Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/726B7B02286311EF9D9FFEF17CDC24C2.roa
File: 726B7B02286311EF9D9FFEF17CDC24C2.roa (raw, json)
Hash identifier: zKf4EvHtx+stszsCKeO7DSoubf8t6pLsiFiWls/VKiA=
Subject key identifier: 62:C4:C7:8E:52:CE:C7:B4:F9:F3:A9:C7:FD:81:4B:75:4C:82:F8:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 90C1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/726B7B02286311EF9D9FFEF17CDC24C2.roa
Signing time: Wed 12 Jun 2024 02:28:26 +0000
ROA not before: Wed 12 Jun 2024 02:28:23 +0000
ROA not after: Sun 15 Jun 2025 02:28:23 +0000
asID: 134687
IP address blocks: 156.230.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37057 (0x90c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 02:28:23 2024 GMT
Not After : Jun 15 02:28:23 2025 GMT
Subject: CN=666907ca-e7e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:90:e1:66:36:6e:82:b1:d7:9f:12:43:8f:60:
fc:91:a4:35:f3:e5:63:50:88:fb:41:b5:58:d0:7f:
fb:e6:94:2b:fc:df:d4:97:6c:7c:99:9b:43:26:d1:
8d:cb:0a:01:f6:e2:9a:a0:fc:1b:1c:ed:c3:d9:4e:
69:f5:09:61:57:a7:83:d2:43:24:2b:ea:cc:49:a1:
8a:cb:81:3a:a9:5b:a6:21:31:01:3f:b8:c4:84:b9:
70:b5:be:7d:06:6b:d3:dd:29:f0:7a:28:1c:1a:eb:
ee:60:28:7c:ec:f0:0d:6d:d0:04:5d:94:46:1c:76:
cb:74:02:df:f7:8c:66:6e:34:af:31:fa:4e:d4:83:
30:7c:bf:f1:f8:2c:29:4d:cd:45:55:4c:80:7a:6d:
e9:25:78:83:e2:bc:43:54:69:ea:51:c2:35:54:7b:
68:b5:96:72:f1:f4:cb:52:86:21:fc:35:b3:44:64:
d9:c3:9f:77:24:fd:a1:79:93:b9:32:df:17:3c:61:
c9:90:91:1a:ad:08:d3:d3:17:cc:64:53:fe:35:6c:
5d:81:b6:da:cc:e7:17:d2:54:89:41:e9:4a:e7:20:
57:1d:33:b8:bc:a4:37:40:28:8b:a9:ed:7b:c7:e7:
f5:f0:73:a0:96:a4:6e:05:cf:55:90:70:2f:83:39:
92:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C4:C7:8E:52:CE:C7:B4:F9:F3:A9:C7:FD:81:4B:75:4C:82:F8:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/726B7B02286311EF9D9FFEF17CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.10.0/24
Signature Algorithm: sha256WithRSAEncryption
81:2d:4b:16:06:b3:e4:27:42:92:7a:fc:64:df:ac:15:18:72:
09:cd:9e:12:67:7c:5e:84:f0:1f:eb:d4:33:9b:76:af:f0:ce:
49:fd:1e:f3:e8:74:27:8e:81:85:a9:8d:6e:78:00:d7:5a:eb:
5c:16:4d:81:fb:63:1a:5f:be:c4:c0:2e:23:aa:24:29:ca:18:
ba:2e:f3:2f:3b:f6:f8:7d:06:be:ea:5d:99:27:16:68:a1:31:
59:61:80:5a:2f:30:fc:9e:15:61:a5:ea:b9:04:aa:2f:25:b9:
bb:e2:8f:28:1f:56:4a:62:ca:e3:19:1b:92:9d:88:ae:b1:49:
0f:10:d5:18:58:54:5a:b3:37:78:6a:c4:86:84:12:1b:ba:d3:
c0:81:11:22:94:6c:4d:de:15:18:91:5f:b8:5a:70:04:37:f6:
d0:ca:59:5b:43:9d:3c:ff:41:0e:11:8e:0a:f2:4b:d4:8d:d4:
49:fd:fb:b1:ec:53:6b:01:a2:00:55:b2:0a:e0:98:44:4c:41:
0f:15:a8:cb:b5:a6:f6:39:14:21:7c:63:2b:87:01:51:1b:4b:
d7:77:9a:cb:66:8c:14:10:65:88:c2:9f:a9:16:b5:e3:20:6c:
71:33:b3:ac:34:53:c1:4c:0a:8c:a2:99:21:82:b1:da:76:f0:
cc:bb:56:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:36 2024 by rpki-client on console-ams.rpki-client.org