Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA40543C014211EF9D60DF28017001B1.roa
File: AA40543C014211EF9D60DF28017001B1.roa (raw, json)
Hash identifier: zUR5Xet2tCbrdU9FW3wq98sgNyG/lQv6XoAxyopJlwk=
Subject key identifier: 5B:9A:49:15:09:FE:04:18:FA:94:03:CA:E0:FD:C8:04:47:B8:A8:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8404
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA40543C014211EF9D60DF28017001B1.roa
Signing time: Tue 23 Apr 2024 07:25:31 +0000
ROA not before: Tue 23 Apr 2024 07:25:27 +0000
ROA not after: Sat 11 May 2024 07:25:27 +0000
asID: 5650
IP address blocks: 156.255.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33796 (0x8404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:25:27 2024 GMT
Not After : May 11 07:25:27 2024 GMT
Subject: CN=6627626b-2337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:83:8c:62:6a:01:00:b9:5f:40:57:63:7a:bd:
85:0f:76:6d:b8:c3:db:e7:33:8c:6d:ac:13:e5:45:
a7:68:ae:16:10:c3:0f:fd:0f:38:00:66:40:44:32:
8a:86:7e:f4:44:8b:65:02:61:30:cd:6c:bb:52:69:
35:bd:b5:3b:e7:f0:fa:19:c8:e1:1a:f3:e7:48:06:
44:58:87:1d:5d:45:38:47:7c:e0:77:3f:e4:f2:e0:
5e:88:19:fb:ef:ed:c3:53:1c:90:72:66:96:02:c3:
db:eb:9a:14:1d:8c:03:68:d1:24:31:d1:c0:ad:f0:
49:67:62:fc:e3:b7:45:c7:ed:36:1f:3d:db:a2:42:
84:9a:09:be:ab:21:43:64:72:11:a6:7b:59:48:b0:
c7:25:57:45:43:9c:77:6f:c9:25:4a:93:1c:f9:68:
39:bd:bf:ee:2f:1b:e8:c2:b1:a5:13:1b:a8:33:90:
4a:5e:bc:b1:40:5e:b1:46:5d:b2:02:a6:29:67:0c:
8a:29:60:c1:27:34:e8:87:7d:b2:21:20:45:14:43:
ff:6f:7e:cf:53:05:18:bc:e7:a0:ca:fc:1b:57:24:
a6:3f:03:b5:3b:1e:37:6d:7a:79:10:3e:05:9a:11:
77:8b:3c:ab:96:86:e0:23:43:9e:a8:a0:de:57:77:
13:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9A:49:15:09:FE:04:18:FA:94:03:CA:E0:FD:C8:04:47:B8:A8:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA40543C014211EF9D60DF28017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.20.0/22
Signature Algorithm: sha256WithRSAEncryption
93:16:df:d7:28:2c:8e:31:46:4b:8b:2d:f0:62:39:5e:f3:fb:
2b:b9:36:cc:bc:58:15:ca:50:17:e4:a4:8e:88:80:71:19:b8:
37:e5:91:26:25:be:7e:25:23:45:98:29:9f:e2:d4:8f:d0:36:
a6:86:99:2a:d4:32:f2:7c:b1:5a:93:ba:9b:eb:50:c1:85:f2:
6b:bb:8c:65:4f:cb:83:7d:d8:84:18:bf:c9:90:fa:ac:2e:cf:
85:48:f5:6d:db:10:e5:e4:d7:9e:f5:c6:4f:70:5c:54:05:0e:
96:8a:d0:bf:72:99:65:3e:2b:25:f1:6e:e0:dc:45:70:5b:e5:
7f:a9:6c:91:3f:8e:78:7c:87:c5:93:17:e7:96:ab:98:a2:0e:
b9:42:e9:ff:46:94:28:26:95:4d:ba:a0:59:82:79:52:a5:e5:
68:d8:59:95:b2:05:19:39:37:f9:07:da:1c:1e:db:d1:4e:78:
de:26:1c:6e:e1:52:52:8b:a0:77:8b:8e:8b:72:9d:90:41:c9:
1c:70:66:90:02:53:aa:b9:1a:10:53:b8:61:aa:80:fd:48:7e:
b3:8d:15:82:e3:76:80:dd:21:e6:77:f9:f4:cd:ca:63:3c:0e:
96:06:db:22:84:34:04:6c:dc:7d:ed:fe:26:7d:f2:c8:46:ee:
02:9f:22:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:50 2024 by rpki-client on console-ams.rpki-client.org