Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC54091A1D2711EE96D6F5764AD9E6FC.roa
File: CC54091A1D2711EE96D6F5764AD9E6FC.roa (raw, json)
Hash identifier: Vx+hFkY7c/fxU8iPdMneLeqcIHHewrH6RZFeeM0VObM=
Subject key identifier: BA:11:CD:CD:82:94:23:47:E7:53:BC:15:DB:FF:D0:A2:E3:58:54:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2EE8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC54091A1D2711EE96D6F5764AD9E6FC.roa
Signing time: Sat 08 Jul 2023 00:38:46 +0000
ROA not before: Sat 08 Jul 2023 00:00:43 +0000
ROA not after: Wed 10 Jul 2024 00:00:43 +0000
asID: 50183
IP address blocks: 156.238.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12008 (0x2ee8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 8 00:00:43 2023 GMT
Not After : Jul 10 00:00:43 2024 GMT
Subject: CN=64a8b016-08e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:35:24:73:d2:6d:37:be:c9:5c:ca:b0:df:ec:
61:57:d2:56:0a:60:58:55:84:65:5f:7e:bc:75:91:
bd:d7:35:a9:96:98:cf:1b:e6:37:9b:5c:72:a0:59:
16:8a:b7:1a:22:4a:ca:d3:00:8b:b8:ec:e2:6c:45:
25:f9:79:ce:9a:e2:49:90:b2:41:f6:14:5c:f9:c1:
2f:cf:12:7f:09:96:a2:bd:f4:5b:b6:30:13:37:3b:
77:6b:bd:19:a4:50:a0:a9:26:03:10:a4:5b:87:24:
f3:e2:fa:fb:bf:4b:53:31:a1:d1:8e:5a:c4:20:72:
de:fd:25:c9:9e:04:f1:59:0b:1b:23:71:b0:de:49:
15:54:38:fa:fe:3e:17:52:32:ca:2e:99:57:e4:b8:
32:fc:ec:63:ac:4d:cd:89:46:c0:ca:f1:f6:4a:58:
c5:28:47:1c:6f:09:79:f9:35:64:9f:3b:7e:8f:7e:
09:0d:62:48:30:46:f0:44:34:c8:e7:e9:f7:8d:e1:
54:b9:25:b9:fd:65:07:9f:03:21:db:ac:8f:12:74:
7b:9e:23:f9:e8:d8:61:40:23:78:c2:47:81:dc:b1:
3a:85:61:d6:ce:ee:34:3a:eb:b5:58:08:df:9a:d5:
d1:36:80:d6:aa:91:01:7e:4b:e3:e8:8c:03:65:15:
54:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:11:CD:CD:82:94:23:47:E7:53:BC:15:DB:FF:D0:A2:E3:58:54:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC54091A1D2711EE96D6F5764AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.192.0/20
Signature Algorithm: sha256WithRSAEncryption
13:36:e3:9b:08:e1:00:f7:15:45:ed:ae:ec:20:4c:20:5a:52:
f5:93:eb:58:36:6f:64:4f:a9:b9:1b:78:aa:2a:99:14:4c:8a:
66:b6:04:f4:69:03:da:db:0b:4d:5c:4b:ed:cb:e2:82:6d:3b:
dd:b3:61:a9:d4:8b:74:ac:71:fd:0a:fc:fc:15:aa:d1:9e:e2:
20:cf:d7:61:1c:2b:7a:85:24:cd:fc:fb:b0:ad:39:7e:02:0d:
7b:e3:f0:78:1e:35:1d:45:e0:2e:66:31:e9:db:44:c9:49:04:
94:09:64:1f:f7:d1:5e:5a:51:5d:f6:73:7b:1a:95:a1:b2:a4:
b4:ce:0a:8a:ea:cd:ac:e5:f5:8f:a1:e6:72:be:32:6c:1b:21:
f6:e5:dd:37:1d:c3:94:16:76:36:ce:12:fc:47:e8:e8:0d:dc:
55:0a:78:c4:c3:88:ad:6c:c1:2c:ab:27:6a:64:34:61:27:cf:
cf:ad:92:74:17:e8:5c:b1:2e:52:e4:10:a4:82:53:76:75:44:
37:00:87:7d:c7:cc:a7:16:81:93:c6:b5:bc:8f:2e:ee:ac:fa:
6b:90:77:1a:4d:c9:90:87:a9:e4:c2:99:1b:6b:9d:bb:a2:c7:
48:e1:85:c0:1f:db:87:e1:84:34:fc:ae:83:b3:a3:f9:d3:71:
3b:4e:44:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org