Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12ED3052985D11EFB3E71C55762E951A.roa
File: 12ED3052985D11EFB3E71C55762E951A.roa (raw, json)
Hash identifier: ltPUtgHzGQwjuW5oOUPGlCHesIAzCQiaQZZ9faOLuG0=
Subject key identifier: 15:5F:B1:30:75:21:7F:27:80:27:B0:C2:BA:61:70:16:A5:FD:4C:C6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CBAD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12ED3052985D11EFB3E71C55762E951A.roa
Signing time: Fri 01 Nov 2024 14:24:59 +0000
ROA not before: Fri 01 Nov 2024 14:24:55 +0000
ROA not after: Mon 25 Nov 2024 14:24:55 +0000
asID: 62468
IP address blocks: 156.245.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52141 (0xcbad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 14:24:55 2024 GMT
Not After : Nov 25 14:24:55 2024 GMT
Subject: CN=6724e4bb-0e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0a:d5:8c:74:5c:ff:5c:f4:9b:b8:5e:74:58:
74:27:53:d1:6e:f7:74:9e:37:99:22:27:21:19:a4:
ed:54:85:2a:19:07:f0:3f:04:29:42:b6:a6:5d:e6:
2a:54:f4:be:81:c4:01:d7:ce:a3:89:20:ab:5f:2c:
97:e9:60:92:ce:55:7f:5d:55:bd:46:bc:c5:f1:b2:
68:ee:f8:5e:81:7d:84:b7:43:38:92:7c:0f:c6:77:
b1:38:54:81:8b:61:df:11:c9:05:d6:c8:54:62:49:
58:41:0b:24:81:5b:81:28:2b:d2:ce:57:0f:2b:41:
74:8c:8b:76:59:34:21:eb:58:18:52:be:80:ac:97:
bb:f7:9e:8f:16:b4:e3:18:5e:1d:e7:1e:f9:ae:b0:
8c:00:5b:cd:32:b8:a0:ff:b4:89:e5:cf:32:4c:c2:
2a:82:24:11:96:c5:b5:e1:9e:c9:94:a2:00:67:0c:
91:ee:fc:05:85:9a:bb:55:ad:65:95:2a:1c:04:0a:
91:71:f5:79:0a:b6:dc:0b:d8:1c:4b:c0:40:3b:60:
ac:8a:37:48:18:33:78:4f:df:98:92:4d:85:64:1f:
b8:c0:b9:29:8e:75:75:ea:50:52:f1:36:1b:d9:4b:
33:fe:81:9c:e1:e1:9c:ee:c8:31:06:19:df:3f:13:
3b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:5F:B1:30:75:21:7F:27:80:27:B0:C2:BA:61:70:16:A5:FD:4C:C6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12ED3052985D11EFB3E71C55762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.210.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b0:83:26:fc:f9:63:ee:d0:1f:fb:e9:c4:b7:a2:31:cd:68:
dd:fe:cb:7b:d9:03:a0:8f:dd:57:0a:3c:e9:f8:09:69:83:39:
f4:0b:b5:8f:05:88:8b:11:21:ac:86:26:cf:d5:51:b3:3e:38:
f3:76:ec:b5:02:68:57:01:d7:67:af:8c:57:20:2a:f1:8f:51:
7e:78:12:c0:ce:46:dd:b0:80:b0:24:2b:c2:32:38:fe:dc:bd:
92:47:2c:19:40:47:cd:82:3e:96:a4:9c:d0:76:5d:fa:51:50:
c1:79:78:0d:e6:a4:c2:83:35:cf:62:43:b5:f4:0e:c4:19:c4:
52:55:84:9d:06:e8:ff:30:30:53:c5:6c:7b:20:e7:3b:1c:e0:
93:1f:74:71:af:9d:8d:66:ad:19:f2:52:78:b9:87:43:e5:f2:
56:d8:07:29:1d:c0:69:f5:18:64:ff:8c:ee:ff:49:99:8c:b2:
4c:4a:97:cb:f4:83:46:ef:7f:c6:ad:67:48:a1:b4:8d:e5:cb:
39:73:f3:b8:0f:68:c8:86:e3:87:71:ed:00:a5:45:54:ac:28:
57:c7:18:e1:94:91:bc:85:ba:fe:71:7d:bc:b8:bc:b9:48:b7:
42:bc:3b:ca:74:90:ab:7a:4d:cd:fb:05:ff:74:71:fc:82:97:
60:56:76:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:20 2024 by rpki-client on console-ams.rpki-client.org