Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FF02F06FD4711EE9E319739017001B1.roa
File: 9FF02F06FD4711EE9E319739017001B1.roa (raw, json)
Hash identifier: 2NUhnVFt/ygKfISsr2OPbj9JyyRoZI4+2OOhVazMRyM=
Subject key identifier: E6:BC:4B:DF:1E:F5:6A:BC:8C:AA:A8:1C:5C:8F:D5:54:76:F9:F6:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8351
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FF02F06FD4711EE9E319739017001B1.roa
Signing time: Thu 18 Apr 2024 05:50:56 +0000
ROA not before: Thu 18 Apr 2024 05:50:53 +0000
ROA not after: Fri 26 Apr 2024 05:50:53 +0000
asID: 39600
IP address blocks: 156.255.84.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 05:50:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33617 (0x8351)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 05:50:53 2024 GMT
Not After : Apr 26 05:50:53 2024 GMT
Subject: CN=6620b4c0-711c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:46:d1:11:02:b7:15:7c:4a:aa:1f:bd:71:
d4:af:f0:39:b2:9c:e0:58:f0:cb:57:af:af:dd:f0:
2b:51:df:aa:6e:af:85:be:5a:4d:b0:ef:f9:34:82:
e5:9e:55:e3:2d:c4:aa:7b:c3:33:81:e0:2b:82:34:
d5:fb:93:db:ed:b6:b8:b8:23:b7:b1:d8:25:b6:8e:
f4:15:fd:e6:44:53:80:77:32:23:7d:ce:e2:d7:1a:
17:63:61:b0:68:fa:2b:c2:71:17:bc:3a:21:a5:95:
58:27:ee:d6:a8:5e:0e:56:59:36:1f:a6:77:27:9f:
26:87:c0:16:6d:80:fb:4d:7c:4e:25:72:86:ae:0f:
f6:cc:88:08:58:d7:8e:1a:bf:5b:e7:3b:cb:23:6d:
5f:f7:cd:c3:a2:82:30:57:69:c4:fa:b4:dc:56:e9:
cb:d8:73:7e:d6:c8:44:e8:e2:e0:81:f3:dd:61:e0:
41:83:5e:d1:a5:c1:ea:47:8e:b0:8a:d5:a2:60:46:
29:3d:a7:b0:f4:e6:ce:80:55:f5:ce:cc:87:df:0f:
06:51:9d:89:e0:dc:68:86:f8:78:6b:90:b1:71:7d:
7e:e7:7c:b8:b1:b6:dc:35:00:fe:6a:c6:c9:fe:fd:
d6:fc:13:f4:23:6a:e8:21:68:e9:67:db:42:fd:cc:
cb:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BC:4B:DF:1E:F5:6A:BC:8C:AA:A8:1C:5C:8F:D5:54:76:F9:F6:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FF02F06FD4711EE9E319739017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.84.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:ad:c7:9d:28:b1:b4:8f:56:99:86:c2:c7:e8:e7:67:5e:8e:
af:64:b0:63:f0:0f:db:7e:4a:1d:a9:bc:34:62:22:fe:c2:e4:
2d:85:6e:07:ee:32:af:71:b9:3d:fd:38:cd:84:8a:b6:0d:60:
7c:2f:c2:dc:72:cd:91:e9:e2:5b:d2:99:bb:91:90:cb:17:73:
e5:24:42:e5:b1:37:c8:44:05:67:f7:8e:e4:ab:c0:ca:38:1a:
ed:7e:15:95:82:e5:9e:10:9a:87:8f:83:7e:11:09:d2:7b:e3:
4a:a5:32:29:ae:a1:1b:f6:be:fd:af:13:e7:02:7d:59:ef:2c:
94:85:23:eb:98:46:26:8a:2a:e4:35:7c:a7:ef:87:5c:b0:9e:
9e:cd:d4:06:d8:25:3c:52:9e:43:be:3c:4d:a1:93:b6:61:15:
30:49:44:ff:6e:61:a0:ca:47:43:00:a7:b4:68:c7:65:2f:d1:
4a:7e:6c:7b:d2:aa:40:aa:7c:5c:ef:55:c9:71:9e:39:da:c5:
35:8a:89:2a:5a:88:32:ba:2e:e9:87:6b:e0:11:0c:86:0b:5e:
43:f1:29:aa:a7:36:de:62:c7:46:9b:09:46:7a:0d:bd:15:71:
1a:50:e9:0a:c7:d1:53:94:bb:6d:db:4c:88:d8:69:bc:9a:91:
c5:3c:21:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:45 2024 by rpki-client on console-fra.rpki-client.org