Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05706512A2CB11EE957E0236D25BE465.roa
File: 05706512A2CB11EE957E0236D25BE465.roa (raw, json)
Hash identifier: d1SLfY5C5bEod+7m4uARxjlxvTl1NV63Hu4Pm6G1Z2A=
Subject key identifier: 45:C0:77:E1:A9:4D:23:98:0E:AF:8B:E3:B8:C6:4F:0B:5D:78:D0:A8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 58F8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05706512A2CB11EE957E0236D25BE465.roa
Signing time: Mon 25 Dec 2023 02:12:15 +0000
ROA not before: Mon 25 Dec 2023 02:12:12 +0000
ROA not after: Mon 13 Jan 2025 02:12:12 +0000
asID: 139057
IP address blocks: 156.251.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22776 (0x58f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 02:12:12 2023 GMT
Not After : Jan 13 02:12:12 2025 GMT
Subject: CN=6588e4ff-e95c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ce:37:35:68:b4:4a:f1:c1:8f:5f:31:e2:8e:
55:ac:8d:f2:b2:36:0d:8c:b1:ed:14:e7:f5:8e:a0:
df:a5:4b:57:3a:49:fd:0b:3d:14:4d:95:dc:fc:1e:
75:5c:66:93:de:37:af:82:55:57:09:dc:df:ab:4c:
57:81:9a:a9:1b:b7:e5:08:06:e4:73:2c:7f:05:79:
7a:f7:3f:ce:92:43:af:56:97:15:8d:04:ec:64:fc:
c6:cd:96:d3:c2:04:f9:ee:90:d8:52:f6:30:dd:3c:
b1:3f:37:9c:ad:c4:af:6a:79:e1:2d:57:0c:44:19:
fc:e4:75:06:a2:25:59:8a:11:4f:9f:64:6a:c3:7f:
e2:67:64:51:ab:49:0c:56:54:d8:d9:84:d4:0c:47:
14:44:72:6d:fb:40:0b:17:84:6b:12:2f:9e:10:0b:
d5:39:4d:f3:9f:67:d5:7f:bc:b8:aa:f3:0e:4a:8e:
d4:d8:65:0f:f6:42:5e:98:34:38:0b:ec:a9:0d:05:
ba:c3:45:03:9e:b4:15:53:a5:36:25:61:f4:d5:7c:
bd:75:96:74:e9:50:de:b9:5a:57:37:8b:6d:c1:2e:
4d:cc:b3:b8:d8:ac:dc:72:c1:85:3f:c5:59:95:f1:
1a:43:6c:2f:37:c0:e7:c7:7b:85:9f:54:df:29:31:
ed:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C0:77:E1:A9:4D:23:98:0E:AF:8B:E3:B8:C6:4F:0B:5D:78:D0:A8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05706512A2CB11EE957E0236D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.76.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f1:9c:71:17:3b:2f:55:8b:1a:d9:f8:96:9c:4c:d2:da:a8:
84:c6:05:e4:19:3b:c4:11:02:66:24:48:8e:2e:1b:d5:8d:8f:
91:e7:80:4d:be:de:f1:ab:c8:4e:ef:40:0d:17:76:80:53:96:
72:58:31:ce:02:96:9e:91:8d:7c:98:06:7d:3e:a9:ea:59:de:
fa:66:f1:1e:c8:05:fc:5d:c1:1e:e5:00:90:9d:7a:97:7d:f8:
3b:34:7c:93:a3:89:43:1e:33:56:54:f9:a1:13:3a:97:c4:18:
6c:05:63:43:33:7b:8e:07:61:da:27:6f:6f:4f:17:ed:69:0e:
8e:8a:95:63:da:b9:a2:aa:8b:0b:90:f3:c0:d3:9c:87:c6:57:
27:3b:71:fc:11:f3:e2:84:40:ce:cf:39:01:73:74:bd:0e:2a:
ea:3a:bf:de:a9:bd:3f:c4:59:a0:d0:38:ca:31:4f:bf:be:9b:
a9:57:a4:5b:df:c4:42:17:19:38:dc:3a:0a:a5:cc:9f:a9:dc:
a3:c6:a0:e8:51:26:c1:0f:93:0c:77:b6:ca:c4:45:31:4a:66:
6d:43:80:ed:a0:78:ef:8f:3e:24:85:d2:42:c3:db:d4:04:29:
ec:b9:2a:17:f7:9a:62:b2:79:72:f2:6a:19:a6:7b:48:16:74:
bc:ea:96:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:16 2024 by rpki-client on console-fra.rpki-client.org