Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8DC7D18038311EF9F0EA30B017001B1.roa
File: E8DC7D18038311EF9F0EA30B017001B1.roa (raw, json)
Hash identifier: foTalpjzrej870HRT0Q6CQ8A8jKcguhNLWBJqKOSnXU=
Subject key identifier: 49:04:5D:18:43:6D:8E:F8:73:69:6A:F5:7F:6E:70:23:1E:6C:A4:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8588
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8DC7D18038311EF9F0EA30B017001B1.roa
Signing time: Fri 26 Apr 2024 04:17:35 +0000
ROA not before: Fri 26 Apr 2024 04:17:32 +0000
ROA not after: Tue 03 Sep 2024 04:17:32 +0000
asID: 138195
IP address blocks: 156.234.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34184 (0x8588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:17:32 2024 GMT
Not After : Sep 3 04:17:32 2024 GMT
Subject: CN=662b2adf-a075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:88:64:83:70:cf:5d:21:6d:a9:6f:97:b7:1c:
56:be:6e:80:1c:86:6a:07:de:12:ee:c1:a4:a2:f7:
37:e4:d0:a0:3c:31:41:ae:48:ba:70:b0:ea:0e:93:
70:f7:c4:66:19:6e:ea:bf:f2:73:70:d7:db:37:9c:
1d:44:32:d7:cd:c3:cf:7b:a0:5c:2f:44:7d:a2:91:
43:aa:01:8d:c4:01:da:e6:1f:a2:54:e6:f6:f6:ab:
fe:5c:72:e6:a2:4e:08:2b:14:a0:12:47:5d:25:c3:
b1:7b:0e:3a:a8:ec:79:2d:9b:8a:57:a2:4b:ef:4a:
78:53:f1:c3:a8:a7:d1:27:82:cc:dd:56:2b:41:32:
ac:6a:c0:24:ff:5a:85:be:16:dc:fa:5d:76:d3:f1:
0c:5c:f6:b1:38:5d:e1:f1:ba:35:65:c8:f9:bb:8a:
57:29:5c:a7:c5:0b:e0:84:62:9b:e0:03:f9:5a:e9:
07:cb:84:0e:f6:33:07:5f:49:1d:94:4d:af:77:10:
a7:7e:0e:91:44:cd:64:1d:f6:88:c7:e6:4f:aa:bf:
93:b4:a7:67:73:c6:16:d6:b8:fa:f3:b3:2a:38:4e:
20:e1:b9:d0:8d:f7:21:a6:e2:cf:6c:dd:da:08:eb:
f4:78:08:f7:60:e4:1d:92:dd:b5:63:4c:db:42:9c:
71:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:04:5D:18:43:6D:8E:F8:73:69:6A:F5:7F:6E:70:23:1E:6C:A4:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8DC7D18038311EF9F0EA30B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.18.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:8f:9d:53:b6:7c:6f:85:5d:d0:21:f1:5e:fb:13:f2:4b:c6:
59:6e:39:b6:7d:58:d2:04:9d:f3:ad:9e:0f:e3:d0:40:39:fc:
ee:eb:e8:bc:2d:d0:34:97:03:91:27:f8:a0:b7:58:22:a3:14:
90:60:19:53:f8:79:66:99:29:93:77:01:d2:c5:25:f5:c9:f2:
d6:53:8e:9f:58:1c:78:83:06:7f:14:e4:55:13:d4:42:ca:1d:
36:cd:f4:cf:ed:f8:a8:8f:3b:ad:fd:b0:37:2f:a1:32:ab:3e:
49:98:a0:9e:2b:b9:c0:15:b9:18:cc:c1:f7:b9:ad:ac:9e:f1:
2b:6a:0a:f3:3d:5c:00:cc:ea:b9:15:82:0b:82:54:83:68:5a:
56:ef:15:44:20:13:8c:1c:9d:c7:3f:62:ac:0d:2b:b6:4e:dd:
4b:2d:f2:38:71:b4:6f:90:10:cb:83:71:b7:64:24:58:df:81:
1d:71:6a:60:4e:7d:84:b2:32:c3:dd:f6:66:d4:c1:22:ee:19:
b1:02:58:a4:a5:46:1f:3f:a8:7b:18:5d:87:eb:b1:da:ce:3d:
08:d3:cf:bf:3f:5c:49:e7:71:4a:51:2b:c4:bd:0a:e2:fd:b1:
a9:69:fd:bc:c5:3b:2d:7c:6f:5f:ba:72:57:4b:53:8f:44:3e:
18:a6:13:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org