Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27370DD08D3111EF8C80BF6F762E951A.roa
File: 27370DD08D3111EF8C80BF6F762E951A.roa (raw, json)
Hash identifier: 3pFfEcv8ZCRUoB6yUrY1wJ6ukJh7ncfYUkvyBD2jrmI=
Subject key identifier: 61:06:16:E2:1C:E8:7B:04:BE:64:EF:33:EB:57:54:FF:11:06:0E:4E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C69E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27370DD08D3111EF8C80BF6F762E951A.roa
Signing time: Fri 18 Oct 2024 09:12:52 +0000
ROA not before: Fri 18 Oct 2024 09:12:49 +0000
ROA not after: Sat 23 Nov 2024 09:12:49 +0000
asID: 48031
IP address blocks: 156.246.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50846 (0xc69e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 09:12:49 2024 GMT
Not After : Nov 23 09:12:49 2024 GMT
Subject: CN=67122694-5700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:3d:d6:15:30:53:48:a0:77:ed:26:b7:d1:
59:03:85:96:c0:27:85:c2:81:3f:f5:8a:5a:3c:d3:
8f:88:bf:2f:9c:2c:ee:ef:85:f5:38:a8:24:1e:12:
80:3c:88:9e:28:e0:34:e1:68:fe:96:7a:6a:e2:7d:
f4:c9:75:bb:6b:cd:47:1c:bb:fd:80:3d:fa:fb:96:
28:4b:7d:44:f6:b7:7e:cc:ec:37:7c:25:3e:80:40:
d1:cc:a1:21:de:7e:16:4c:f9:13:f0:da:dd:9a:36:
c7:12:4a:6d:cb:dd:d0:40:f7:d6:2e:b1:1b:9c:2e:
e9:b3:54:ab:37:03:69:15:07:7c:4d:fa:42:52:52:
df:a9:3b:a3:7d:65:fc:51:fe:6b:f5:a4:39:78:80:
e2:00:8d:e4:6e:3c:e2:f9:a0:43:2c:b4:fe:ce:c7:
28:30:b0:ef:b4:2c:6e:6c:41:98:cc:e1:07:2e:f3:
61:f6:4b:21:4b:30:07:1c:36:f7:ed:27:48:74:ca:
54:a2:b9:51:94:11:f6:54:2c:68:79:6f:f2:08:95:
9b:fc:cd:84:91:f0:e6:ce:43:5b:d1:88:6f:90:a3:
1e:cb:fe:93:f2:38:e4:83:6d:a0:19:ea:c1:ed:62:
8a:b4:d1:c5:0c:7e:55:ea:12:9c:9f:88:cb:bf:9f:
59:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:06:16:E2:1C:E8:7B:04:BE:64:EF:33:EB:57:54:FF:11:06:0E:4E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27370DD08D3111EF8C80BF6F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.146.0/23
Signature Algorithm: sha256WithRSAEncryption
95:19:39:d1:40:a9:38:16:d4:6c:8b:da:cb:9c:b5:52:95:7d:
87:a0:4d:27:fa:5e:98:36:6f:d2:db:60:37:e8:c1:6a:da:d5:
f9:4c:83:b6:61:80:47:e4:89:d3:9b:01:04:09:07:66:8a:50:
0c:0a:b5:d4:26:a7:bb:9e:56:f2:0d:91:25:ec:35:b1:6e:d3:
7f:2d:09:5c:be:63:e6:17:0d:e1:9a:f5:5d:53:62:a8:ac:9a:
95:7f:e7:f0:4c:28:4c:76:55:77:de:0b:f9:72:d3:1a:6e:79:
54:c1:73:d4:e3:72:68:3a:21:ea:28:de:3e:d3:59:ed:ff:44:
3c:df:be:24:76:73:ad:cd:25:15:45:f7:16:d8:e6:06:17:a3:
79:c5:0e:79:61:1a:95:76:d4:93:58:0e:63:f1:20:ad:d8:24:
15:76:d9:44:fe:51:e1:be:c9:8c:90:df:d3:a8:b0:42:fd:00:
bf:36:d5:fa:e8:1d:d2:c7:80:08:86:86:9b:ad:59:ef:02:11:
a3:44:9d:a6:0a:a5:74:96:87:6e:9c:1b:cc:fe:b8:ce:52:76:
bc:c8:ef:33:4f:fa:ed:38:02:a3:d3:67:a5:7a:88:c0:79:16:
c7:b3:ea:16:64:21:d9:9a:e8:c2:5c:b5:45:53:6a:5a:59:2b:
fe:44:ab:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:22 2024 by rpki-client on console-fra.rpki-client.org