Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0954AE9C9F8F11EF8803A2AC762E951A.roa
File: 0954AE9C9F8F11EF8803A2AC762E951A.roa (raw, json)
Hash identifier: jWiIs/em196bjw8R4auTkRC1DU+RoCdZXsLT/eAooiw=
Subject key identifier: 74:8B:23:5E:29:5B:6E:FE:CE:AD:69:04:0F:68:65:73:F3:5E:DB:BF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D12C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0954AE9C9F8F11EF8803A2AC762E951A.roa
Signing time: Sun 10 Nov 2024 18:10:16 +0000
ROA not before: Sun 10 Nov 2024 18:10:12 +0000
ROA not after: Thu 21 Nov 2024 18:10:12 +0000
asID: 6079
IP address blocks: 156.243.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 21 Nov 2024 18:10:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53548 (0xd12c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 18:10:12 2024 GMT
Not After : Nov 21 18:10:12 2024 GMT
Subject: CN=6730f708-2596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c2:39:43:2a:63:6e:77:33:c5:79:93:d9:cb:
7d:b6:a2:dc:f4:a4:24:9e:ea:07:0a:28:d6:3d:e3:
be:ba:7e:8c:e7:65:b3:b1:8b:e1:92:f8:50:ff:e8:
7b:ec:97:84:52:49:bb:9e:4f:17:93:e7:30:bc:40:
c5:a5:c2:e8:93:27:a3:e7:4e:51:67:c9:32:9f:bd:
67:48:f7:ff:fc:75:a9:ca:e6:ec:d4:d1:5e:a3:0e:
97:e3:50:e3:e4:62:b4:4e:bd:02:1f:b7:a4:cb:2e:
eb:98:cd:87:31:b5:2f:4d:fb:71:cb:eb:77:93:fa:
7f:3d:2d:a1:33:3f:a4:0e:5c:43:1d:e9:07:b2:4b:
c3:17:57:4d:60:11:0b:c1:76:67:1d:19:a3:a2:35:
54:e2:b0:4e:39:f4:9e:5f:90:f7:93:49:a7:4c:e3:
71:07:91:03:0d:78:a9:7b:97:df:c7:6b:41:19:14:
c6:f5:39:6d:42:2b:b3:a4:71:be:f5:4a:48:80:37:
92:2c:3c:1d:3d:4d:f7:a9:ed:8b:8b:56:40:19:20:
1c:8e:e8:74:fb:80:93:70:66:10:24:2c:48:42:02:
bc:33:49:2b:19:d7:9b:52:13:0d:eb:57:86:31:2c:
7e:ba:a4:20:a9:54:c4:cb:b8:08:0d:b0:26:60:1f:
4b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8B:23:5E:29:5B:6E:FE:CE:AD:69:04:0F:68:65:73:F3:5E:DB:BF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0954AE9C9F8F11EF8803A2AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.128.0/19
Signature Algorithm: sha256WithRSAEncryption
8b:2f:94:83:3d:70:50:47:c5:47:98:c0:32:9a:07:34:de:da:
61:9e:c2:6c:00:22:63:e1:b5:20:1e:89:93:72:a4:ba:d0:43:
2c:47:51:74:14:d6:56:1c:cb:00:b1:4d:e8:74:de:22:b4:7b:
b3:1b:f9:ad:ea:0c:69:35:b6:32:1d:ba:ad:a6:56:36:7f:90:
79:57:cd:a9:ba:f2:d1:48:0e:51:ef:a3:28:35:cd:40:69:29:
17:82:3d:d6:5c:93:d9:7c:9e:55:00:3a:f3:f5:c9:fb:23:61:
c8:a4:47:3e:bc:42:aa:96:6e:52:b0:e2:6e:82:aa:66:2b:c7:
ed:00:62:81:97:5f:27:ad:82:66:8a:df:ad:07:93:52:25:ef:
56:5d:4f:48:3f:76:ad:7b:31:7e:89:d4:1d:fb:04:ca:5d:31:
e8:34:22:4c:9b:88:97:1c:7e:7a:e2:7a:01:56:4a:a5:05:61:
06:50:51:4d:f8:34:9a:f3:65:71:4d:7d:01:7b:af:50:f7:2c:
5b:bc:76:fa:9a:15:c9:10:75:a9:f4:e0:34:3f:f4:83:df:2b:
7b:65:f0:fb:2c:9b:3b:1a:a4:4c:e8:7e:92:d0:81:a7:c2:d9:
56:a9:16:26:d0:cc:ba:c3:75:76:1a:1e:76:60:bb:cb:50:4b:
fd:4b:9f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:18 2024 by rpki-client on console-ams.rpki-client.org