Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2AF82332A7E411EF8A30AB49762E951A.roa
File: 2AF82332A7E411EF8A30AB49762E951A.roa (raw, json)
Hash identifier: Tdes5wWvfJGyeYRWGZtLZnxDgWkK1BmtugFEnMtBF4I=
Subject key identifier: C3:E5:FD:58:33:5E:44:4C:C4:A9:7D:6B:D1:AB:FD:C6:84:78:D3:00
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D74E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2AF82332A7E411EF8A30AB49762E951A.roa
Signing time: Thu 21 Nov 2024 08:39:49 +0000
ROA not before: Sat 30 Nov 2024 08:39:45 +0000
ROA not after: Sat 30 Nov 2024 08:39:45 +0000
asID: 137443
IP address blocks: 156.236.112.0/22 maxlen: 24
Validation: Failed, certificate is not yet valid
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55118 (0xd74e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 30 08:39:45 2024 GMT
Not After : Nov 30 08:39:45 2024 GMT
Subject: CN=673ef1d5-e7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3b:98:21:f6:7b:b8:85:5e:e3:ee:16:e9:15:
99:ef:ba:67:3f:35:08:13:50:ef:fe:c4:b7:b0:6f:
7f:07:0b:15:fe:89:05:cc:9e:ad:0f:a8:48:51:53:
84:1b:40:87:95:e2:83:56:11:c1:3d:e3:d6:10:62:
34:8e:7c:c3:83:c2:e0:5c:5d:a2:61:b1:d3:22:58:
bf:de:0a:92:e7:04:1d:a1:da:ef:9a:3b:89:5e:81:
6d:8f:11:7c:97:3e:91:59:d5:fa:62:65:18:a0:f2:
ef:8f:46:6d:e0:65:44:58:e1:ad:ea:b2:63:f3:6b:
55:ef:6a:2b:31:66:49:ef:87:c4:e6:f1:f6:96:69:
ad:24:92:48:8e:b1:79:9c:09:e1:05:9e:fe:f5:ea:
11:35:7e:05:52:aa:32:b5:e3:ed:4d:3b:ac:e9:41:
46:28:9e:05:6b:9d:df:d8:c4:a8:a7:5f:94:c0:40:
68:62:21:e5:52:d5:89:3b:af:9b:1e:81:5e:81:ff:
e1:a0:22:d5:25:f8:a5:51:44:69:de:54:fd:d0:0a:
53:1c:26:e9:fe:62:d9:f1:14:77:67:98:12:30:fd:
2d:75:d2:ef:cb:df:b9:36:05:7a:ce:35:b3:c5:13:
e9:ea:d6:b3:e9:a1:92:91:b7:7e:49:84:e5:38:54:
1b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E5:FD:58:33:5E:44:4C:C4:A9:7D:6B:D1:AB:FD:C6:84:78:D3:00
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2AF82332A7E411EF8A30AB49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.112.0/22
Signature Algorithm: sha256WithRSAEncryption
16:96:63:3d:b3:ee:c0:43:28:ea:de:72:fb:6e:98:d8:35:8d:
60:21:38:7f:2c:6c:7d:68:03:d6:6b:b3:ea:bf:41:f0:58:64:
12:21:82:12:9a:10:28:d5:0e:36:3f:88:27:b0:60:37:ee:62:
be:43:93:c8:c1:52:dc:51:31:ef:d3:a6:11:45:42:71:54:74:
7b:2b:89:a7:7f:8e:4f:78:b1:81:fd:33:4b:8b:f4:d7:26:1a:
e3:0a:1f:2c:3f:ca:81:f8:96:f6:93:69:78:6f:1b:6f:89:9b:
9e:9d:0a:05:fe:22:97:9d:26:10:8b:28:a1:70:3d:d1:8a:84:
ea:60:27:2b:64:a4:72:7d:85:24:b1:6e:d2:e6:a6:0a:43:15:
8f:93:af:0c:fb:f1:65:39:9b:66:82:57:8b:4b:76:7e:68:01:
53:8c:da:da:d7:82:41:ed:14:25:7c:b4:64:7d:1c:2f:50:54:
82:b9:60:d9:8e:c7:40:ac:07:85:bc:8e:d6:a5:11:6c:29:98:
e5:fb:2a:41:f5:3e:7c:66:09:44:ae:e0:dc:3f:9f:ba:57:2f:
5b:44:90:cf:b4:1b:c5:bc:8b:0f:33:aa:b3:df:ba:9a:d7:45:
c2:e7:43:a9:c0:16:1a:ca:fa:9a:97:0b:8c:3e:ac:e6:cb:31:
23:dd:82:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:22 2024 by rpki-client on console-fra.rpki-client.org