Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1A742A8E7E3A11EF8042AB97762E951A.roa
File: 1A742A8E7E3A11EF8042AB97762E951A.roa (raw, json)
Hash identifier: pU8cl/lmL7h4DujywS9kg6DCpqBiajPkV5uBWFa/Hrw=
Subject key identifier: F1:10:EE:2F:9D:BF:21:0F:45:A4:20:71:93:BC:B2:27:82:FC:38:9E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BC63
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1A742A8E7E3A11EF8042AB97762E951A.roa
Signing time: Sun 29 Sep 2024 08:09:09 +0000
ROA not before: Sun 29 Sep 2024 08:09:05 +0000
ROA not after: Mon 30 Dec 2024 08:09:05 +0000
asID: 17561
IP address blocks: 156.237.96.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48227 (0xbc63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:09:05 2024 GMT
Not After : Dec 30 08:09:05 2024 GMT
Subject: CN=66f90b25-f54a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3f:f0:3b:cd:b7:42:8b:a9:68:3f:5a:77:f5:
48:3b:20:65:1c:33:31:8b:6a:81:91:82:13:53:dc:
94:8c:fa:1c:db:b3:40:58:8b:b8:fc:70:95:47:aa:
64:78:b7:c4:66:45:64:86:cf:5d:7c:b5:55:0c:96:
96:3f:72:f8:d4:28:fe:46:8d:62:2b:d7:a4:f6:79:
4c:30:c0:2f:e6:7d:2f:57:4a:31:0a:2a:7a:7c:21:
89:c3:ed:7f:78:d9:5f:35:52:a4:74:bf:82:cd:63:
1a:2b:51:e9:2f:26:eb:be:9e:b6:92:8d:4e:c5:71:
49:d4:d8:16:13:b6:9d:fa:2f:4d:a6:25:44:56:13:
0b:08:c0:0c:a4:54:2d:3c:8f:db:68:26:2f:f9:15:
dc:ca:e1:cc:00:c2:b3:5d:d5:24:9e:c0:21:63:27:
f7:a9:4a:27:f3:03:be:60:f9:7d:cb:a2:10:94:21:
6b:ae:b2:3e:f9:58:3d:9a:00:e8:e4:d2:f4:29:df:
5b:17:05:26:8c:6e:b8:b3:15:d4:b4:72:64:29:71:
eb:7e:19:98:f8:de:33:b3:b5:84:47:83:0c:bc:7e:
b6:e1:f7:b8:a4:a4:13:fc:9c:2a:df:c3:ae:2c:88:
a1:3e:fb:7b:b8:8f:2c:2f:e6:49:dc:5d:ec:77:11:
ed:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:10:EE:2F:9D:BF:21:0F:45:A4:20:71:93:BC:B2:27:82:FC:38:9E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1A742A8E7E3A11EF8042AB97762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.96.0/21
Signature Algorithm: sha256WithRSAEncryption
06:3d:73:48:8e:5b:e9:65:1c:19:c1:ad:1c:01:1a:61:69:44:
39:a1:e2:ec:ff:e8:5e:dc:ed:ce:40:ab:c2:bf:64:d1:ff:0c:
11:c3:92:c4:3f:bc:64:66:80:26:0e:f3:d2:65:9e:bf:ef:c9:
0c:ac:11:fc:77:ee:03:9c:73:25:6b:21:2a:1a:7d:66:f2:ee:
b1:62:07:74:ec:34:18:7e:0f:ae:06:57:63:ff:da:ca:b7:80:
10:dd:b6:fa:86:a7:e6:57:17:9a:b4:59:53:c7:25:06:e3:fa:
4c:26:81:0e:10:11:73:39:59:29:01:2b:46:b6:f4:32:ad:bf:
8c:c4:66:7a:08:27:3a:0c:7b:c5:cc:fc:f2:e4:8e:c2:43:a8:
55:bb:e9:15:12:ce:25:c1:0d:40:54:47:d2:8f:0c:e5:67:e8:
38:99:4a:dc:3a:68:2e:00:15:b2:0b:2a:8d:9b:44:dc:60:01:
56:a6:bc:f7:9a:94:02:c9:80:47:77:be:23:98:2b:7b:12:ad:
f9:5b:40:36:55:51:30:3b:1d:f9:5f:71:26:6e:ed:d6:99:84:
1b:a4:2e:b2:c9:f8:f0:40:6f:d8:14:96:c1:21:f4:01:16:eb:
d6:8b:18:7d:3c:a3:f0:cb:5c:b7:a8:a2:98:fd:9e:f6:fe:6b:
55:6f:c9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:21 2024 by rpki-client on console-ams.rpki-client.org