Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07E0F5E0A0C811EF8706CB63762E951A.roa
File: 07E0F5E0A0C811EF8706CB63762E951A.roa (raw, json)
Hash identifier: m1C/RX9uL/cE0C8x3hQHzHCb/eN9OfFoGJUXlzb7j4I=
Subject key identifier: 5D:B3:9B:DB:6C:3B:37:3C:61:E6:52:A8:9A:10:65:DB:F3:CA:20:7D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D152
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07E0F5E0A0C811EF8706CB63762E951A.roa
Signing time: Tue 12 Nov 2024 07:30:46 +0000
ROA not before: Tue 12 Nov 2024 07:30:42 +0000
ROA not after: Mon 02 Dec 2024 07:30:42 +0000
asID: 21859
IP address blocks: 156.225.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53586 (0xd152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 07:30:42 2024 GMT
Not After : Dec 2 07:30:42 2024 GMT
Subject: CN=67330426-854d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7e:8b:79:1e:ed:ac:45:50:68:21:bd:1d:4a:
f2:ed:ba:84:24:3f:5a:a1:ee:e3:15:5d:a6:6e:f4:
2a:2d:ad:55:8c:01:03:0a:92:a9:bb:30:76:82:03:
67:54:95:6f:c9:31:31:96:47:01:c8:bb:6c:e0:68:
24:3e:07:dc:88:b6:ed:70:71:21:59:77:fa:5c:38:
14:ed:eb:6e:fd:91:62:a1:38:b3:66:64:9f:c8:17:
36:cb:b1:fc:ef:68:8a:be:49:1c:cc:78:bc:c9:ff:
45:e3:a4:17:7e:d7:8a:26:34:06:49:04:4f:1e:ce:
2b:40:35:7c:05:a1:24:b0:ae:ad:4f:62:97:ab:1f:
e6:e9:a8:ee:f1:df:bd:b7:49:fa:0a:eb:b3:9f:80:
5d:11:a3:30:14:18:02:b0:54:e7:d0:ac:e5:de:8a:
7f:0b:0f:0f:a2:60:bb:4f:8f:56:ac:8e:d3:ee:90:
74:b1:9d:5d:ad:0a:0e:74:29:08:83:14:8d:d2:8a:
7a:0a:1b:db:b4:f8:6b:3c:95:cf:63:71:9d:b2:14:
ef:db:90:5e:f6:47:74:9c:6e:6d:1f:7c:69:51:80:
3a:57:aa:99:bd:d5:93:20:d6:1e:10:b9:a9:03:ef:
bf:78:e9:31:3d:d4:1f:28:2d:01:3b:da:0c:65:88:
14:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B3:9B:DB:6C:3B:37:3C:61:E6:52:A8:9A:10:65:DB:F3:CA:20:7D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07E0F5E0A0C811EF8706CB63762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.9.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:a2:a0:b2:08:b5:13:e3:4a:e9:01:80:2d:37:e0:b3:12:dc:
03:f3:59:bc:66:0b:e6:ad:7b:80:9c:f1:95:37:0e:b5:4a:85:
11:14:bf:16:ca:ea:ed:15:72:27:d0:77:aa:65:6b:65:d2:13:
3b:5a:a8:63:75:5e:68:1d:11:86:7b:1d:3e:3e:63:4d:7a:4f:
c8:96:dc:55:81:37:eb:d4:b5:86:c0:21:cd:e8:3b:57:ae:9d:
dd:80:ec:f3:6e:6a:31:61:ee:5b:7c:e9:10:1f:70:c0:82:ac:
54:f1:46:0a:08:f6:42:4b:23:4a:1d:a3:6d:ca:9d:fb:3b:e7:
94:05:b5:dd:50:c4:aa:60:4b:e6:1f:ed:b5:48:f3:18:c6:10:
59:49:ca:b2:4e:47:27:f2:ed:6c:a4:38:18:15:5f:e1:07:48:
78:32:65:fa:30:a1:1a:1f:0a:3c:f2:fa:94:fc:bc:67:9d:67:
8f:51:05:4a:0d:e0:da:5d:4d:c9:83:02:1c:0b:94:2e:c0:77:
28:c5:bc:15:93:f4:5f:82:fe:dd:d2:d6:43:bc:c8:59:38:a8:
bb:34:51:03:ce:e5:de:3e:97:52:29:0c:34:55:ae:f1:7b:a1:
a6:28:f8:f1:d5:24:d0:8e:ff:ac:5e:e1:19:e0:83:35:fa:b8:
87:5d:aa:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org