Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B4E8F7A038711EF8AC4492B017001B1.roa
File: 8B4E8F7A038711EF8AC4492B017001B1.roa (raw, json)
Hash identifier: klY/0cgcZcxaQyzCffSdIvwRwm5Abj1g2x+9HF2DKlI=
Subject key identifier: 27:F7:B4:AF:AA:66:4F:77:42:AC:47:AF:29:DB:65:E4:6A:4A:95:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85B4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B4E8F7A038711EF8AC4492B017001B1.roa
Signing time: Fri 26 Apr 2024 04:43:37 +0000
ROA not before: Fri 26 Apr 2024 04:43:33 +0000
ROA not after: Tue 03 Sep 2024 04:43:33 +0000
asID: 138195
IP address blocks: 156.234.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34228 (0x85b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:43:33 2024 GMT
Not After : Sep 3 04:43:33 2024 GMT
Subject: CN=662b30f9-dd0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0b:ff:f7:d1:99:d8:27:aa:ac:29:39:69:d2:
17:a0:74:38:d6:08:bf:8d:14:0a:04:8c:d4:94:51:
fc:35:bb:4a:a7:ec:e2:64:d8:84:25:c9:a2:2d:fe:
52:a0:4a:df:24:1e:f2:2b:5f:74:4d:40:77:13:db:
a1:a8:c2:55:3e:a5:21:36:38:3d:46:ef:79:55:f7:
5e:fc:a7:06:87:97:03:03:a5:62:1c:9b:78:f8:37:
6b:21:a3:67:4b:27:85:a0:00:00:53:68:86:c4:f6:
c8:35:37:90:d0:68:a9:3b:ec:2b:66:09:17:3f:aa:
45:32:ac:7e:f4:61:c6:24:9c:7f:f1:75:0c:ea:4a:
cc:be:f2:d7:d5:81:aa:93:19:ff:39:04:bf:9f:64:
59:42:57:51:2a:17:d6:9d:89:ff:67:50:da:13:e3:
94:16:fc:e4:7e:a4:a6:66:7f:5f:a2:3c:b8:fd:d0:
e2:48:2b:58:08:29:b1:3e:dd:55:e4:a8:8f:f6:f9:
fb:8f:97:1e:4b:5b:8a:9a:07:6c:e4:33:1f:0b:57:
d7:af:4f:73:34:d0:71:c7:bf:cd:d7:05:df:b8:41:
be:68:ef:2b:b2:1d:90:27:18:3f:a9:48:d4:f7:b2:
56:d4:66:5d:e6:6e:89:79:f8:4c:15:2d:cd:ab:53:
f3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F7:B4:AF:AA:66:4F:77:42:AC:47:AF:29:DB:65:E4:6A:4A:95:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B4E8F7A038711EF8AC4492B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.78.0/24
Signature Algorithm: sha256WithRSAEncryption
53:51:db:63:d0:d3:1b:cd:77:34:72:11:f1:c6:3d:9e:50:00:
4d:30:27:80:6a:6b:3e:75:60:55:11:e2:8b:ca:32:e6:d1:de:
1e:05:d3:19:5c:dc:d4:f2:33:e9:a9:e3:59:c0:72:4f:b5:58:
6b:d5:25:36:25:d1:6e:39:f1:35:f8:dd:10:7f:de:27:12:32:
de:23:9a:16:5d:d9:62:61:75:76:13:2c:47:60:e6:f5:8d:0a:
d3:0e:21:d5:8a:d5:77:22:3e:7e:9d:4a:e5:30:23:8e:11:19:
88:d9:6f:9d:c3:9b:6d:bb:41:f6:70:77:6f:6e:01:89:9c:73:
e8:08:be:c7:88:f9:14:29:8b:8b:78:38:51:bd:f8:ff:0b:99:
29:ce:08:2f:be:2e:83:c0:ca:19:1f:7f:55:04:89:f8:b7:3b:
dd:2f:c6:38:ab:c1:6f:c9:14:29:b7:73:e3:29:2e:06:57:d5:
9c:4a:e5:c7:02:75:0d:8d:79:6e:cc:77:e9:38:af:08:78:9f:
ff:62:d6:a5:23:ca:ef:95:b3:d5:71:fe:60:91:62:fa:c5:55:
55:e4:05:93:60:9a:e1:11:c2:b7:28:6a:ec:23:35:8f:a2:78:
af:c6:3e:ba:93:6b:b6:b3:94:e3:06:9b:d6:7d:30:29:43:0c:
5c:b6:ea:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:12 2024 by rpki-client on console-fra.rpki-client.org