Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71225156038511EF9BE7991A017001B1.roa
File: 71225156038511EF9BE7991A017001B1.roa (raw, json)
Hash identifier: 440qdigy9fSxotVfm2axIj1Xh/7oRll25V630+LVb0c=
Subject key identifier: 12:F6:51:80:27:94:B4:28:F4:E1:9B:75:1C:FC:30:9C:D0:9A:B1:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 859C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71225156038511EF9BE7991A017001B1.roa
Signing time: Fri 26 Apr 2024 04:28:34 +0000
ROA not before: Fri 26 Apr 2024 04:28:30 +0000
ROA not after: Tue 03 Sep 2024 04:28:30 +0000
asID: 40065
IP address blocks: 156.234.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34204 (0x859c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:28:30 2024 GMT
Not After : Sep 3 04:28:30 2024 GMT
Subject: CN=662b2d71-e943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:3f:2b:29:29:87:f3:30:41:8b:cd:67:9a:
e8:70:69:24:17:63:39:dd:8d:fe:9b:8a:bf:b4:53:
3b:2b:c1:66:89:09:75:be:e5:44:63:5a:40:72:53:
be:ab:4b:f6:c5:95:1f:65:55:df:24:2b:f0:e0:e6:
9d:f4:0d:b8:5e:a5:98:9a:bf:6d:5a:fc:80:54:c9:
fd:f3:c4:6d:32:b0:cb:d6:56:31:a3:b7:a2:85:2d:
c6:b3:63:b1:b8:d0:f3:3a:2e:0e:a7:9d:cf:90:07:
9e:1b:ba:37:07:98:bc:f0:a1:23:84:05:ae:10:fe:
9e:ba:d5:a2:8e:07:9d:df:a8:71:a4:12:10:fa:98:
ac:d8:1b:90:0d:5d:57:82:0f:ff:3b:55:40:59:1c:
1d:b3:8c:83:27:5a:b8:05:39:69:22:37:4a:0e:84:
7d:d7:0d:dc:4d:51:75:20:f6:f8:a9:6d:84:fa:93:
00:b6:11:6a:e9:23:7a:93:a5:cc:bc:ee:8c:06:35:
45:3e:90:71:87:22:e3:9e:70:76:84:29:67:48:59:
2a:da:f8:fc:56:f2:ff:35:a9:dc:55:14:7f:0d:8d:
08:1c:32:9e:f8:bb:58:11:25:27:29:79:31:18:6a:
77:05:dc:d8:00:9b:18:49:84:6e:24:37:74:34:0a:
c2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:F6:51:80:27:94:B4:28:F4:E1:9B:75:1C:FC:30:9C:D0:9A:B1:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71225156038511EF9BE7991A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.127.0/24
Signature Algorithm: sha256WithRSAEncryption
50:13:4a:87:65:18:ea:33:45:ab:96:50:fd:1c:a0:62:f6:a7:
59:79:31:30:61:a1:db:2d:43:dc:21:bd:68:8f:18:93:d9:98:
77:0e:aa:73:8a:46:85:8a:e5:e4:5e:cc:f6:33:42:43:dc:81:
a8:36:40:e7:45:50:6d:04:65:45:f9:bd:11:b8:b6:45:79:83:
bb:76:27:33:61:c0:ea:56:8f:97:6b:fd:e6:fd:58:7f:4e:b2:
bb:82:d7:6d:04:da:3a:b5:48:21:3e:2b:d9:66:dd:68:ac:e8:
71:be:39:4e:dc:d3:f0:91:c7:ce:a1:65:88:68:12:12:8c:7e:
2f:b4:85:d2:7d:31:63:99:4f:f2:46:6d:a6:72:14:80:6a:b4:
f3:6e:ce:56:f5:6e:c4:26:45:9c:54:4c:de:ff:b9:bb:5f:f9:
b9:08:52:27:2a:9a:6f:e4:df:ce:ba:f5:20:d7:0e:e5:ae:10:
d9:4f:90:37:6c:01:75:d7:7d:c0:82:0b:3b:bb:4e:7b:3f:4a:
af:be:ec:53:2d:32:b4:c8:d0:9c:15:da:34:91:b8:a1:aa:14:
cf:f9:4c:6c:2a:47:b2:73:34:09:c2:60:44:86:e6:69:36:66:
65:3f:82:57:b8:66:e8:72:34:2b:ea:1a:d0:18:0e:31:d3:f7:
59:e2:a1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org