Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77FAA3A2014611EFA6A5534A017001B1.roa
File: 77FAA3A2014611EFA6A5534A017001B1.roa (raw, json)
Hash identifier: Z3MMV47tHPqJB8MytPboPb7F5J5+qRbOD3VNTb8LFIE=
Subject key identifier: 3B:73:24:58:C6:93:31:1D:4C:84:66:1C:31:7C:AD:81:C7:34:29:0C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8424
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77FAA3A2014611EFA6A5534A017001B1.roa
Signing time: Tue 23 Apr 2024 07:52:44 +0000
ROA not before: Tue 23 Apr 2024 07:52:41 +0000
ROA not after: Sat 11 May 2024 07:52:41 +0000
asID: 3561
IP address blocks: 156.248.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33828 (0x8424)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:52:41 2024 GMT
Not After : May 11 07:52:41 2024 GMT
Subject: CN=662768cc-68f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cf:4a:3c:9e:a6:26:90:0e:f7:e7:c0:f2:41:
32:5d:99:06:29:54:fd:a6:72:2c:9a:9f:0f:c5:b0:
d0:aa:e2:0f:b0:49:c6:a8:41:7d:99:82:e3:70:98:
d9:60:40:ae:d0:10:1b:d1:33:9c:07:2d:25:5a:57:
0c:be:2b:97:3e:8b:72:8b:29:01:5a:8c:f7:4d:df:
53:7f:19:65:cc:59:23:4b:f9:5b:8a:a5:ac:f1:ec:
cf:de:df:84:12:9d:18:b9:93:b8:7d:3d:7d:4d:22:
58:77:31:53:36:00:a0:6e:71:e1:b5:0e:52:34:b4:
a1:57:db:0b:12:2d:02:67:fb:e7:3c:19:70:18:d4:
19:aa:bb:da:0c:05:ff:11:d9:dd:89:fc:c9:16:cb:
17:13:08:09:38:fb:a6:0e:3e:8e:e8:09:e8:de:f8:
3d:d3:4f:27:70:3f:ba:82:f8:5a:34:3f:e8:a2:b7:
a8:06:db:3d:f1:a5:ea:cd:72:9f:b3:a3:ca:f5:95:
08:5f:5d:43:71:ac:a7:63:bb:bd:f9:ac:f6:d8:ef:
ae:6f:b1:07:19:7e:d6:55:5b:f4:55:f7:d6:d6:0f:
8f:06:0e:02:0f:de:8a:4f:74:93:ac:1b:bd:e4:fd:
13:49:79:80:01:7e:f0:9e:b0:36:d5:d7:4e:02:76:
de:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:73:24:58:C6:93:31:1D:4C:84:66:1C:31:7C:AD:81:C7:34:29:0C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77FAA3A2014611EFA6A5534A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.88.0/22
Signature Algorithm: sha256WithRSAEncryption
22:18:0a:3a:27:7e:63:a9:2d:ba:ab:b9:f0:11:67:eb:77:73:
fa:cf:8d:0e:6e:d1:28:21:61:1b:e5:c5:66:4c:dc:79:b2:e0:
3f:af:22:ea:76:2c:09:c4:ee:b9:80:04:ca:93:14:1c:2e:43:
64:97:d8:b2:a8:9e:d1:2d:16:04:f1:07:f4:f2:53:f7:db:78:
c2:1e:a9:94:21:b4:07:a5:15:f1:dc:0f:9e:6b:f5:ce:ab:08:
5b:3a:70:de:8c:10:31:6d:70:95:82:70:1a:24:f6:fc:4e:aa:
b5:f4:a2:2d:e5:ce:ac:dc:49:fb:77:f2:75:af:9e:e9:c5:2b:
29:6c:79:70:3a:03:e7:6e:45:1d:6e:94:91:82:3c:a8:94:4a:
8b:52:5d:a8:cb:1e:53:a1:cb:54:b7:57:79:03:ca:98:a0:42:
72:b4:a7:af:76:92:e9:60:34:ff:ba:aa:7e:ea:a9:03:34:5b:
e9:d3:3b:39:c0:21:49:40:56:38:89:66:a9:66:be:b8:f2:03:
60:2e:8c:5f:56:17:69:20:ed:8e:8f:d2:a5:7b:72:ea:f7:74:
d3:c2:a1:74:df:ad:5e:f2:ef:c4:87:f7:9d:30:19:b9:5d:c6:
15:e0:f4:6b:3e:15:18:32:fc:10:a4:7a:3c:d9:14:24:c7:20:
44:d0:1a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org