Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/C826A9BACBE011EA8AB11F1BF8AEA228.roa
File: C826A9BACBE011EA8AB11F1BF8AEA228.roa (raw, json)
Hash identifier: S2bChUKGsfQAiJQ183YhdQy2q5jddxkEYopSyi4QCaQ=
Subject key identifier: DA:DB:08:67:2F:6C:6B:9F:D3:C7:73:58:D5:65:11:9C:F7:FD:87:57
Certificate issuer: /CN=F36A2303AR/serialNumber=AF035FC490695DAFB796F9C7375F738A3112FC3B
Certificate serial: AB
Authority key identifier: AF:03:5F:C4:90:69:5D:AF:B7:96:F9:C7:37:5F:73:8A:31:12:FC:3B
Authority info access: rsync://rpki.afrinic.net/repository/arin/rwNfxJBpXa-3lvnHN19zijES_Ds.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/C826A9BACBE011EA8AB11F1BF8AEA228.roa
Signing time: Wed 22 Jul 2020 06:01:28 +0000
ROA not before: Wed 22 Jul 2020 06:01:23 +0000
ROA not after: Mon 01 Jul 2030 06:01:23 +0000
asID: 328631
IP address blocks: 156.0.236.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/rwNfxJBpXa-3lvnHN19zijES_Ds.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/rwNfxJBpXa-3lvnHN19zijES_Ds.mft
rsync://rpki.afrinic.net/repository/arin/rwNfxJBpXa-3lvnHN19zijES_Ds.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171 (0xab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2303AR/serialNumber=AF035FC490695DAFB796F9C7375F738A3112FC3B
Validity
Not Before: Jul 22 06:01:23 2020 GMT
Not After : Jul 1 06:01:23 2030 GMT
Subject: CN=5f17d638-3063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:83:f7:b5:50:ea:7a:6b:18:51:30:bd:29:61:
06:6e:36:83:8b:00:ae:90:4a:08:b1:a0:d6:33:6e:
5b:52:0f:5a:09:f9:b2:71:00:9b:b0:6c:a6:15:32:
65:2d:16:e5:e8:83:4f:fd:4c:e0:7e:cd:5a:b7:24:
a7:cd:4b:33:7e:2b:90:68:df:b1:8b:39:9d:0c:4c:
53:80:ca:d7:ef:37:f2:44:50:fd:7f:cc:1c:77:10:
08:5d:65:8b:08:d4:51:fa:4e:4b:6e:65:94:74:84:
d9:4d:fe:33:7e:4d:4d:73:c4:00:22:b2:8c:26:59:
a7:c7:03:83:f8:a2:e6:98:87:1e:6d:dd:8a:85:2d:
3e:2f:2c:b4:23:c2:94:8a:82:e1:54:94:0b:f4:14:
95:30:dd:cb:3a:b7:50:a4:74:29:e7:0d:6e:31:21:
49:f5:46:f6:02:f8:18:2b:e4:43:e6:26:36:1e:e4:
3c:15:a9:e3:b2:28:75:3a:90:6f:5d:fc:b2:75:29:
c5:6b:1f:bc:8b:02:9d:c5:6c:23:d7:08:8e:9a:2e:
2e:8a:12:74:be:3e:61:26:b4:06:90:ac:f3:3c:92:
a0:2f:55:4b:e6:49:de:e0:30:ee:fd:69:77:41:05:
ec:28:66:4e:06:ab:81:e0:6f:08:33:82:ec:a7:84:
02:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DB:08:67:2F:6C:6B:9F:D3:C7:73:58:D5:65:11:9C:F7:FD:87:57
X509v3 Authority Key Identifier:
keyid:AF:03:5F:C4:90:69:5D:AF:B7:96:F9:C7:37:5F:73:8A:31:12:FC:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/rwNfxJBpXa-3lvnHN19zijES_Ds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/rwNfxJBpXa-3lvnHN19zijES_Ds.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/78CB6F96594311EA8E2E6161F8AEA228/C826A9BACBE011EA8AB11F1BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.236.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:1b:ed:a0:3e:00:50:b9:b7:a4:0d:1c:a2:dc:8b:d2:ce:f6:
4d:c5:c7:e1:c8:27:ec:8a:55:d9:59:66:67:0d:c5:f8:4b:0c:
84:fb:11:90:1f:3b:ac:40:2b:2a:27:f5:b2:84:5c:2f:80:21:
3d:3f:96:69:cb:66:8f:0e:32:10:f9:01:6a:f0:76:8c:37:0f:
f9:cc:87:00:15:a6:81:43:65:61:0f:39:c5:ad:00:28:4b:b3:
4b:c6:b0:7b:17:94:7c:f1:b8:06:a3:55:96:74:b6:d0:d3:d7:
9c:6c:b5:d4:af:bb:e2:af:52:91:c9:f8:54:85:9b:3e:80:48:
a7:d5:62:44:c0:32:4c:d9:3a:17:00:6a:70:89:4d:01:74:d3:
00:a3:68:ae:41:8a:f4:a4:c8:99:6b:6d:ea:b5:09:a5:d1:73:
0d:9b:7e:07:8a:04:25:0b:26:b4:10:a0:3e:be:9b:b0:86:da:
33:99:77:f4:dc:d1:68:25:ad:9b:bc:1f:aa:50:70:23:a0:6b:
75:35:e9:fd:d4:83:5f:fe:c1:de:12:4f:50:6e:b3:de:b2:32:
cf:1f:ff:f8:45:01:87:62:3d:e3:c5:c3:38:87:22:9f:98:34:
cc:6b:36:70:09:f6:f6:4c:e4:de:96:71:db:1e:86:2b:63:b5:
e2:82:79:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:07 2024 by rpki-client on console-ams.rpki-client.org