Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14B269EE983911EF96318F74762E951A.roa
File: 14B269EE983911EF96318F74762E951A.roa (raw, json)
Hash identifier: CnyTL7jtk/Xn19xstBKyg311kXo/ekO2d4Lwpouxh5Q=
Subject key identifier: AC:CF:08:FB:9C:C7:70:B2:AE:CC:77:C1:80:2C:17:3B:45:30:69:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CBA7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14B269EE983911EF96318F74762E951A.roa
Signing time: Fri 01 Nov 2024 10:07:20 +0000
ROA not before: Fri 01 Nov 2024 10:07:16 +0000
ROA not after: Mon 25 Nov 2024 10:07:16 +0000
asID: 62468
IP address blocks: 156.245.200.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52135 (0xcba7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 10:07:16 2024 GMT
Not After : Nov 25 10:07:16 2024 GMT
Subject: CN=6724a858-b62e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:62:d1:fd:01:ca:2a:42:97:7c:71:61:60:ef:
1c:ef:3d:03:42:fa:2d:54:36:3d:06:8c:af:af:ec:
8d:ea:10:33:62:6a:a6:9f:50:1e:dc:3b:1e:93:2b:
07:f1:62:bc:f8:26:9c:28:27:12:20:bb:6c:74:4e:
b7:25:b2:04:c2:a8:67:a5:b0:48:60:c2:95:46:85:
cf:a7:dc:4e:d6:a8:cd:07:56:b2:b7:c9:1c:f9:4e:
59:53:03:e6:56:ed:b1:7c:79:52:52:f0:97:4e:04:
8f:9e:92:72:ba:72:1b:18:19:c2:95:48:b8:4c:39:
c9:3a:d3:d0:bd:43:85:6c:22:21:60:09:84:ef:08:
47:63:0e:79:a8:d0:e0:c5:8d:13:e8:3b:b1:51:3d:
8e:93:d2:c8:46:bd:19:30:6d:9d:3e:48:4d:42:e5:
43:e7:a4:aa:16:4c:bb:2e:fe:44:3a:64:43:61:7c:
3f:f7:1b:82:93:de:4b:8f:91:de:1b:65:f8:90:d5:
70:f3:62:81:30:13:cd:b1:6a:c6:43:e7:3e:00:0a:
65:43:6a:35:29:e3:c0:48:fc:e4:4f:f2:15:90:b0:
0b:d4:cd:c2:f0:b3:5d:86:da:a1:0f:1f:b5:a6:db:
2c:6c:39:ef:eb:77:df:c8:94:9a:0f:34:b3:19:d5:
45:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:CF:08:FB:9C:C7:70:B2:AE:CC:77:C1:80:2C:17:3B:45:30:69:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14B269EE983911EF96318F74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.200.0/22
Signature Algorithm: sha256WithRSAEncryption
51:8f:e4:4e:6d:40:3e:99:53:0f:22:f6:77:93:c7:df:80:30:
49:0d:e3:63:d8:13:a3:69:3b:8c:40:52:1f:61:5a:03:88:57:
87:d7:85:bf:35:d0:6d:4b:47:01:4d:bb:d2:6c:aa:8d:18:02:
fb:fb:5f:07:57:0e:39:94:e6:d5:c4:bd:60:b8:26:7d:fb:38:
7b:47:9d:ab:fd:71:74:dc:5d:6a:69:fd:4e:93:88:7d:2a:33:
2a:90:31:97:2e:78:87:de:86:c4:1f:da:21:4f:70:4a:38:1b:
bf:50:60:45:b1:17:1d:3a:18:7d:eb:b9:74:01:83:3f:1f:43:
89:51:ec:1c:0b:77:ce:f2:cb:bd:e8:84:1f:ea:e3:90:04:5e:
66:b6:5e:44:b2:b0:ed:73:d7:07:ce:a6:1c:56:e8:b8:b1:8b:
4b:12:6e:58:7f:fb:7a:72:5b:70:51:33:df:2e:39:6c:07:46:
88:71:58:5a:c2:f1:e4:b9:7d:49:6d:0e:81:56:61:06:c1:8f:
77:71:54:78:bb:41:e9:f4:a1:01:3b:0c:cf:19:1d:1c:c0:a1:
4f:73:0a:aa:1e:03:54:5b:c6:47:9a:89:31:3f:0a:d2:b8:53:
84:ce:46:a2:bb:1f:e2:a0:fb:3d:27:ef:a7:03:ac:3c:c0:49:
fc:9b:38:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:20 2024 by rpki-client on console-ams.rpki-client.org