Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F007A40C6F311EE86D7997A775412E6.roa
File: 4F007A40C6F311EE86D7997A775412E6.roa (raw, json)
Hash identifier: PnUwKgkZh+T05gyXUuWKAasyneNy+tjDzYLnxl9cigY=
Subject key identifier: A0:E8:74:71:79:CE:5F:E0:A5:7D:6B:96:03:FF:3A:BA:3E:DC:B0:EE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6D47
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F007A40C6F311EE86D7997A775412E6.roa
Signing time: Fri 09 Feb 2024 02:31:20 +0000
ROA not before: Fri 09 Feb 2024 02:31:16 +0000
ROA not after: Thu 13 Jun 2024 02:31:16 +0000
asID: 5065
IP address blocks: 156.235.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27975 (0x6d47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 9 02:31:16 2024 GMT
Not After : Jun 13 02:31:16 2024 GMT
Subject: CN=65c58e78-83da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:65:a8:9f:de:29:b6:fc:f1:b2:a1:9a:34:3f:
09:d1:ee:cc:a8:09:74:f0:91:e0:0e:ac:e8:fd:14:
e4:9f:82:2b:1c:10:fa:fd:85:86:9a:de:63:af:79:
0d:c9:88:46:57:94:eb:46:1f:cc:f8:90:7f:3d:d5:
d4:e9:09:b1:33:c5:26:57:9f:9b:77:1f:a6:8e:0f:
41:04:0f:58:19:80:1f:89:27:72:a9:4d:cc:d2:df:
32:33:a5:d4:8d:f0:01:cf:4b:0a:ca:71:97:ac:53:
e5:a4:a3:d8:f8:b7:92:1b:c0:72:6f:b3:61:3d:7b:
f4:b4:57:01:02:66:2e:68:09:aa:02:b6:1c:9f:f7:
a2:8a:69:7e:01:a9:01:cf:17:8e:3c:30:20:14:84:
9b:5b:17:67:d4:2b:8b:19:92:3d:b7:34:95:95:79:
bf:98:42:8d:07:30:f7:60:6c:13:56:92:a4:7d:1e:
25:0d:19:e6:26:97:b1:ca:41:d2:16:77:08:85:54:
58:85:03:a0:7b:fc:71:3c:f9:94:5d:01:bc:b8:92:
37:fd:92:ad:7c:f1:7b:aa:a1:58:05:1d:d9:75:f3:
b3:74:c1:de:ad:b8:7c:3e:71:6a:6f:ad:5b:d1:d0:
b1:ff:1f:e1:a3:6d:72:50:9a:ce:29:8a:e1:70:c3:
f0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E8:74:71:79:CE:5F:E0:A5:7D:6B:96:03:FF:3A:BA:3E:DC:B0:EE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F007A40C6F311EE86D7997A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.50.0/24
Signature Algorithm: sha256WithRSAEncryption
61:54:ac:e1:d8:8c:45:00:eb:e0:4e:c5:10:11:08:a5:ef:cf:
16:59:8a:79:ee:64:a4:7e:a6:a7:fe:5e:d0:54:f1:90:11:5f:
4a:f7:00:01:c3:f6:a4:b7:d1:8f:2c:ba:ac:7c:dc:41:a5:ff:
ed:ea:a6:b1:e5:f9:8d:21:84:8c:db:d1:e3:eb:65:22:a9:9f:
a3:fd:bc:99:2e:56:f6:a6:9c:ef:e1:49:ef:d2:28:08:97:d0:
fd:24:8e:a9:35:f7:0b:57:c9:39:6a:7a:e5:f2:e3:f5:c7:75:
6b:89:ab:94:5b:a2:a8:61:56:cd:c0:88:ed:e8:df:8e:7e:63:
f8:3e:16:cb:50:25:45:a6:96:1f:31:20:3a:02:6f:bc:31:c5:
83:66:33:9a:8f:79:10:d9:19:0d:24:75:8e:2e:db:18:6a:7f:
13:af:9c:be:54:40:1d:34:20:a0:6e:4c:18:dd:d4:ad:91:61:
97:50:f6:5e:91:17:54:10:14:a0:2f:09:96:d2:e5:f2:36:0b:
29:ad:f5:ed:42:0d:65:18:36:96:57:02:4b:29:80:da:a3:6c:
a0:93:15:de:d8:8c:2d:91:59:ee:f7:79:66:78:3f:bf:a6:46:
90:21:50:d0:6c:a9:55:24:62:9f:13:d9:c7:f7:4f:a5:a3:26:
d1:08:99:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:45 2024 by rpki-client on console-ams.rpki-client.org