Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/74DC63BE018611EF912ABF4C017001B1.roa
File: 74DC63BE018611EF912ABF4C017001B1.roa (raw, json)
Hash identifier: AxPu9OPNcvk2kPI+A4EK6XPd7AqLqE6+EuiG2dbnd/M=
Subject key identifier: 24:2D:6B:46:82:11:A4:81:4D:FD:E9:01:A6:81:5C:7F:3F:4A:28:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8477
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/74DC63BE018611EF912ABF4C017001B1.roa
Signing time: Tue 23 Apr 2024 15:30:47 +0000
ROA not before: Tue 23 Apr 2024 15:30:43 +0000
ROA not after: Mon 03 Jun 2024 15:30:43 +0000
asID: 142286
IP address blocks: 156.250.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33911 (0x8477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 15:30:43 2024 GMT
Not After : Jun 3 15:30:43 2024 GMT
Subject: CN=6627d427-8063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9f:2a:82:a8:91:e5:91:e6:b7:41:2c:eb:e7:
21:0f:11:ac:63:b5:b3:a7:dc:a4:69:5f:41:2a:b3:
91:84:75:f9:2b:96:b4:83:69:9f:b0:ba:b9:a8:6f:
e5:cd:25:c4:aa:e7:4e:8c:a4:bf:d2:bf:9c:0b:47:
f1:32:f4:3a:0f:ad:1a:24:b9:d5:a0:e5:c9:73:0f:
68:8e:cd:65:9f:20:16:48:66:c2:6c:56:96:c4:2e:
62:c1:e2:80:4d:ec:e6:2b:9f:0e:e0:32:52:bb:af:
17:c5:b1:2c:cf:2c:95:f0:7e:53:7d:00:dc:6c:12:
40:0d:b4:b3:6e:76:65:b7:05:2a:f5:0f:4e:91:e0:
b4:ba:12:c7:17:36:cf:00:df:fa:ce:56:2f:ee:9b:
d0:ed:1a:df:68:43:5c:31:54:b6:6f:d5:89:8d:fc:
a1:4a:05:88:9d:4c:a6:51:79:27:d3:78:79:0c:a0:
9e:9b:f5:85:28:3c:e2:92:48:74:de:e5:e3:67:23:
23:9b:54:b1:0a:82:96:f0:3d:03:42:d8:bf:c8:83:
7f:e8:8d:73:d2:20:fc:b4:cd:1b:e9:58:a4:41:e3:
7d:88:e0:73:28:e7:2c:4e:72:d1:23:8d:bd:30:c2:
df:a9:ac:06:57:ee:b4:39:79:7c:a5:3c:44:99:46:
4f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:2D:6B:46:82:11:A4:81:4D:FD:E9:01:A6:81:5C:7F:3F:4A:28:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/74DC63BE018611EF912ABF4C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.64.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:d6:f2:59:ed:8f:2b:b1:f5:96:fd:0f:45:1b:c8:76:ca:fd:
36:c3:c0:57:ad:77:53:eb:d3:4e:c9:c4:85:07:87:6e:22:36:
cf:fa:52:eb:72:fe:0e:1b:17:e3:af:cf:37:76:13:b9:a0:f4:
38:b6:78:39:45:ee:e6:20:0d:94:53:03:b1:14:ea:6c:fb:f8:
96:90:ef:85:b7:51:6c:19:1f:10:c1:13:3e:7e:54:28:7e:5d:
19:8d:35:0c:95:20:d2:2e:04:f4:2d:fc:a7:23:df:a0:cb:ea:
cc:42:3f:d6:44:a6:18:db:af:d6:dd:f5:22:3b:52:76:9c:53:
68:b5:53:33:05:ba:b9:c3:ef:a6:f3:45:30:b3:2c:31:22:6b:
81:0c:d2:6a:93:39:67:2b:a2:f6:3c:92:2d:bd:1d:4e:bc:fd:
7a:96:d1:64:0c:79:9e:01:32:cf:32:4d:7d:11:5f:14:49:0a:
86:71:6d:cc:bd:13:2f:b6:85:25:0e:28:2d:61:40:5f:1c:0e:
fb:89:2a:4b:f6:7f:ef:02:08:ae:cc:ce:6e:9f:b7:cd:3c:d2:
8f:da:94:e9:78:7d:13:a0:c3:c3:6c:63:f0:12:1c:10:7c:ed:
6f:92:45:6f:d2:4b:d3:bf:6d:93:99:90:a0:4c:71:7b:6f:d0:
40:64:17:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:54 2024 by rpki-client on console-ams.rpki-client.org