Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A31227BCFE2211EEA0A03832017001B1.roa
File: A31227BCFE2211EEA0A03832017001B1.roa (raw, json)
Hash identifier: GwPkN/MpUGXSGv0ng/mU+jDXlNLRCTPVYB8f+YU+N1I=
Subject key identifier: 0F:5B:13:4E:CC:A7:B7:E0:7A:B5:A4:F8:E8:D5:67:E4:70:E4:DB:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 838A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A31227BCFE2211EEA0A03832017001B1.roa
Signing time: Fri 19 Apr 2024 07:58:41 +0000
ROA not before: Fri 19 Apr 2024 07:58:38 +0000
ROA not after: Mon 29 Apr 2024 07:58:38 +0000
asID: 5065
IP address blocks: 156.252.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 07:58:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33674 (0x838a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 07:58:38 2024 GMT
Not After : Apr 29 07:58:38 2024 GMT
Subject: CN=66222431-89d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1c:e5:e9:8e:00:32:89:69:8a:61:06:4d:e0:
66:07:f1:e2:cb:96:0f:4c:80:3c:bb:57:db:2c:ab:
52:69:b7:5d:d2:4e:c0:56:d5:5b:af:dd:3c:27:dc:
83:86:a5:6f:e7:64:c3:eb:f0:66:a1:d5:5a:b1:95:
3b:b6:32:bf:5d:a8:ac:6c:57:a1:c8:16:19:38:91:
b0:d3:d0:4d:4c:45:3d:bc:ca:eb:70:e2:50:b6:69:
5b:a9:8b:f6:03:fc:1c:41:df:fa:da:7b:ab:e6:e3:
19:8c:71:f0:cd:64:1e:17:f2:45:66:64:55:bd:96:
56:4a:3e:e1:d4:f2:c3:26:76:82:2d:2e:8c:ce:3a:
9a:bd:1e:33:d8:ab:63:cb:f1:79:9f:69:51:ba:63:
8c:5d:1c:7b:9b:2e:87:1a:20:f7:0d:99:f2:4e:9d:
b4:6a:eb:7d:29:52:21:21:10:e4:b3:a8:07:2c:21:
71:49:d4:d2:8d:81:6c:3e:1d:a2:e8:44:26:e9:6d:
7c:47:e0:cc:1d:3a:0e:0c:cf:7b:dd:5c:53:b7:7e:
59:2d:72:3a:79:32:19:bb:bb:fe:dd:24:a3:24:77:
02:0c:23:e8:23:31:0c:ad:44:d0:d1:6b:14:0a:80:
44:10:db:41:53:1c:a9:a0:fd:60:89:83:45:fb:b1:
1d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5B:13:4E:CC:A7:B7:E0:7A:B5:A4:F8:E8:D5:67:E4:70:E4:DB:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A31227BCFE2211EEA0A03832017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.24.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:49:e1:d1:d3:b5:32:8e:20:bb:89:b2:c8:a7:ef:12:47:8e:
97:b7:1b:5e:a1:9d:66:64:49:a2:70:dc:5a:ca:40:27:4f:4e:
3e:a8:56:2a:58:95:76:31:37:95:44:37:cc:81:f0:4f:eb:fa:
6e:d4:65:a8:f9:0a:bc:31:8e:40:82:2b:01:95:bf:7c:5f:c0:
7e:a9:0b:9a:7c:d3:78:b3:a5:c9:95:fe:87:e3:a8:38:a5:5f:
b1:57:e3:8d:79:60:49:fa:37:48:37:c9:da:bd:67:ee:9d:2d:
9c:8f:84:40:7a:37:0a:4a:14:56:05:5c:91:77:46:c1:9b:21:
00:f0:28:3c:5e:08:07:3a:82:f1:b0:08:e0:bd:83:1e:c2:48:
35:62:5b:97:95:64:6b:83:7d:1b:6f:4c:12:c9:2a:d3:6d:d8:
12:0c:b3:5c:56:a7:2a:70:84:f5:b9:60:38:9b:bb:6e:14:d1:
b0:de:f2:13:58:52:85:08:ad:b7:19:4b:fa:d6:13:fc:f1:db:
6f:96:d1:82:c6:c2:a0:82:bb:28:b2:5a:b4:24:86:b3:0a:18:
e6:f8:1b:02:df:94:28:12:d9:9a:25:f4:f3:c5:ba:82:20:3d:
df:ca:de:21:46:e6:d5:b9:be:d1:6d:1f:58:33:bb:50:f5:62:
0e:a5:3c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 07:56:22 2024 by rpki-client on console-ams.rpki-client.org