Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/999F2B14018611EF86E0324D017001B1.roa
File: 999F2B14018611EF86E0324D017001B1.roa (raw, json)
Hash identifier: Fg+hReDArDM9vnBkKnYgSrzjPEDJpB+w+AZabrE9UAk=
Subject key identifier: A2:5E:7F:35:72:28:E3:D3:46:17:96:56:39:07:CE:42:BD:42:B2:2B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8479
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/999F2B14018611EF86E0324D017001B1.roa
Signing time: Tue 23 Apr 2024 15:31:49 +0000
ROA not before: Tue 23 Apr 2024 15:31:45 +0000
ROA not after: Mon 03 Jun 2024 15:31:45 +0000
asID: 135097
IP address blocks: 156.250.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33913 (0x8479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 15:31:45 2024 GMT
Not After : Jun 3 15:31:45 2024 GMT
Subject: CN=6627d465-3cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:88:6a:60:ac:93:ba:a4:91:3c:92:90:37:00:
95:ba:b3:31:f5:1d:08:5f:54:41:72:8a:22:b1:a1:
63:77:bd:37:27:5e:01:7b:a5:41:33:e2:87:c6:ce:
5f:ff:ba:22:13:ba:9a:0f:2b:1a:b2:0a:0c:89:da:
0b:ce:d4:9b:50:fe:5c:89:2c:9a:43:7d:0c:ae:4d:
81:19:b8:74:92:df:ca:5f:62:9b:9d:9b:a8:44:18:
d4:52:e1:e5:1d:bf:b2:97:6a:b9:b1:b1:bb:51:50:
4d:9c:f3:04:3d:d5:1a:d2:60:8f:8d:cd:63:88:8f:
90:f8:b9:33:6f:4e:70:d6:d6:00:45:11:1b:fe:b2:
9f:63:f6:34:dc:eb:ba:a3:35:35:23:55:9d:22:00:
48:0d:e8:f0:35:8d:63:c7:77:0c:7b:3a:9e:97:0f:
e5:96:7a:bf:96:cd:ae:34:0b:02:a1:48:ee:49:12:
11:1f:b5:ab:91:32:96:3a:b4:d3:6f:29:e9:ba:57:
60:b6:41:cf:7e:8a:63:3f:8a:b0:1d:48:8e:13:70:
05:d8:b4:cf:aa:9a:6b:60:86:f9:69:c4:30:51:16:
5a:9a:31:ab:a5:ec:c8:a9:0a:a1:3e:96:1d:d3:fb:
f4:1c:7a:28:49:c5:6d:d0:25:81:1b:fa:d3:81:49:
7a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:5E:7F:35:72:28:E3:D3:46:17:96:56:39:07:CE:42:BD:42:B2:2B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/999F2B14018611EF86E0324D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.8.0/21
Signature Algorithm: sha256WithRSAEncryption
a7:d8:52:fe:70:94:f3:05:c6:e6:4b:f3:57:56:44:0b:2e:6f:
a1:7f:1c:89:a0:84:3d:b0:75:5a:7a:76:d8:73:d2:68:81:43:
e1:73:7f:55:5c:66:b0:df:1f:eb:98:dd:9b:c7:8c:25:40:00:
bc:e7:8e:ef:87:4f:bc:3d:a6:c4:83:73:a5:cb:ba:c5:7e:71:
0e:5f:3d:a9:85:9b:0c:1d:ff:20:90:ae:a4:14:d7:b1:4b:40:
01:90:aa:02:14:ac:11:97:8f:e8:35:d5:17:a8:d8:24:8f:93:
63:f0:84:dd:37:f7:b2:83:d3:48:41:30:26:15:b9:c0:5c:24:
08:13:c5:74:5b:59:ae:56:d9:9d:3d:f3:52:83:e1:0a:f2:63:
d6:46:b0:97:de:42:a4:12:d0:a1:5f:7d:41:f6:ed:a2:ab:ab:
bb:df:d1:2e:37:b8:85:a6:9c:ee:af:cf:60:e4:59:8d:66:8f:
b7:2f:c5:d8:2f:48:0b:bd:bc:01:93:c2:0e:75:d6:f9:40:74:
1b:d4:55:87:9c:52:3f:39:0d:2a:2c:99:05:a0:70:7c:5a:f3:
b6:05:a8:50:15:7c:c2:e5:37:3d:de:3f:9a:79:e1:90:43:fe:
69:6c:fe:75:17:5d:b6:2d:d4:06:4b:78:4f:06:de:d5:25:49:
04:15:d3:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 05:56:34 2024 by rpki-client on console-ams.rpki-client.org