Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D63CCAA912111EF897C4442762E951A.roa
File: 1D63CCAA912111EF897C4442762E951A.roa (raw, json)
Hash identifier: 84SQaTG8QplyQacjMw/FWAJV+N3pu9DT5IdDOBkkAQ8=
Subject key identifier: C8:8A:58:01:D1:57:4D:90:F0:19:B7:A7:7B:87:0D:39:DD:63:94:AF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C7C5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D63CCAA912111EF897C4442762E951A.roa
Signing time: Wed 23 Oct 2024 09:28:09 +0000
ROA not before: Wed 23 Oct 2024 09:28:05 +0000
ROA not after: Fri 29 Nov 2024 09:28:05 +0000
asID: 203020
IP address blocks: 156.232.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51141 (0xc7c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 23 09:28:05 2024 GMT
Not After : Nov 29 09:28:05 2024 GMT
Subject: CN=6718c1a8-2281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:56:c4:00:dc:02:7b:84:76:e8:05:e7:3c:2d:
44:a8:f7:b3:81:db:33:27:e2:e1:32:ef:15:b0:11:
fc:bc:bc:80:1e:af:9e:b8:df:82:94:0a:1d:db:1b:
89:24:16:1c:14:0b:7d:2b:19:76:1b:ae:22:bd:f2:
6c:86:d7:a9:2f:0f:a6:19:72:97:58:e9:fa:f0:44:
51:ce:38:66:a6:2e:be:8b:0d:10:68:1b:74:60:d9:
7d:5e:fb:78:cb:c0:d1:a3:45:13:c8:ca:b2:16:62:
d1:66:70:37:bb:5b:b3:b1:aa:e4:f9:f6:7d:a5:1c:
82:dd:e2:44:89:3b:31:52:97:2e:97:f1:09:bb:68:
45:06:ad:75:bb:f9:04:27:41:9c:d2:1a:ad:88:c5:
36:27:11:4a:bf:ce:5e:c4:33:0e:ce:7a:5e:9e:03:
0c:1d:bf:e0:08:13:92:01:88:b6:f3:82:d8:20:46:
16:90:06:24:a2:54:3f:3e:0a:27:8d:91:53:d1:fd:
b2:ff:98:f4:d5:e8:da:57:73:1c:ab:1b:44:43:b3:
b2:b6:a6:46:df:bc:28:1a:57:f7:27:2c:18:88:88:
0d:58:36:17:3e:4b:11:ab:3a:f6:bb:0e:22:00:81:
f1:3f:9c:99:75:cd:8a:7d:07:91:9c:44:42:47:2a:
51:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8A:58:01:D1:57:4D:90:F0:19:B7:A7:7B:87:0D:39:DD:63:94:AF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D63CCAA912111EF897C4442762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.4.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:99:fb:b1:c2:91:df:3d:87:8c:98:2b:14:4c:76:db:3c:cf:
44:01:88:9b:b7:94:96:ad:82:f1:ee:b1:bf:6a:17:90:d2:c5:
8e:4f:10:28:50:ae:92:c1:f1:27:da:bb:84:59:7a:a8:7f:ea:
6a:20:a4:6b:69:4b:12:33:20:24:c5:b4:d4:d3:13:d0:92:e7:
83:05:fc:80:3a:a8:84:a9:73:d3:e6:5e:44:6b:f5:00:e7:02:
b9:fe:0c:d8:4d:61:79:c1:19:31:08:d9:33:bd:42:d4:45:4f:
10:62:e2:51:ce:c8:3e:a4:51:ad:d4:68:bc:2a:c6:f0:ab:64:
5f:bf:fc:6b:e1:65:6b:3c:1f:e3:bd:01:9b:e7:ca:db:a1:2b:
cf:ba:d1:49:a5:77:26:72:cb:ca:46:80:aa:d7:7b:8c:8e:2a:
77:1b:07:a6:10:89:78:cf:26:46:ce:00:40:0d:bd:44:15:60:
e1:9a:51:00:31:ee:89:9f:f5:60:1e:d8:4f:d9:36:8e:57:8c:
90:9b:92:66:7c:ed:5b:58:42:5a:2e:4e:5f:2f:c0:f5:11:5e:
e9:eb:12:98:94:4b:69:bf:72:45:5d:5e:b3:f1:0f:d7:22:14:
66:e1:6d:39:c0:00:f3:8e:59:76:fe:4d:cc:a7:f7:e7:a7:02:
0b:74:37:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:20 2024 by rpki-client on console-fra.rpki-client.org