Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D8C0960039311EF8E338C0D017001B1.roa
File: 7D8C0960039311EF8E338C0D017001B1.roa (raw, json)
Hash identifier: yb0FSlJZw+jGP8QG9cpg6TwAsezTOTQQ3LcYNWOeC4k=
Subject key identifier: E6:5C:52:EF:28:B6:61:7B:86:6A:9F:DB:20:47:6E:22:25:D8:1F:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 863E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D8C0960039311EF8E338C0D017001B1.roa
Signing time: Fri 26 Apr 2024 06:09:07 +0000
ROA not before: Fri 26 Apr 2024 06:09:03 +0000
ROA not after: Sat 07 Sep 2024 06:09:03 +0000
asID: 138195
IP address blocks: 156.225.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34366 (0x863e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 06:09:03 2024 GMT
Not After : Sep 7 06:09:03 2024 GMT
Subject: CN=662b4503-1328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9f:f7:bb:5e:fc:88:55:83:6f:41:2c:57:ff:
bc:36:f2:d8:84:f1:bd:84:2c:ae:8e:a4:36:ba:21:
ec:1d:e8:f3:c5:bf:7c:fa:5d:1f:7c:a4:4c:09:bc:
e7:95:e3:95:3b:bb:74:1e:8f:82:be:c8:5a:62:90:
bb:12:3a:ce:40:de:73:e2:8b:01:4a:5a:23:6c:97:
eb:b7:f0:e2:f8:9e:38:49:09:1a:8b:d3:3c:c2:f5:
15:48:6e:dc:9d:c2:47:9d:02:11:7e:d8:4d:13:3f:
2d:13:e8:1e:86:d3:26:25:e2:f4:f4:12:66:75:af:
8d:70:10:db:fd:63:34:27:e2:51:7a:bc:77:63:b7:
b7:db:e3:b1:46:6b:93:4a:4f:41:2f:d2:fb:1b:c5:
bc:d8:c6:92:01:18:4e:5d:0c:97:98:58:13:b6:4a:
ac:ec:e1:e8:93:9b:b8:0b:04:03:53:ae:7b:8e:81:
02:a0:1d:18:97:d7:7e:10:40:88:78:1f:52:e5:bb:
2f:78:c6:2b:74:3c:e0:a4:c6:d9:4b:2b:57:a2:98:
d2:01:38:e4:ec:df:1c:c4:4a:c3:34:b8:e7:87:20:
6f:4f:e7:09:b7:3f:9f:eb:55:9d:b2:92:bb:84:8d:
3c:e6:b0:9f:03:27:cf:e6:0f:9c:00:aa:74:c9:fb:
5b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5C:52:EF:28:B6:61:7B:86:6A:9F:DB:20:47:6E:22:25:D8:1F:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D8C0960039311EF8E338C0D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.160.0/19
Signature Algorithm: sha256WithRSAEncryption
06:50:37:e4:75:06:69:a6:90:28:e1:70:5e:26:47:67:8c:c0:
50:be:03:9f:ca:3a:07:08:62:96:ac:19:6d:f3:b2:7c:b9:96:
b2:06:e3:cf:7d:55:de:63:db:35:99:bc:c6:00:4e:95:7c:0c:
32:06:65:39:0c:9e:42:45:31:18:02:ff:75:25:38:5b:16:95:
3a:cb:55:46:d9:5b:e3:8c:c9:a0:a0:23:3a:9e:6c:86:de:d4:
15:33:39:28:55:19:61:ab:32:97:ea:f4:a9:56:5c:d0:8e:0d:
66:c0:35:03:61:54:c9:95:0b:78:33:fe:a5:ea:bf:ac:b4:d3:
af:80:76:95:44:db:66:2a:b3:df:65:b9:28:ab:3a:9e:bd:c0:
17:9d:f5:69:90:db:4e:26:a4:dd:40:a0:5a:01:5e:06:dd:a5:
30:27:96:06:8b:f2:76:94:2e:6f:a7:44:93:08:ff:a0:d1:c0:
74:34:84:19:84:36:8e:20:a8:9f:e6:6a:74:17:13:2c:bb:e0:
74:15:9e:8c:c4:5f:85:c0:c4:00:1a:56:f2:50:43:69:37:20:
d2:29:cf:e3:8b:62:73:9f:9a:6a:d0:21:ac:94:70:fd:3c:4e:
e1:35:f6:5f:cd:ce:d2:8f:fd:d4:67:e5:62:92:b8:77:51:d2:
75:d0:b2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:47:07 2024 by rpki-client on console-fra.rpki-client.org