Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20A896949AAD11EF8D47016E762E951A.roa
File: 20A896949AAD11EF8D47016E762E951A.roa (raw, json)
Hash identifier: SlAndWfph1Hh5V7xK6oEU4qZaV7ugMmXGhRqUN/Hnag=
Subject key identifier: A5:ED:B3:84:4B:79:22:06:37:60:99:0A:95:F5:B5:93:30:2C:2D:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD9E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20A896949AAD11EF8D47016E762E951A.roa
Signing time: Mon 04 Nov 2024 13:03:04 +0000
ROA not before: Mon 04 Nov 2024 13:03:00 +0000
ROA not after: Tue 03 Dec 2024 13:03:00 +0000
asID: 139646
IP address blocks: 156.240.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52638 (0xcd9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 13:03:00 2024 GMT
Not After : Dec 3 13:03:00 2024 GMT
Subject: CN=6728c608-0c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3e:4c:ae:0f:e3:2f:04:ff:0c:6b:d4:42:9a:
c0:d8:12:6e:87:c6:3f:eb:85:9b:cb:f8:22:eb:52:
1a:05:34:90:a5:53:ac:c0:56:1d:78:82:7f:d6:0b:
dc:27:05:e7:93:94:0d:31:2b:d3:21:e8:46:80:42:
09:5c:9c:66:39:79:71:e0:2b:14:8a:16:64:67:5f:
33:e9:1e:4c:ea:c7:8b:1b:7e:08:69:99:f9:b5:a1:
f8:53:f4:5d:75:a7:8d:3c:47:38:20:f8:ed:c7:de:
51:46:8c:a3:af:c7:cf:08:55:d8:3f:db:d9:74:f5:
c9:96:50:80:46:f1:2f:d0:14:c1:b2:cb:b6:f1:db:
14:3a:80:08:0f:41:29:da:76:09:ff:d3:44:46:4b:
59:96:eb:11:5b:d6:dc:a8:73:f7:7e:3e:33:e3:5d:
8a:70:ef:78:7f:73:06:12:87:85:81:25:09:1f:1c:
09:1a:4e:aa:de:34:c4:f2:6d:11:7e:0e:0d:79:63:
5f:c8:e7:66:db:6f:eb:c6:e6:04:8d:eb:b7:d0:7a:
7d:17:ca:30:1b:38:3b:99:90:d7:d9:4a:18:7d:70:
8e:e2:1e:d6:43:ea:9e:25:d6:fd:74:d1:8a:90:4e:
17:71:d6:ef:c4:4c:ae:d0:20:e2:02:5f:55:68:85:
11:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:ED:B3:84:4B:79:22:06:37:60:99:0A:95:F5:B5:93:30:2C:2D:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20A896949AAD11EF8D47016E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.48.0/21
Signature Algorithm: sha256WithRSAEncryption
62:56:85:0c:53:8a:dd:3f:43:52:f2:e3:d3:c3:03:40:80:07:
45:e8:9a:83:06:69:8e:a4:e4:aa:84:a1:a1:5c:fa:36:32:b0:
67:30:eb:64:18:a4:97:12:09:93:9e:9e:c9:f3:36:ef:c8:bd:
15:aa:34:07:5a:eb:c7:aa:20:bd:25:51:a7:34:ee:5a:0e:dc:
da:29:b8:5b:5d:45:50:fa:3f:b6:d8:ef:b6:40:d5:f9:bf:49:
53:69:25:b4:fc:ef:c3:2a:ae:d4:aa:d0:86:e3:fe:e2:1e:93:
26:7a:6c:21:3c:5e:60:03:47:16:ab:22:cb:d7:4f:a9:95:7f:
6b:fb:4f:4f:bd:db:98:11:e8:23:a5:90:c1:59:a0:55:4d:13:
c6:51:02:c6:97:5c:f4:2f:60:cb:61:da:4a:51:03:3a:44:a0:
7d:6b:e7:18:15:be:24:f6:0c:c3:78:1a:89:d5:44:d2:17:12:
60:f1:c1:a8:6f:cf:f2:a3:dc:cd:af:4f:97:bb:f0:8d:1f:db:
c4:e2:fc:53:ef:cc:21:71:27:6b:57:34:fa:54:dd:93:e9:68:
b7:aa:63:a7:f4:42:cf:06:e5:cd:c7:89:84:4f:b1:c6:43:3c:
3e:d1:a6:8c:96:af:3e:03:78:d8:e0:01:24:39:c7:31:2c:2a:
ea:44:28:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:22 2024 by rpki-client on console-ams.rpki-client.org