8E:F1:ED:00:6C:CE:93:6F:D3:D5:88
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 81E9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/199438C6F70211EEAB1B3771775412E6.roa
Signing time: Wed 10 Apr 2024 06:18:09 +0000
ROA not before: Wed 10 Apr 2024 06:18:05 +0000
ROA not after: Sun 13 Apr 2025 06:18:05 +0000
asID: 141210
IP address blocks: 156.227.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33257 (0x81e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 10 06:18:05 2024 GMT
Not After : Apr 13 06:18:05 2025 GMT
Subject: CN=66162f21-37aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:89:d0:61:dd:97:35:75:03:a2:eb:bb:ca:ff:
e3:d6:ce:bc:b6:68:84:2e:a9:e9:52:5e:68:71:d0:
5f:81:ac:1c:22:e5:78:47:3e:b6:a3:2c:46:75:ad:
05:8b:f2:03:b9:c3:bd:1c:29:24:cc:77:c8:b5:d1:
ba:f7:83:7f:4b:e6:a4:a1:70:0b:43:10:8e:94:b6:
a7:fd:17:81:c7:97:1b:f5:e5:9e:57:54:a9:80:72:
70:98:79:6b:04:df:38:3b:be:55:63:e4:e2:4c:74:
35:cb:e4:17:f7:e5:20:df:71:4c:1a:3b:e8:53:20:
e1:9e:bd:d3:27:59:15:84:4d:12:65:3b:92:51:98:
7b:9d:10:43:d3:66:da:90:94:5d:20:03:fb:02:f3:
33:9c:34:81:87:e7:6f:15:6e:1f:92:a0:82:c3:46:
7a:a5:6f:e7:f6:49:8f:43:84:72:4b:7d:94:3d:89:
df:91:6d:53:60:4a:05:19:20:2b:47:20:1b:84:88:
10:f8:25:f6:37:44:37:72:49:ae:51:26:6c:e7:48:
14:70:57:31:9b:c7:46:ca:c5:d4:87:1d:77:24:cc:
02:81:fd:eb:c5:12:4c:ef:65:00:17:0f:67:fa:1d:
5e:3f:f2:90:0f:b1:5a:5e:cb:80:f3:f8:ef:43:5e:
ee:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:90:97:F7:CC:10:0D:86:33:8E:F1:ED:00:6C:CE:93:6F:D3:D5:88
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/199438C6F70211EEAB1B3771775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.217.0/24
Signature Algorithm: sha256WithRSAEncryption
61:75:ac:dc:a5:3c:90:b3:2e:ad:bf:03:56:54:89:1c:a6:8d:
ce:be:aa:e7:ec:fc:7e:8e:e0:ba:6e:51:a4:9a:a0:8f:e4:8b:
15:38:48:9e:cb:7b:8c:b7:70:54:ab:ce:a9:ce:17:3b:be:2a:
cc:30:b9:2c:64:a0:25:ac:49:8a:fd:1a:7e:fd:0e:18:39:22:
9b:96:ac:0c:81:48:fe:c4:a9:59:93:eb:89:b3:9e:21:9d:8e:
0f:73:7f:cc:fc:c2:1f:c9:e5:bd:f0:8f:17:23:c2:68:1c:a2:
c3:c5:2a:02:36:da:c9:fb:93:89:ae:17:5a:0a:86:59:9c:aa:
e7:ff:7c:df:c8:5a:6a:bf:42:b1:0d:54:85:3a:52:26:aa:23:
cc:20:99:79:62:9f:8b:82:5d:da:97:1e:aa:67:0a:2d:b3:1f:
03:03:94:fd:31:b2:27:af:9b:fc:c5:ca:c0:51:64:43:d5:af:
c2:97:92:77:8f:ae:14:85:23:c5:40:09:66:63:f1:42:b5:64:
db:a5:0f:4f:4b:88:91:87:c3:ab:c2:35:43:22:e5:7c:33:7b:
2f:11:51:a5:38:67:e3:f1:75:51:45:7a:21:1a:22:fc:e8:a0:
25:bc:51:6f:47:cc:fb:e0:54:6b:95:aa:15:fe:55:38:88:2c:
0a:81:e3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:05 2024 by rpki-client on console-fra.rpki-client.org