Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAB27CC0018211EFA092692E017001B1.roa
File: AAB27CC0018211EFA092692E017001B1.roa (raw, json)
Hash identifier: BNJAfZTPdcpS6/I+L8X3WwMNAzv/eEldObStJpBV8qM=
Subject key identifier: 85:30:F1:CE:D0:34:9A:80:AD:44:87:49:16:7D:65:2A:64:67:42:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8449
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAB27CC0018211EFA092692E017001B1.roa
Signing time: Tue 23 Apr 2024 15:03:39 +0000
ROA not before: Tue 23 Apr 2024 15:03:36 +0000
ROA not after: Sat 25 May 2024 15:03:36 +0000
asID: 137547
IP address blocks: 156.245.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33865 (0x8449)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 15:03:36 2024 GMT
Not After : May 25 15:03:36 2024 GMT
Subject: CN=6627cdcb-ac5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:42:b1:19:7c:47:c6:5c:0c:78:6d:1f:8d:bf:
ab:f6:eb:e1:b1:2c:f7:af:1e:3c:6b:54:e2:a0:52:
23:37:af:9f:26:4a:59:bd:17:e6:55:d5:83:1e:a2:
13:92:c3:73:5b:75:1b:a6:96:f8:dc:da:6a:a1:de:
91:d5:12:4f:51:7b:de:be:99:b4:1c:11:63:14:a2:
95:83:85:42:9f:74:6f:4c:9c:15:12:4b:e4:79:81:
1d:cb:ff:ff:e2:5c:09:36:9c:98:2f:34:aa:58:c9:
8b:38:eb:5a:78:86:b9:26:44:4a:7d:a5:af:46:6d:
90:38:13:96:0f:dd:a8:cf:cd:02:25:84:94:14:1a:
56:16:7c:b0:a9:78:7c:a3:79:ca:e4:63:87:60:e6:
ac:f8:6e:84:0e:d0:9a:ed:92:12:a5:ab:86:b8:89:
f6:b0:2a:64:07:49:14:97:7d:4d:74:03:3e:ab:27:
9b:88:57:1d:5f:5f:30:50:15:5e:f0:24:2e:c8:18:
c9:2c:6b:23:9d:e1:f1:c1:82:3c:cf:42:4b:f6:93:
aa:48:21:03:fd:5f:63:32:b0:a9:87:55:cb:85:e1:
08:c6:83:ab:ba:ca:5b:4d:e2:38:16:60:38:13:96:
f9:9e:88:55:ac:56:c5:04:ab:3e:8c:b8:5d:3a:33:
77:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:30:F1:CE:D0:34:9A:80:AD:44:87:49:16:7D:65:2A:64:67:42:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAB27CC0018211EFA092692E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.210.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:99:93:09:65:4f:5f:51:39:d1:13:15:c3:10:85:53:6c:ea:
99:aa:cc:9c:85:ac:00:04:b4:b8:22:71:86:53:61:89:a8:13:
e9:75:78:6b:92:f0:14:d1:6b:da:af:65:e3:dc:d2:62:5e:e6:
4a:9a:b8:50:8e:0a:dc:fe:77:6b:e2:74:0b:16:ef:18:e4:98:
5a:27:57:e1:aa:20:34:91:76:22:4a:83:4e:5e:a7:ac:c5:a2:
b5:a1:29:c1:9d:0b:68:6f:35:41:1e:bf:47:94:b1:59:12:5f:
92:55:55:dd:7c:cb:f0:4f:a0:93:59:41:33:2f:a8:47:88:e7:
67:18:92:5d:6f:08:6f:47:20:41:5d:9d:71:88:c9:1d:86:55:
13:c4:13:1d:c0:d1:d0:89:04:5e:10:91:b6:cc:c1:69:fe:bf:
c0:51:46:cd:bc:e5:63:0f:0b:6d:e0:02:d2:e4:35:c2:9b:4a:
b2:b7:5e:59:7a:10:8a:50:a3:cf:1f:fc:88:4a:1f:61:9a:5f:
0d:79:90:77:52:f8:aa:38:7f:bd:e4:7e:67:f1:f1:68:ac:f1:
ea:c8:f9:a3:10:16:3c:bb:a5:a7:b4:39:b4:51:fa:c9:b5:33:
c1:83:b9:5d:0b:4a:aa:d5:ab:be:8f:be:05:53:34:e5:83:a0:
1b:51:5b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org