Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07B981045F1411EFBB83D080762E951A.roa
File: 07B981045F1411EFBB83D080762E951A.roa (raw, json)
Hash identifier: 2Sq6D/5eXVWFnVP4ivEpnOdblGRvwO+qwDuLdTWrXh0=
Subject key identifier: 11:25:74:82:9B:24:9C:02:B2:CC:C5:D9:EF:D8:39:41:2A:6A:36:DD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: AA4C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07B981045F1411EFBB83D080762E951A.roa
Signing time: Tue 20 Aug 2024 16:48:31 +0000
ROA not before: Tue 20 Aug 2024 16:48:27 +0000
ROA not after: Sun 01 Dec 2024 16:48:27 +0000
asID: 5065
IP address blocks: 156.229.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43596 (0xaa4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 16:48:27 2024 GMT
Not After : Dec 1 16:48:27 2024 GMT
Subject: CN=66c4c8de-a41d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:29:e9:e5:d3:1b:da:5b:49:1d:5f:84:18:3b:
e2:bc:19:1b:b4:88:aa:3c:22:00:0e:73:1a:5f:79:
7c:0f:a2:f5:c1:65:b8:e5:98:31:96:68:f9:f6:8c:
c5:8a:16:d3:51:f3:3d:0a:d5:9a:3a:b4:8c:d6:f5:
4f:78:b3:a4:2a:19:14:28:ba:a6:ae:48:2a:d3:10:
75:40:ec:82:7f:ef:3e:ba:54:b1:7d:37:61:18:a1:
58:e2:95:8b:2b:b2:9d:54:63:5a:61:d6:52:33:29:
8d:b8:4b:05:03:ce:f4:6f:fc:d3:09:13:ab:cd:37:
07:28:08:49:51:f3:82:fc:38:da:63:a6:5c:63:dc:
11:29:ee:4d:e1:16:0d:92:4e:ae:e1:1d:2e:55:49:
22:06:6c:6b:ae:2e:8b:43:46:c2:84:cf:07:7f:1c:
0c:5c:58:93:16:67:af:fb:84:0a:dd:47:0e:1c:6d:
72:d4:5e:3c:ce:24:56:c8:c7:20:d3:8a:0c:ca:6b:
72:9f:55:fd:3c:5b:d9:ba:2d:0a:44:87:96:6e:0c:
90:99:9e:ae:9c:5f:64:b8:84:af:92:28:27:f6:d3:
99:d4:a4:21:08:41:17:1a:d1:a2:34:08:c3:bc:a0:
07:ef:1d:e0:9c:df:58:9f:e8:04:86:c9:17:83:66:
e7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:25:74:82:9B:24:9C:02:B2:CC:C5:D9:EF:D8:39:41:2A:6A:36:DD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07B981045F1411EFBB83D080762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.61.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:c4:74:ea:cc:87:16:68:ce:e0:8b:55:d4:89:58:a4:3b:34:
15:1e:62:2e:85:88:ce:fb:4d:82:27:61:ae:ea:9b:eb:3d:17:
de:da:49:e1:2b:3f:0a:fc:c1:c9:06:ab:ac:12:ec:f3:c4:2e:
ff:f9:83:96:58:f2:e8:16:5d:8c:da:d9:12:b7:94:81:1b:fc:
86:92:c9:02:c8:b0:a8:1d:d7:d8:60:34:53:67:89:25:6b:24:
2a:1b:4e:85:37:2a:b1:79:1f:f1:0a:71:a9:7b:86:18:d9:24:
7c:64:df:41:d5:c0:f9:9a:96:94:4a:a4:4a:5f:98:8c:ad:c3:
93:30:5b:a1:f2:54:90:a1:26:77:72:85:0a:ab:d2:bd:d1:cb:
c9:83:29:35:52:fb:0c:68:23:0b:af:4a:52:43:d4:fd:5a:94:
b8:47:cb:7b:26:a2:ba:6e:ca:56:83:c3:4c:b0:3f:15:7a:10:
47:63:94:2b:12:5b:b9:a6:71:b8:1e:71:ae:16:d5:c3:3c:61:
6f:38:20:14:a1:f4:08:85:c4:a3:2f:4a:52:52:64:09:70:16:
d1:76:e5:76:38:e2:1b:14:52:b5:80:71:45:8f:61:e1:52:0f:
5c:6f:95:3e:4d:72:2a:2f:f7:2f:d9:c3:84:e8:50:75:a1:54:
90:54:1c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org