Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B488CCA978011EFB1EF8366762E951A.roa
File: 1B488CCA978011EFB1EF8366762E951A.roa (raw, json)
Hash identifier: MdNE7RjMaA935Ww+cwDZqOaLA9k13z7E/9WBHLfaoHU=
Subject key identifier: 71:25:A8:C4:36:91:9B:06:43:EB:70:18:C1:2C:CC:41:05:0C:A4:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB52
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B488CCA978011EFB1EF8366762E951A.roa
Signing time: Thu 31 Oct 2024 12:03:14 +0000
ROA not before: Thu 31 Oct 2024 12:03:10 +0000
ROA not after: Fri 27 Dec 2024 12:03:10 +0000
asID: 20473
IP address blocks: 156.236.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52050 (0xcb52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 12:03:10 2024 GMT
Not After : Dec 27 12:03:10 2024 GMT
Subject: CN=67237202-9240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:de:63:0c:19:69:37:16:0e:88:fb:6f:75:ba:
3c:fb:80:4c:3b:32:17:2d:e6:5b:0c:d2:d7:b2:84:
07:da:b4:2d:a1:41:5e:a4:df:17:57:70:d0:21:00:
3d:08:73:3a:63:1c:6f:67:0c:67:0d:b2:9b:1e:a3:
9f:30:bb:f9:6a:3b:4b:d9:7c:a2:2e:8e:99:13:d5:
34:d8:54:99:48:29:07:ba:80:1f:e3:f8:c0:7a:75:
eb:70:a9:1b:90:61:2c:d4:f0:d5:ff:90:52:1f:10:
74:99:7f:de:01:0f:80:a5:b7:6a:da:a7:7d:c1:42:
1f:65:af:30:4a:b9:d3:da:ba:70:f2:bd:b0:e6:17:
e1:d0:8c:c0:19:91:59:a2:79:3c:4b:38:31:e8:83:
28:8a:24:b6:db:ab:55:dd:7a:46:c1:da:4d:11:3a:
c9:d7:d9:42:90:85:91:38:83:91:01:96:7c:a1:08:
82:c4:e4:b0:9b:2c:0f:66:16:84:6f:30:5f:fd:10:
0d:54:2d:2c:f0:59:cf:72:64:dc:4f:70:a3:a7:a0:
6f:a9:ba:b7:cd:1a:3c:f2:1d:55:22:24:eb:79:ab:
67:61:9f:35:84:ad:12:c4:e9:48:9b:15:8c:d4:43:
ec:89:52:3d:7d:a9:e4:ca:85:9a:5a:9b:e4:58:20:
f8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:25:A8:C4:36:91:9B:06:43:EB:70:18:C1:2C:CC:41:05:0C:A4:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B488CCA978011EFB1EF8366762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.77.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:4b:ab:f6:98:db:7b:ed:36:9d:59:94:42:5c:32:8a:d9:b2:
d6:2a:39:f8:f2:45:fb:a3:bd:c6:10:b8:0e:0b:22:ce:f5:24:
f6:77:e2:01:d6:64:ee:60:41:60:69:14:93:77:38:be:66:f4:
1a:e0:41:9f:b8:67:73:2b:73:a8:57:84:02:2e:3b:c9:ed:e9:
16:ef:d9:53:44:50:7c:0c:2d:6a:74:50:4c:62:e5:82:46:7b:
11:5c:a2:83:95:fe:c0:d5:93:59:8c:81:51:1f:37:70:3e:ab:
cc:58:d6:c8:f7:84:ca:52:16:31:af:1b:6c:63:77:0f:18:d3:
88:70:d7:4e:64:e6:24:bb:22:b9:19:86:58:40:1c:16:90:93:
83:60:b3:eb:ee:5f:6b:b4:d9:88:5a:ae:93:60:99:a6:2a:f3:
de:a5:72:d5:86:52:51:1b:37:fd:06:1c:bd:b2:14:66:4c:58:
71:00:74:1e:7b:8d:e7:2d:aa:4c:43:67:db:b8:bf:16:6a:8f:
2a:6d:01:b2:4a:76:35:8a:25:d3:00:bb:32:0d:9f:e1:fd:18:
dd:86:ae:3f:aa:59:d1:12:e0:27:f9:1c:e4:2a:ce:ab:c1:ca:
8e:6a:9a:2e:5b:34:04:3a:58:b5:dd:92:1f:42:43:9e:df:54:
2f:5f:4a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:20 2024 by rpki-client on console-fra.rpki-client.org