Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70F799D6989411EEA8877E39D25BE465.roa
File: 70F799D6989411EEA8877E39D25BE465.roa (raw, json)
Hash identifier: XVO9oG4vtTEWKX4W8NkrXnrFAqy2LVXED97EZalXaYs=
Subject key identifier: 65:1B:9F:5D:03:D1:AB:DB:1B:8C:74:6D:E4:15:69:22:90:C4:F5:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 515A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70F799D6989411EEA8877E39D25BE465.roa
Signing time: Tue 12 Dec 2023 02:16:21 +0000
ROA not before: Tue 12 Dec 2023 02:16:18 +0000
ROA not after: Sat 15 Jun 2024 02:16:18 +0000
asID: 272018
IP address blocks: 156.235.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20826 (0x515a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 12 02:16:18 2023 GMT
Not After : Jun 15 02:16:18 2024 GMT
Subject: CN=6577c275-956e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:14:13:da:1d:2c:92:68:f4:ea:d7:17:df:14:
ac:17:71:c3:a1:31:ad:99:cd:cb:8c:08:e8:8f:a4:
71:82:07:72:0b:42:c5:b6:cb:57:c2:5b:7c:7a:9e:
a3:d0:49:03:31:bf:17:19:5e:9c:b2:89:32:ac:f3:
58:56:60:29:9b:00:44:90:78:fb:75:79:c2:00:3c:
b8:ff:83:ad:97:e1:d2:be:8b:2b:05:0b:25:af:14:
1c:45:0f:a2:85:2b:d7:e3:2e:5b:97:7f:36:ba:04:
64:6d:0f:a7:32:28:5b:ed:72:f9:71:81:f1:67:ad:
c9:50:9e:5f:35:e3:c1:6c:a4:88:50:7a:e5:a8:53:
97:4f:b4:bf:aa:2b:0f:b4:c8:ee:77:dc:64:50:59:
e2:0f:f8:3c:09:2c:fb:d5:10:09:b1:97:d0:db:01:
7e:21:33:a8:b0:bc:f3:43:56:de:4f:9b:6d:ed:7a:
30:7f:19:e2:d5:5d:9f:2b:b0:de:cf:14:da:ed:1d:
e4:a5:00:3d:e0:81:85:7d:58:80:5a:78:ce:a9:6e:
7d:4e:42:66:0a:f7:cd:f2:b4:bd:91:63:5c:22:8a:
19:a7:98:3f:c2:a2:0a:c4:a3:2f:98:26:45:45:a2:
17:ae:af:78:1e:bd:d5:32:0e:94:2a:21:64:91:8f:
40:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1B:9F:5D:03:D1:AB:DB:1B:8C:74:6D:E4:15:69:22:90:C4:F5:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70F799D6989411EEA8877E39D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.91.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:c6:ab:49:80:28:79:a2:06:9c:58:c4:8f:80:72:d0:e6:4e:
77:92:af:48:fd:18:cb:36:a1:8e:dc:00:39:8b:9c:3d:65:c3:
76:67:db:df:f3:20:3e:ce:82:45:52:96:10:f1:2b:0b:aa:3a:
f4:5b:c5:ce:73:0c:76:1d:4a:6b:c3:09:be:54:66:ea:8f:72:
98:d2:67:40:ba:17:c7:3e:8d:25:e4:e3:49:d5:3a:f9:a0:a9:
ef:42:88:e8:7d:f8:3f:21:6a:8f:47:f9:d8:e9:dc:ba:9d:a1:
06:f7:5d:56:6e:6d:04:78:8b:0d:fe:07:ad:17:28:8f:4e:73:
43:d1:3c:f5:7b:53:15:d7:9b:51:18:6c:57:43:11:35:a8:4a:
e8:30:29:6b:5d:12:c5:8a:c3:87:b8:51:89:25:96:ff:72:23:
79:4d:b0:72:a7:b5:27:39:53:33:b1:d0:0d:09:30:f2:c2:59:
89:ed:91:c6:83:46:b3:3f:26:c0:13:61:22:65:a6:46:34:77:
04:1b:d0:ae:1e:6e:96:59:14:72:f5:af:f7:cb:e3:af:a2:b7:
64:6a:d9:20:99:56:96:82:ba:7a:75:2f:f8:94:0e:f6:a9:0d:
c6:91:7d:c9:7a:52:2a:c2:af:f8:c4:41:e2:fb:dd:2d:62:1f:
48:df:00:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:54 2024 by rpki-client on console-ams.rpki-client.org