Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F86C9680278011EE96ACC71A4AD9E6FC.roa
File: F86C9680278011EE96ACC71A4AD9E6FC.roa (raw, json)
Hash identifier: EMpWWJVll74gP33NB1EXrE57Dn1WQIblyx1wU0nVNKg=
Subject key identifier: CB:79:36:F1:43:CD:59:1A:34:15:05:2D:C2:FF:FE:75:22:2F:2A:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 31C1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F86C9680278011EE96ACC71A4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:42:17 +0000
ROA not before: Fri 21 Jul 2023 04:42:14 +0000
ROA not after: Thu 13 Jun 2024 04:42:14 +0000
asID: 22773
IP address blocks: 156.235.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12737 (0x31c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 04:42:14 2023 GMT
Not After : Jun 13 04:42:14 2024 GMT
Subject: CN=64ba0ca9-ef75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:54:16:c5:84:18:0e:e6:f4:f9:d3:d6:a8:43:
73:5f:11:4e:76:39:9e:0e:10:38:0a:95:20:64:d0:
da:a9:5d:c7:9b:d1:78:77:13:50:26:1b:b7:c9:eb:
56:71:24:35:b9:71:da:c1:1f:5c:91:60:5c:15:91:
82:8e:74:0e:12:32:fe:fc:43:5d:e8:ff:c8:a5:31:
f0:13:ec:96:d0:b8:6c:14:d0:32:68:33:ee:87:3a:
0c:66:c1:4d:a4:bf:bb:b0:f7:41:5b:6f:d7:76:ba:
2f:8d:0b:fc:bc:1f:7b:20:e7:96:24:4c:3c:42:65:
99:9e:ea:e8:29:8d:27:0a:e0:bb:ee:da:8c:fa:62:
93:c4:a2:46:91:77:97:28:55:4a:2c:9c:79:ce:b9:
cc:ab:4f:5f:dd:ad:a1:cf:22:4b:59:ef:df:a0:33:
2c:0e:0e:18:d4:92:03:81:76:1b:61:0a:6c:01:b1:
4c:fc:e2:5f:9a:c5:ef:e5:b1:16:db:aa:f6:32:a0:
33:40:f6:20:94:22:9a:7a:f3:0e:ba:a2:03:ab:5e:
f7:dc:d7:a8:a8:73:42:c3:e1:9a:b2:88:57:38:5d:
59:b9:c1:ee:ff:74:43:90:45:56:5e:61:6e:7b:b8:
62:d9:51:cc:60:7f:aa:ba:fb:30:ba:7a:23:3b:b1:
7e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:79:36:F1:43:CD:59:1A:34:15:05:2D:C2:FF:FE:75:22:2F:2A:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F86C9680278011EE96ACC71A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.16.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:df:a6:f0:1a:98:b7:cf:ca:cc:f0:94:f4:de:6e:94:73:6c:
4e:81:3c:fe:d0:fd:1b:27:85:8e:40:a4:71:c0:c9:be:1e:75:
2b:f3:1b:fd:f3:c1:62:ec:92:b5:b9:f8:7e:f0:35:c5:19:59:
d1:25:32:7d:10:5a:9b:09:a7:2c:25:a9:1f:45:d4:2c:8e:70:
0a:39:6d:b9:76:b0:10:e2:6a:24:bb:49:bf:50:8b:b7:40:70:
52:c4:c7:c1:33:cf:d4:d1:08:51:f9:59:6c:95:49:d8:78:35:
80:3e:76:88:48:13:b9:b2:01:ae:4b:f1:bb:7f:c8:75:4b:91:
bf:0c:c9:0b:c6:e6:b0:07:2c:dc:5f:e0:e6:9f:2d:2e:8f:36:
da:0c:f0:60:e8:3c:fe:21:3b:13:87:f0:8f:55:33:d7:fd:28:
90:9a:05:12:25:22:89:47:59:cc:ad:66:fb:b3:38:bc:1c:0a:
68:1d:13:5f:e1:19:0d:cb:6c:e0:cd:47:3c:5b:b5:7c:b6:bc:
b0:9c:c3:17:8e:5d:94:d2:41:86:9e:c4:f2:76:78:db:58:95:
3a:31:34:cb:75:eb:52:4a:bd:a1:b3:05:fd:88:8f:be:e6:f3:
ab:e3:1f:30:65:be:bf:c4:be:bd:89:5c:43:de:72:36:20:1e:
75:9a:ec:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:53:09 2024 by rpki-client on console-ams.rpki-client.org