Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41898254ECA411EE86C1F7C1775412E6.roa
File: 41898254ECA411EE86C1F7C1775412E6.roa (raw, json)
Hash identifier: B2p/y/p9UyCcM6ZIH4HZCXYM425YWTLhhEZ2gxg1MlA=
Subject key identifier: AD:72:34:16:67:17:BD:93:71:A4:A0:68:38:3A:B9:19:B3:8E:FF:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 80CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41898254ECA411EE86C1F7C1775412E6.roa
Signing time: Thu 28 Mar 2024 01:41:11 +0000
ROA not before: Thu 28 Mar 2024 01:41:08 +0000
ROA not after: Tue 30 Apr 2024 01:41:08 +0000
asID: 395886
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 01:41:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32975 (0x80cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 01:41:08 2024 GMT
Not After : Apr 30 01:41:08 2024 GMT
Subject: CN=6604cab7-0deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:34:c6:3f:35:35:a3:35:18:7b:cb:4b:1d:26:
e1:78:4d:82:a6:3a:47:3c:13:0e:ec:5a:a2:34:62:
4e:6d:a0:19:f0:c1:6b:be:1b:9c:5e:5a:52:4f:0c:
e0:6e:35:61:85:2b:ec:fb:50:25:fc:d6:10:a8:23:
4e:0f:13:41:db:4c:c3:6a:37:2a:01:5d:0a:c6:54:
39:3f:4f:31:a5:c1:4c:db:17:64:3d:c2:6c:7d:01:
38:fe:48:f6:1b:b3:cc:f3:da:94:0f:80:07:d5:7f:
34:a8:f5:11:ed:e4:c3:89:b7:1c:1d:91:a4:15:56:
65:77:97:64:9c:ca:e9:61:5e:06:3a:15:78:95:fe:
0d:e8:fb:e6:f8:2d:ca:80:21:a4:67:58:cf:a1:81:
fa:83:13:c3:a5:26:d4:d6:55:7e:2f:55:e8:c0:3d:
2b:ae:2a:3a:24:df:5d:95:4e:c1:44:e1:b5:1b:77:
8f:80:40:5a:3f:d1:f4:98:b5:7c:bc:49:96:61:34:
94:de:a7:3e:cf:a9:b5:dc:fe:36:58:20:0e:6e:21:
9e:a7:f3:87:d1:fd:e7:19:db:a4:54:c4:3c:05:5a:
72:6d:c3:d2:9e:27:cf:34:99:52:74:c4:a3:81:8f:
5f:2c:a0:ea:2f:2a:59:d8:9d:fb:b2:f4:ff:d2:2d:
bb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:72:34:16:67:17:BD:93:71:A4:A0:68:38:3A:B9:19:B3:8E:FF:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41898254ECA411EE86C1F7C1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
2e:f9:b5:4f:39:a1:17:72:72:d6:50:8c:78:c4:10:81:f3:0e:
1a:6e:7b:71:7a:41:47:a9:30:a8:65:8b:3d:65:60:8e:8a:f1:
9b:92:11:cc:8d:e1:35:a8:55:6b:4b:2a:d2:27:76:c1:9e:0c:
ca:c1:1d:f3:0c:53:14:87:e6:b1:c0:12:b7:53:00:9a:20:17:
94:b5:09:14:65:42:1e:ba:93:50:08:c2:53:d0:d7:97:24:f9:
83:fd:08:53:6b:c9:e4:42:98:45:fe:1f:21:50:ee:9f:45:c7:
3b:f8:b7:b2:ab:b4:13:43:5f:33:da:d2:fa:55:44:e5:70:2a:
58:5a:a7:2b:87:35:3b:06:3a:21:d2:cd:fb:e2:a6:1f:ae:42:
a7:26:2b:32:d6:ce:a5:52:6c:b4:97:86:81:f8:80:5e:75:c1:
24:5e:52:79:ac:c9:2b:77:4c:3e:e8:70:93:ac:4c:92:f7:3e:
c1:a1:ac:4b:b3:78:73:44:95:4d:be:90:5b:09:d8:f5:96:55:
5c:45:96:e6:b3:f4:94:5e:52:47:97:a2:6b:3f:55:fa:1e:6f:
23:82:b8:13:64:3c:7a:c3:67:77:a9:5c:54:54:f6:22:bb:9a:
64:dd:fd:e4:78:ab:0d:6d:d4:20:e1:da:fb:c6:8d:be:26:f0:
41:a2:84:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 12:50:20 2024 by rpki-client on console-ams.rpki-client.org