Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEB673B4014211EF92487329017001B1.roa
File: CEB673B4014211EF92487329017001B1.roa (raw, json)
Hash identifier: RquTkAcHK7yBBU2dqg6ZCA+TbI2TrcOMzmf+nXD65tM=
Subject key identifier: 15:0E:13:0E:2F:F0:AC:86:20:8A:0D:0E:84:0B:07:5F:E9:62:89:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8408
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEB673B4014211EF92487329017001B1.roa
Signing time: Tue 23 Apr 2024 07:26:32 +0000
ROA not before: Tue 23 Apr 2024 07:26:28 +0000
ROA not after: Sat 11 May 2024 07:26:28 +0000
asID: 5650
IP address blocks: 156.255.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33800 (0x8408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:26:28 2024 GMT
Not After : May 11 07:26:28 2024 GMT
Subject: CN=662762a8-1ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:3f:6d:e5:4c:c5:a8:88:23:61:2f:af:d8:
45:26:9b:ca:f5:51:1f:8b:07:89:ba:67:8f:e8:da:
9e:a0:86:21:e7:95:b4:a3:f3:7a:10:cc:55:15:af:
06:c8:c1:ef:95:fd:4e:b0:8f:d8:f9:22:30:01:e9:
45:94:1b:52:04:cd:6b:f7:61:3a:63:96:29:63:19:
ed:4e:da:3c:ca:32:7a:1e:15:fa:90:ff:92:38:bd:
a7:65:f7:17:38:03:e2:a0:71:9a:63:47:80:41:3c:
60:40:08:86:91:1d:4d:8d:ac:19:fa:2e:5f:7a:f8:
69:69:c1:64:0b:8a:e8:86:87:dc:38:b1:34:ea:80:
54:c4:ab:23:aa:4e:5a:fd:30:e7:c4:33:58:73:ab:
f5:45:7b:36:db:7a:44:e1:0a:35:2e:fb:c0:0e:bd:
74:0e:5f:ab:4b:23:bc:8f:3b:33:39:f8:d2:62:c0:
6c:90:bd:c4:6f:42:2b:46:fc:23:1c:1a:13:cc:3b:
e8:40:25:cd:83:f4:f2:77:66:b3:ee:25:88:a0:4f:
03:61:42:63:d6:b2:f7:c0:bb:bc:1b:29:dc:01:bf:
36:7b:64:1b:30:1c:0c:a0:44:6a:57:8b:33:8b:4e:
a3:d3:e0:40:f9:a7:8b:4d:f3:06:73:4a:71:c0:88:
0f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0E:13:0E:2F:F0:AC:86:20:8A:0D:0E:84:0B:07:5F:E9:62:89:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEB673B4014211EF92487329017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.16.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:bf:03:c9:02:21:7a:83:ff:da:03:3d:9c:09:49:a6:79:3b:
86:0a:1f:38:b5:57:8c:71:45:1e:7d:e0:97:18:21:24:3c:07:
0b:76:10:38:09:44:ac:de:7b:b9:63:ca:26:26:91:6f:74:e0:
25:86:d4:7b:a4:3f:a1:b2:0b:76:c2:4e:50:bc:e3:e0:60:7c:
7a:00:d5:49:0d:6c:a5:bb:17:e2:4c:a5:06:c2:45:6a:61:5f:
a8:69:b1:b8:29:be:42:ab:5e:58:11:40:46:62:7b:f6:5d:fd:
63:02:8d:58:9f:c9:0c:9e:4f:78:23:fd:2e:18:35:ba:ee:dc:
97:75:29:64:24:0d:51:33:f4:c2:dc:1f:9e:61:27:3d:85:9f:
c2:ca:c4:ff:39:72:06:44:a9:ff:11:e5:b6:e9:f9:51:75:27:
7c:7d:dd:8a:cd:7e:ee:f1:a7:6a:a5:87:97:f4:1e:f9:f3:73:
e6:b2:2d:68:1d:e2:fe:c2:a3:f2:f3:80:4a:7a:38:20:d7:b3:
ac:be:34:70:a7:67:22:6f:55:5b:77:8b:ed:96:9f:a9:fe:e5:
e3:bd:b1:83:97:71:dc:77:fb:9d:90:54:b8:ab:37:1f:24:fd:
59:41:ba:0a:d0:ae:21:2a:a9:89:49:8a:fe:90:17:fb:7e:2f:
73:40:7a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:59 2024 by rpki-client on console-ams.rpki-client.org