Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/128236BA5EF311EFB452749F762E951A.roa
File: 128236BA5EF311EFB452749F762E951A.roa (raw, json)
Hash identifier: r4gq81PydMVvAGMDLGLnWS/19U6MN7nMiKcqLlQLIXs=
Subject key identifier: 86:18:BB:54:4E:41:6F:B2:D0:C8:2F:F9:B0:8A:96:50:C5:73:68:BC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/128236BA5EF311EFB452749F762E951A.roa
Signing time: Tue 20 Aug 2024 12:52:35 +0000
ROA not before: Tue 20 Aug 2024 12:52:32 +0000
ROA not after: Tue 27 May 2025 12:52:32 +0000
asID: 399077
IP address blocks: 156.251.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43516 (0xa9fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:52:32 2024 GMT
Not After : May 27 12:52:32 2025 GMT
Subject: CN=66c49193-9f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5e:f1:f1:cb:3a:62:82:2a:0a:29:01:84:fd:
c8:05:ad:02:ea:40:7c:ca:9a:a6:2b:b6:2a:ce:4b:
fb:fb:17:06:ae:7a:ce:95:ef:1c:40:67:ce:6f:8f:
af:72:f3:ab:2c:98:83:76:3e:96:f1:99:ff:4b:be:
ef:c6:d8:e4:4a:df:ed:57:66:59:8d:a0:1d:e6:38:
53:11:66:65:e5:59:3d:40:a4:f8:a9:10:87:6a:db:
f3:36:23:3a:39:e1:b5:97:91:d8:fd:7b:b7:9c:56:
f8:12:aa:b4:42:20:c0:91:9b:9b:be:3f:9c:2c:1f:
d6:68:2d:e3:25:19:1b:c4:bb:ab:e9:55:bb:8c:9c:
b5:50:06:b2:c7:36:01:95:0e:17:53:11:c2:de:93:
97:dd:80:d2:07:bd:b5:82:57:2f:f0:fc:5a:69:61:
29:b1:41:79:3f:76:71:3f:61:cc:8e:69:f4:1d:ca:
34:50:4c:e3:f6:cb:73:98:7d:39:38:a7:ef:66:c6:
62:9a:98:29:23:fd:24:f6:df:d9:80:bd:c1:fa:a7:
79:dd:5f:b2:14:44:37:15:b6:47:0d:03:60:39:61:
f8:99:74:2d:36:c8:d3:6c:3c:5f:d2:96:17:79:3a:
77:6a:41:8e:8c:29:1c:d2:8f:f5:f8:78:d3:d2:bd:
14:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:18:BB:54:4E:41:6F:B2:D0:C8:2F:F9:B0:8A:96:50:C5:73:68:BC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/128236BA5EF311EFB452749F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.17.0/24
Signature Algorithm: sha256WithRSAEncryption
71:08:02:7f:0c:b6:42:65:0e:69:26:02:05:35:26:5b:a2:07:
f5:64:18:4b:9c:b5:13:d1:68:19:8b:7d:f3:39:97:c0:dc:bd:
c0:e4:75:cc:ce:d4:2d:cc:b5:95:96:47:38:fe:d7:72:69:eb:
6a:17:ca:d1:1c:69:dd:73:c0:1f:f5:13:fd:38:5c:e2:6f:40:
4e:ee:41:9f:f4:36:53:f4:ac:f3:35:40:ae:e0:4a:8a:6c:23:
8d:d7:3d:1a:6f:91:91:58:a2:1f:3c:98:74:52:4c:80:9b:9b:
80:9a:81:3a:28:60:57:cb:e8:11:77:58:70:c8:ed:24:d5:44:
b1:28:8e:16:6f:41:25:7a:8e:d8:fa:77:e6:e5:d7:04:af:06:
91:18:54:10:c6:98:b8:d0:7d:d7:3b:fd:c9:9a:a2:fc:81:cb:
13:f2:a0:b8:ef:0c:15:0d:cf:1e:0e:c4:da:87:d8:60:e5:aa:
91:66:f1:f4:ea:bc:da:29:d0:68:f7:2b:4f:58:75:59:1b:b2:
c6:0d:a0:3e:5d:41:d6:18:c9:32:b2:6c:a5:05:06:cc:01:90:
ee:71:33:f5:48:d2:67:b4:94:1e:3e:0a:d9:c6:ca:64:42:6f:
63:5a:2e:6e:c0:d9:3c:95:9f:3a:35:93:09:ed:42:61:c0:e2:
2d:07:b6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:19 2024 by rpki-client on console-fra.rpki-client.org