Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C10736EC50711EEA30A5DB7775412E6.roa
File: 9C10736EC50711EEA30A5DB7775412E6.roa (raw, json)
Hash identifier: efQBLooJvj5M9b1WtDk9RcTut3ryppErYRUyjWXIzQ8=
Subject key identifier: EA:92:57:23:93:BD:16:A9:9D:65:64:F0:DF:7C:9E:B6:5A:70:4E:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6D36
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C10736EC50711EEA30A5DB7775412E6.roa
Signing time: Tue 06 Feb 2024 15:51:37 +0000
ROA not before: Tue 06 Feb 2024 15:51:33 +0000
ROA not after: Thu 13 Jun 2024 15:51:33 +0000
asID: 5065
IP address blocks: 156.246.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27958 (0x6d36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 6 15:51:33 2024 GMT
Not After : Jun 13 15:51:33 2024 GMT
Subject: CN=65c25589-ce21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e6:41:52:16:a2:19:6e:6c:6c:33:f1:98:01:
cb:e6:e3:21:8f:46:ce:c6:65:47:9e:33:02:03:f3:
18:06:ba:e8:c4:81:a7:f9:1a:de:02:30:a5:7e:c1:
13:81:d3:3d:e0:93:3a:26:d8:ac:c7:c9:b5:4d:b7:
0f:ca:ff:c2:e4:98:5e:ab:0b:d3:87:ea:e2:a4:cb:
f6:ce:85:57:f8:51:3a:be:c3:f5:28:e1:96:e1:3e:
30:e7:cd:ea:91:9e:1f:ce:25:cf:36:a3:13:a6:6b:
ce:e4:fc:bf:b8:49:4b:c8:5e:3e:1a:74:88:b6:d1:
12:23:fd:03:e7:e4:fc:95:0d:c3:4f:da:bc:36:52:
98:21:bb:e8:82:2d:65:d3:17:31:7f:61:87:5d:09:
e3:5e:d7:ee:53:5a:5d:21:31:c5:45:14:3f:5d:00:
4a:e9:f4:6b:81:64:9c:1c:43:39:f0:01:b0:a7:33:
22:96:59:15:12:44:3b:40:ac:bd:6a:e7:c4:1d:70:
73:be:98:8e:25:40:74:0b:c1:6c:de:7c:14:2e:d8:
5c:89:b2:60:10:65:a0:dc:5b:b6:78:b5:26:2e:0b:
9f:ed:8a:56:34:37:ba:61:c6:1a:48:f0:67:a0:a0:
64:4a:41:6f:7f:ec:36:38:b2:76:44:6b:ed:4a:ae:
d9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:92:57:23:93:BD:16:A9:9D:65:64:F0:DF:7C:9E:B6:5A:70:4E:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C10736EC50711EEA30A5DB7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.98.0/24
Signature Algorithm: sha256WithRSAEncryption
33:06:f4:7b:48:b1:32:da:f4:db:68:93:21:90:2b:30:63:f3:
8c:18:cc:cc:52:3f:28:78:50:17:59:e4:ab:a2:b5:e9:14:57:
07:3b:fc:dd:b6:62:97:40:8e:77:10:de:22:cc:e9:4e:21:3c:
e7:7d:60:c6:f8:94:7b:1c:23:a3:fe:66:e3:8e:14:aa:d9:d1:
8f:85:ae:6d:f2:d8:a3:65:d0:4e:0b:9c:ff:0d:0a:d6:7a:2e:
55:f1:89:5e:53:67:e2:86:a2:50:b5:43:60:2a:c1:c4:de:f2:
e0:0c:fa:1f:89:52:53:9f:27:e4:fd:c6:d9:a4:c6:47:e8:38:
fa:ea:f5:ff:24:0d:ab:6b:9e:94:6d:7e:31:b7:e1:01:09:de:
95:7f:91:c1:71:eb:e1:b7:e5:57:ac:9e:e8:be:a3:7a:29:4b:
a9:19:78:05:20:02:8c:d9:7e:1a:b8:2c:50:2b:61:2f:a6:7b:
0d:5b:a7:be:01:8f:84:8c:6e:0e:0e:ab:30:bc:00:d8:c9:16:
4c:c0:60:18:fd:af:66:6d:ac:02:e9:e3:fe:c7:8f:95:14:3c:
cd:eb:21:8c:32:34:3f:7c:1b:20:44:f5:d1:e7:f6:19:ad:3a:
bc:42:50:60:9d:5d:ec:1c:b7:74:0a:17:bf:7a:8a:1d:a1:59:
e5:6b:f5:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:49 2024 by rpki-client on console-ams.rpki-client.org