Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/072FA61E952E11EF80BF65BF762E951A.roa
File: 072FA61E952E11EF80BF65BF762E951A.roa (raw, json)
Hash identifier: Wr1FGGg312Kl6wdqo9oLCsbDBSBHi0pWLkbB2NKiVTw=
Subject key identifier: 64:3F:3A:EF:CF:F2:73:51:8A:11:22:58:04:65:34:77:DC:41:3A:91
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C95A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/072FA61E952E11EF80BF65BF762E951A.roa
Signing time: Mon 28 Oct 2024 13:10:39 +0000
ROA not before: Mon 28 Oct 2024 13:10:36 +0000
ROA not after: Sat 30 Nov 2024 13:10:36 +0000
asID: 203020
IP address blocks: 156.228.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51546 (0xc95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 28 13:10:36 2024 GMT
Not After : Nov 30 13:10:36 2024 GMT
Subject: CN=671f8d4f-7841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d3:ad:19:08:a1:c0:2c:48:3c:9d:4d:eb:b0:
48:b8:11:f8:86:91:9b:ed:68:87:ef:e3:bd:88:3d:
d5:f6:d1:ed:73:29:34:c7:d9:0b:9f:12:8b:d7:cd:
f7:ec:85:69:6b:11:dc:c9:2a:07:75:46:7e:69:85:
7b:5d:81:04:34:52:5d:36:0c:55:75:cd:a5:0c:4c:
0b:95:ae:8c:09:23:bd:1c:ee:ad:1d:13:13:a5:e8:
29:45:af:8e:3c:ea:24:84:01:be:07:a9:f5:62:41:
96:d9:15:08:6c:3a:67:33:70:6e:21:e2:3b:fb:0b:
ad:6c:6c:82:ab:0e:c6:5c:2f:19:94:0d:99:d6:a9:
b4:bf:7e:01:e6:94:d2:5e:f0:ca:53:d1:cf:cf:37:
c5:ed:f1:34:d2:5f:f1:3a:9f:ad:e6:6a:83:ff:1c:
f6:11:c7:41:ea:64:72:f0:0a:45:87:04:86:29:fc:
9d:98:c6:4c:2f:48:16:2d:bc:9b:b8:14:c0:cd:bf:
ee:0b:c5:64:e8:2d:56:c0:3c:26:d4:84:a5:c6:a3:
39:53:7f:3c:65:49:eb:85:38:54:72:94:57:73:ac:
a4:e7:0a:5d:eb:31:71:bc:e3:db:22:4e:b6:05:f9:
2b:03:3e:06:d8:33:0a:c0:7e:f7:5c:fb:85:68:c9:
e8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3F:3A:EF:CF:F2:73:51:8A:11:22:58:04:65:34:77:DC:41:3A:91
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/072FA61E952E11EF80BF65BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.25.0/24
Signature Algorithm: sha256WithRSAEncryption
06:5e:8e:e1:08:08:5f:fb:9a:0a:00:ef:70:b0:41:39:fa:37:
18:f9:15:0e:5a:18:ee:5d:7f:34:8a:e2:8e:2a:7c:83:49:42:
b7:78:60:40:10:4d:ae:c0:fd:3d:44:b1:10:a8:c3:0c:36:bd:
dc:44:d2:ed:8f:72:a9:17:08:5f:60:1f:b6:ed:c3:a2:1e:c3:
f5:bd:37:a5:8e:a4:bb:89:c7:8c:f0:bb:f7:35:ac:9f:c5:e1:
46:e9:df:25:39:7d:ba:4e:1b:c9:9c:90:88:6b:82:ad:65:aa:
6f:c9:e9:97:74:df:a9:c6:d7:37:56:93:28:5d:eb:8a:ec:be:
c7:63:f8:3a:17:85:81:ed:ce:f9:84:8e:da:7e:7c:70:78:7c:
10:6d:35:38:37:01:91:d8:31:9d:cf:1f:15:ca:cd:cd:43:a7:
a1:2b:ad:d9:01:3c:e0:b4:f5:36:2a:c6:6c:71:99:58:ac:ab:
ca:79:71:76:c8:60:4e:c6:48:b3:63:62:ca:26:37:65:ad:9f:
d9:13:1e:4a:91:4e:cc:9d:3e:da:d2:dd:5b:a1:3a:09:da:1e:
8c:c8:5b:56:11:4d:6a:fe:76:87:12:2e:15:c1:7c:5f:fb:28:
64:bd:7e:17:5a:2a:79:04:a9:a3:2d:13:9d:21:d9:37:cb:1e:
6a:62:f6:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org