Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A9E1FA009B811EE92444B7A4AD9E6FC.roa
File: 4A9E1FA009B811EE92444B7A4AD9E6FC.roa (raw, json)
Hash identifier: MF/wXZ/dYx7xqrANBoqrya8Jus+l7aLI9L6J4LY2Azk=
Subject key identifier: 00:A7:6F:0C:75:81:E7:95:33:5D:06:40:9A:35:C3:5D:22:FE:EA:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2C06
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A9E1FA009B811EE92444B7A4AD9E6FC.roa
Signing time: Tue 13 Jun 2023 07:02:43 +0000
ROA not before: Tue 13 Jun 2023 07:02:39 +0000
ROA not after: Sat 15 Jun 2024 07:02:39 +0000
asID: 138995
IP address blocks: 156.227.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11270 (0x2c06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 13 07:02:39 2023 GMT
Not After : Jun 15 07:02:39 2024 GMT
Subject: CN=64881492-dcef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:90:2a:69:2b:d2:b6:bc:75:01:76:33:a7:92:
f7:26:a0:4b:08:b3:33:31:8c:5d:69:b4:c0:e9:24:
f6:af:0b:c3:3c:11:bd:ab:79:0d:10:43:ab:8e:28:
f6:49:fb:b1:2e:89:32:1e:5e:a9:dd:c3:65:d6:2a:
10:d3:ce:bb:95:28:94:a7:5b:03:42:86:61:88:20:
f1:fe:8c:65:b0:59:93:3b:2e:cc:25:96:d6:4d:09:
b0:2c:be:96:29:3f:d3:65:8e:db:f4:2b:17:1d:f7:
7e:d8:0b:18:60:c4:0c:f7:ec:de:f9:6a:b8:36:e7:
66:95:c0:43:ae:21:c9:ba:05:af:00:a7:ea:13:88:
68:e5:05:da:30:4e:80:e0:0f:14:d3:f1:fc:77:81:
9f:4b:ca:e3:73:04:8b:09:8b:eb:a3:50:3f:c3:ea:
6c:3c:85:2e:67:a5:d0:00:d3:e3:f8:9a:25:2c:7d:
dd:0f:e2:a5:59:25:f3:6a:3e:89:0e:ff:73:cb:66:
1a:aa:99:ba:c6:37:61:89:24:56:e7:a7:14:46:44:
00:58:6b:a1:80:a9:86:c9:7c:e4:73:fd:cc:32:49:
40:37:1e:6c:2e:fe:4e:8f:26:0c:70:2e:52:a0:e6:
90:7a:c7:f9:25:a3:25:fc:08:64:a7:ae:af:f1:f8:
b9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A7:6F:0C:75:81:E7:95:33:5D:06:40:9A:35:C3:5D:22:FE:EA:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A9E1FA009B811EE92444B7A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.28.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:82:5e:f7:b4:b8:5b:7f:fb:e2:26:3a:e8:e2:6d:2d:9d:ad:
fd:db:fd:c8:80:a0:86:5e:6c:3c:f0:2f:68:21:87:da:e2:6a:
ff:bf:1b:b9:f8:f2:13:7f:fb:2a:fa:29:c5:29:04:da:dd:13:
9d:0a:0a:80:54:02:32:5e:cf:8d:8e:00:0c:14:9a:d2:db:dd:
5f:2d:00:8f:56:bd:5d:f2:dc:63:12:d8:6f:62:87:8e:b1:be:
fa:91:f2:1b:24:fc:8b:76:7a:a8:e1:35:f1:e4:4e:39:cd:e7:
a3:8c:2d:f5:bb:fb:c8:19:12:a5:c6:0e:76:da:32:4e:57:bb:
43:7f:2a:62:df:e3:48:d0:2f:cf:7d:84:6d:ab:67:44:1b:9e:
39:b4:0f:7e:e8:d9:22:bb:94:67:0d:53:b5:12:a6:eb:56:5f:
e2:5a:38:a6:fa:f4:e4:cb:f7:28:c2:f9:84:1f:3c:b3:ca:3e:
6a:36:91:ac:21:e2:af:49:79:bf:ab:60:bf:18:12:c7:bf:e7:
fc:62:bf:05:09:92:5c:92:f9:09:3c:d6:4b:49:6d:f6:48:f5:
98:49:ed:a9:b3:67:ee:e7:82:9a:bf:48:09:f8:cc:1b:3d:17:
30:68:07:20:66:fc:a8:2b:b9:c7:0e:90:a3:f5:26:fc:95:6b:
ca:2a:d9:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:45 2024 by rpki-client on console-ams.rpki-client.org