Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE8C2606039311EF96E1B20E017001B1.roa
File: CE8C2606039311EF96E1B20E017001B1.roa (raw, json)
Hash identifier: R+bvr7cV67WI99Wlux+QKHU8Ssk59fO2hl4XPa6dA3Y=
Subject key identifier: 18:8D:9F:27:C1:E9:1D:A2:55:4A:AC:F3:D4:40:EC:D6:54:2B:56:9A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8646
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE8C2606039311EF96E1B20E017001B1.roa
Signing time: Fri 26 Apr 2024 06:11:24 +0000
ROA not before: Fri 26 Apr 2024 06:11:20 +0000
ROA not after: Sat 07 Sep 2024 06:11:20 +0000
asID: 138195
IP address blocks: 156.241.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34374 (0x8646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 06:11:20 2024 GMT
Not After : Sep 7 06:11:20 2024 GMT
Subject: CN=662b458b-04d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a7:ec:81:21:4f:82:87:4d:ff:ce:cc:d2:99:
37:82:20:f1:71:99:4c:2c:a2:59:66:88:89:cb:76:
e6:13:2b:9c:ac:81:35:91:9b:f5:4e:bf:c7:b5:c8:
85:7e:6b:c0:6b:77:27:7d:5a:15:f5:5b:73:5b:5e:
53:dd:e4:eb:c6:e8:c1:a0:95:e0:1a:87:f8:81:8e:
f2:38:5d:32:6a:00:f8:ab:57:01:65:47:0f:f3:32:
05:2f:e3:e7:e1:ea:80:9f:f1:70:79:ab:e2:fb:18:
00:0d:95:23:54:4b:fd:75:a0:3b:49:49:f4:08:d9:
2c:14:0e:a8:77:54:1e:39:8a:49:0c:93:1b:ac:48:
c4:7d:0b:95:cb:a8:07:a1:1e:e3:63:11:58:3b:e8:
06:87:01:27:45:bc:67:7e:7c:d6:33:09:4b:f6:b0:
3b:8c:ea:36:71:bc:59:c5:11:e3:24:d5:84:5e:74:
c9:9b:a5:eb:fb:31:5f:be:6f:55:d3:47:59:c8:ea:
2d:9d:c0:2e:57:9f:b6:0d:06:f8:0a:0a:07:7c:74:
53:48:c9:28:d9:68:5f:92:c9:7e:23:4f:be:13:72:
cc:0f:95:c0:48:47:87:b6:92:4b:96:1e:4f:21:e2:
5a:52:89:7a:77:23:92:5e:04:13:e6:e2:3e:ac:51:
9b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8D:9F:27:C1:E9:1D:A2:55:4A:AC:F3:D4:40:EC:D6:54:2B:56:9A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE8C2606039311EF96E1B20E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.32.0/19
Signature Algorithm: sha256WithRSAEncryption
75:6c:ff:6e:fb:4e:c6:95:6d:82:ee:9b:f1:82:a1:e4:73:60:
b6:70:c0:20:03:f9:29:27:4e:e2:60:05:93:05:d6:fc:89:ed:
43:4e:ec:b2:58:4f:a8:13:b3:31:a7:30:1a:f7:df:a2:ea:67:
c1:20:2e:7c:2e:36:04:53:4b:2a:1e:30:fe:59:02:4f:54:0a:
62:84:c7:16:11:dc:65:7e:d8:1c:28:52:74:cf:24:c0:eb:75:
25:19:5a:df:31:f7:cc:be:23:41:9d:05:af:57:3d:29:ba:90:
96:74:3d:5c:ea:0f:99:ae:da:a0:f6:9e:b6:5f:08:a1:a5:80:
6d:7a:a7:04:0f:b5:ba:cf:01:10:2a:68:4c:87:da:e9:b9:45:
d2:f1:f7:59:f2:11:6e:0b:6e:11:d4:9c:41:e3:e8:1d:0c:65:
90:5e:60:29:5f:f0:20:20:ad:36:31:19:4d:7f:84:24:ae:db:
85:21:54:d9:cb:25:32:2c:6c:80:53:fb:4c:e8:ec:74:79:d2:
41:bd:5d:b6:c8:ea:88:24:6f:5e:3e:35:d0:41:6b:11:c6:58:
d3:24:ed:4b:25:f7:c6:a3:dd:8a:0e:f9:16:ea:b9:a3:b7:60:
b6:43:ab:3a:8d:16:fa:b6:5c:b7:a6:1f:d6:34:fb:d1:36:59:
6b:69:66:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:47:02 2024 by rpki-client on console-ams.rpki-client.org