Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CF59AD4A4D411EF864ABC8A762E951A.roa
File: 1CF59AD4A4D411EF864ABC8A762E951A.roa (raw, json)
Hash identifier: o4UKiS/BU+uPUvha2SNXjYfuPJZJsCKixQRBIMwy+LY=
Subject key identifier: 6D:DA:D6:B7:10:32:7E:88:32:EF:E9:CB:33:7B:7F:EA:B3:D7:62:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4E7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CF59AD4A4D411EF864ABC8A762E951A.roa
Signing time: Sun 17 Nov 2024 11:07:20 +0000
ROA not before: Sun 17 Nov 2024 11:07:16 +0000
ROA not after: Wed 27 Nov 2024 11:07:16 +0000
asID: 39600
IP address blocks: 156.238.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54503 (0xd4e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:07:16 2024 GMT
Not After : Nov 27 11:07:16 2024 GMT
Subject: CN=6739ce68-3194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:04:ed:98:df:96:ff:7a:4a:4e:93:c9:f8:39:
d2:34:1a:20:55:87:93:f6:27:35:2e:fe:c8:60:84:
03:f6:e3:9e:ac:26:57:cc:6c:07:4b:fb:e0:be:7f:
1f:42:3e:cb:da:d8:84:51:26:11:36:64:d2:8d:de:
cb:c5:81:f4:38:ee:71:40:68:62:14:63:98:d7:35:
1b:28:e4:cf:a4:6b:2b:e7:96:5e:18:0e:dd:51:29:
e1:af:e1:7a:d2:5f:0f:d7:17:e1:7d:74:f6:bf:ba:
74:a6:a3:a1:15:86:09:bc:86:2e:48:93:7b:0c:4c:
df:f1:38:56:35:a6:bc:a3:7b:a2:a6:2a:14:90:4d:
ea:44:03:2e:29:e4:ee:e1:23:4a:f1:b8:52:cf:92:
fa:dc:30:24:05:8b:b6:7f:22:cb:a9:06:d3:e4:6c:
b1:c4:58:f3:ff:58:ad:b5:4e:10:92:98:db:b5:b5:
d4:24:96:e6:f4:43:c1:df:6f:6f:39:c8:cb:0c:ba:
84:74:e4:f0:32:fd:cb:bb:5a:a1:bd:63:30:1e:79:
f3:4e:83:db:1a:d0:06:7b:f6:af:c0:ff:b4:c3:ee:
e5:1d:05:3c:d4:16:68:37:c3:a5:64:75:09:87:78:
36:13:4c:81:4f:61:db:b5:3b:eb:8f:26:fc:1e:8d:
0e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DA:D6:B7:10:32:7E:88:32:EF:E9:CB:33:7B:7F:EA:B3:D7:62:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CF59AD4A4D411EF864ABC8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.161.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:ab:9f:22:65:9d:28:94:48:93:b2:96:c4:b0:cc:c4:81:dc:
ea:0d:c8:a4:ea:d8:7e:32:01:3d:1f:82:bc:c3:34:fe:8a:21:
b7:04:b6:57:f5:60:83:f7:07:38:c7:cf:59:70:38:6d:d4:e7:
59:bd:7f:ee:9c:03:a4:40:18:65:5f:b6:14:62:82:a5:ba:bc:
1f:32:32:62:8b:1a:22:5d:41:ef:06:4b:a5:70:a0:e9:71:05:
9b:f8:a5:27:03:a2:7b:63:bc:38:02:f4:90:7d:21:c8:6b:4b:
7c:e4:21:5c:1c:9f:ee:43:f4:fd:72:4d:b3:72:7f:2a:d1:98:
68:c6:90:a5:47:52:5c:41:4d:3d:97:b6:d1:c2:d0:4b:3b:a1:
63:ef:c7:ba:98:d1:d7:96:e8:c6:41:34:1c:30:c0:1a:e1:e5:
62:32:ef:22:9b:94:7c:cb:0f:0d:f5:ec:58:cb:67:21:4a:2e:
71:58:79:5d:89:5f:63:ba:bb:63:d4:8b:34:55:04:24:44:7c:
8e:93:26:39:b8:bf:f4:7d:17:65:4f:7f:79:bc:76:a7:7b:5a:
20:5d:b7:c3:29:34:1c:55:de:f1:02:ed:ec:5d:e4:fa:57:32:
97:61:e6:5b:1c:15:eb:aa:f3:d4:60:e4:a0:c3:44:14:46:34:
55:11:5a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:22 2024 by rpki-client on console-ams.rpki-client.org