Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17AF7B4EAD5D11EFB3EC9345762E951A.roa
File: 17AF7B4EAD5D11EFB3EC9345762E951A.roa (raw, json)
Hash identifier: nTpDHARTVAON5qn1pCwwOmwcibJk6lvUUTM/BI5BOJk=
Subject key identifier: 7F:B3:95:4E:4C:AF:0D:5B:C9:8E:73:22:44:3D:9D:1C:4C:AD:E8:C0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: DC5B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17AF7B4EAD5D11EFB3EC9345762E951A.roa
Signing time: Thu 28 Nov 2024 07:48:01 +0000
ROA not before: Thu 28 Nov 2024 07:47:58 +0000
ROA not after: Tue 11 Feb 2025 07:47:58 +0000
asID: 9009
IP address blocks: 156.238.10.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Dec 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56411 (0xdc5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 28 07:47:58 2024 GMT
Not After : Feb 11 07:47:58 2025 GMT
Subject: CN=67482031-285a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b6:0b:fd:6d:65:8f:8c:e8:62:2c:ca:6a:d0:
9f:5a:ed:9e:55:c4:64:a1:0e:bc:3c:1a:92:ef:0e:
92:8a:bd:bc:e8:99:a3:8a:b8:e5:eb:bd:6d:83:04:
90:5b:70:ac:9e:aa:51:e3:c5:02:fc:54:4c:6f:4e:
e9:6e:16:4a:80:e8:1d:d3:c9:ec:a5:de:8a:db:a1:
ec:0c:67:90:cd:b9:1b:ea:9a:d8:eb:6b:92:91:01:
fa:63:76:20:8d:f9:20:be:13:a6:e9:70:af:bf:35:
b9:5e:9b:9d:49:ab:b0:ef:9c:9c:71:59:47:b0:c3:
6f:89:35:c3:49:23:62:5c:30:1c:d8:61:24:c4:9f:
90:a6:b3:d3:d8:15:da:d5:3e:80:55:f6:93:87:a1:
58:1a:c9:00:51:76:c7:e0:1c:40:13:53:4b:38:1c:
a0:d0:e5:37:40:8e:19:ae:97:a9:39:2a:a8:d9:57:
88:ae:17:c6:27:7b:36:a7:2c:da:01:38:36:d8:f5:
51:2e:18:67:9e:e7:d8:e7:6c:be:87:43:33:d3:c8:
17:15:ad:14:4f:b6:45:a9:ca:c6:82:7b:69:1d:d8:
aa:3f:5a:15:74:8b:90:be:1e:d7:27:b7:ab:e1:63:
fe:ad:fb:41:cc:2a:8f:b1:2f:f8:b5:f8:68:e9:36:
26:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B3:95:4E:4C:AF:0D:5B:C9:8E:73:22:44:3D:9D:1C:4C:AD:E8:C0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17AF7B4EAD5D11EFB3EC9345762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.10.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:2e:ea:4d:47:88:1a:3b:50:de:e3:93:88:62:91:65:09:59:
28:ff:77:3d:cd:53:75:50:76:dd:e6:85:e3:84:a3:a0:30:7e:
16:d4:6b:8b:99:a0:ab:96:4b:60:42:a4:63:f6:cb:60:73:b3:
60:4d:1b:4b:82:ee:11:d6:54:17:0f:6a:6d:2c:75:be:9a:c4:
30:81:1c:9c:ab:18:ce:58:90:3d:9b:d8:3b:3e:28:02:e9:36:
5d:4d:25:3a:73:3a:f8:2a:a3:81:72:75:b5:65:f1:a3:28:74:
38:fc:ac:01:23:d8:7a:99:3e:a5:87:1e:e6:0e:86:bf:0b:84:
5c:de:67:1f:2a:34:a6:6e:0e:3f:3c:f5:de:52:b7:37:bd:29:
f9:ab:06:39:6a:6b:fb:6a:e9:c4:cb:0d:a0:ec:12:b4:41:b8:
1e:98:36:18:d5:33:b2:3c:0f:17:87:0c:97:a2:d8:a4:d9:9d:
3a:bc:a5:9a:14:56:99:7e:a1:b3:71:59:7a:9c:75:8e:6b:01:
8e:4f:d9:ea:f8:1b:38:f7:30:34:76:cf:12:6e:d4:01:5d:3e:
24:14:26:d9:0e:c3:b7:30:5b:71:5c:0d:95:fc:b6:39:27:66:
74:ba:8b:7e:7b:e0:e4:be:2b:0e:04:0c:61:46:e9:3d:b7:b7:
62:33:02:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 15:15:54 2024 by rpki-client on console-ams.rpki-client.org