Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C78F6E608FE11EFAA446536017001B1.roa
File: 0C78F6E608FE11EFAA446536017001B1.roa (raw, json)
Hash identifier: 0d0iPayoRvZO96F0AckaZT2njTr4g2c8ZdIsLSMQ8qw=
Subject key identifier: 75:E8:EF:35:B8:5A:E0:E7:1E:2B:DF:76:0D:6E:19:9B:CD:F7:8E:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8773
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C78F6E608FE11EFAA446536017001B1.roa
Signing time: Fri 03 May 2024 03:34:30 +0000
ROA not before: Fri 03 May 2024 03:34:26 +0000
ROA not after: Mon 28 Apr 2025 03:34:26 +0000
asID: 211392
IP address blocks: 156.239.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34675 (0x8773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 3 03:34:26 2024 GMT
Not After : Apr 28 03:34:26 2025 GMT
Subject: CN=66345b45-5cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:bd:d3:bd:64:2e:46:41:9f:8a:94:45:dc:a0:
ca:d8:ce:b2:b9:76:85:f0:34:f4:2d:1e:d7:5e:83:
73:a1:d3:fa:1f:73:e4:18:66:03:0c:d4:c6:c9:03:
94:59:3d:72:0c:75:86:a9:04:9a:af:03:22:41:ae:
88:16:49:57:0c:51:74:3e:4e:b9:b4:d6:dd:58:1b:
c9:61:64:4f:5b:e2:5b:1b:44:24:2f:ea:78:dc:8b:
74:7c:95:b4:99:a8:da:22:a6:3e:97:68:c2:83:fe:
ed:3f:a7:b7:b9:95:cf:a4:e0:1f:a2:04:4e:29:69:
6f:f0:0a:ac:5d:91:9c:5e:8b:a3:89:c2:be:c1:00:
64:5c:1b:ab:e4:6d:20:f4:60:81:51:e6:d4:75:4f:
54:30:e4:55:0a:8b:d4:70:d2:f5:f9:b1:f1:be:33:
30:4b:88:47:eb:ad:2d:44:3e:26:da:a6:7e:3c:8b:
bf:04:3f:92:a7:b2:be:04:bb:2e:ad:ac:c8:5b:a1:
fe:98:bf:34:c0:bf:54:cd:2e:49:22:5e:3a:56:97:
b3:25:ce:15:81:12:a3:c7:01:50:94:64:ba:72:4e:
f0:8b:9a:73:26:f3:82:02:3f:6f:a8:8c:89:2c:a3:
19:98:30:4e:fe:73:eb:98:15:df:b2:b1:13:a1:70:
1f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E8:EF:35:B8:5A:E0:E7:1E:2B:DF:76:0D:6E:19:9B:CD:F7:8E:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C78F6E608FE11EFAA446536017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.154.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:5c:4c:f5:b8:1e:8e:4b:b8:a9:54:8f:ea:c7:56:d1:aa:b1:
f1:e1:cc:c4:b3:15:0d:7e:1e:c8:bf:a4:40:74:70:f4:86:0f:
e4:c4:71:ea:e9:5e:b6:f5:ff:1c:9b:e2:34:42:e5:1c:f2:aa:
41:e2:33:2a:e0:a9:d3:64:64:f4:66:3b:1e:bb:e6:b8:59:a2:
b5:8e:ea:ff:ad:c9:fc:96:87:42:c1:e0:e0:22:d4:72:86:68:
92:07:3b:f0:22:16:4f:5a:c3:d7:f7:c1:e9:64:36:e0:03:b1:
b6:da:a8:a7:05:ba:b0:ea:8d:74:98:c1:49:50:9b:09:e5:3f:
20:46:f4:61:fd:58:30:cd:e8:41:17:90:23:19:25:c3:ad:17:
45:50:1c:dd:52:1a:72:b7:53:95:4a:c0:98:0f:1d:00:d7:33:
d6:f6:59:ea:87:28:57:1b:73:f9:f3:63:68:ae:4c:88:25:da:
ba:a4:20:cb:98:17:c7:25:40:ce:63:fd:47:12:05:2d:4d:72:
e7:c1:f4:06:09:5a:4d:7e:0f:e4:87:83:bf:70:be:64:c1:2d:
71:13:b6:df:fc:5f:f1:21:64:a5:8f:cb:1a:4e:e3:72:32:d4:
50:2e:f8:bc:0e:69:ad:7a:24:6f:4c:66:ce:3b:e7:7e:a7:dc:
79:8e:2c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org