Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BFEF2A29D1611EF99B9DAA3762E951A.roa
File: 2BFEF2A29D1611EF99B9DAA3762E951A.roa (raw, json)
Hash identifier: Y/ZwRVYP6smtkqqtgXX+CXPeiPOhAM/4tDdXxqrWBVU=
Subject key identifier: 65:F7:9C:50:E8:33:37:46:08:64:AB:B5:3C:BB:AF:55:05:41:94:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CFEC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BFEF2A29D1611EF99B9DAA3762E951A.roa
Signing time: Thu 07 Nov 2024 14:40:02 +0000
ROA not before: Thu 07 Nov 2024 14:39:59 +0000
ROA not after: Mon 09 Dec 2024 14:39:59 +0000
asID: 397423
IP address blocks: 156.225.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53228 (0xcfec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 7 14:39:59 2024 GMT
Not After : Dec 9 14:39:59 2024 GMT
Subject: CN=672cd142-6446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:da:48:f7:7b:1e:6c:41:97:3b:b2:30:3d:1f:
ad:38:33:2b:8b:e9:58:32:7d:d1:f3:53:15:4f:b2:
68:62:1f:10:2a:f9:63:6a:34:15:ed:9e:0b:fa:83:
fb:16:3d:45:8f:ee:f0:80:16:f0:bf:99:d6:fd:78:
ed:9e:a5:e3:56:76:7f:2d:cb:2a:82:4c:d1:10:4f:
82:0c:d7:24:b3:23:50:c3:de:a6:a2:32:d9:e8:31:
5c:da:95:5c:5a:66:02:e0:64:48:ba:0b:6d:91:d7:
4e:17:89:3a:d1:2f:7a:4c:a4:dd:6e:da:e7:bf:e6:
11:52:dd:00:72:6d:fb:90:ae:6c:78:72:e8:23:9e:
e2:c7:0e:98:9c:14:a7:89:7f:35:bc:26:79:fb:57:
46:3e:b5:97:b6:b3:9e:e6:03:17:e0:af:d4:ad:fa:
69:55:d0:05:1a:61:06:a8:b5:01:1b:59:6c:05:fb:
54:27:cd:a0:e3:c4:cb:1f:10:8d:ba:44:25:20:58:
15:75:27:18:a6:89:8f:70:9e:e7:da:96:66:02:e1:
9b:15:0d:81:20:a2:83:3f:cf:7f:7b:32:ef:cf:06:
ba:d2:e5:8a:75:df:b6:6d:1e:6d:ab:1b:a5:8b:b1:
bd:62:99:21:41:52:0e:ee:db:48:00:47:1b:77:78:
30:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F7:9C:50:E8:33:37:46:08:64:AB:B5:3C:BB:AF:55:05:41:94:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BFEF2A29D1611EF99B9DAA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.65.0/24
Signature Algorithm: sha256WithRSAEncryption
83:24:6b:d4:4b:57:38:df:19:ba:dc:28:11:48:35:a7:46:81:
a1:86:17:63:29:05:cf:58:59:6b:3b:99:7f:8c:9f:bd:a2:e8:
04:d2:64:d4:d3:52:c6:c0:55:7a:31:b9:bd:40:d1:40:5b:18:
ec:2f:c7:20:d7:84:7f:c1:40:f7:b8:52:b2:f8:2d:6b:62:c5:
ce:e6:9e:85:c3:50:b8:b1:56:c8:45:6b:2a:54:55:82:96:42:
e0:af:d2:ae:d1:04:42:94:70:7b:73:74:97:d5:99:77:00:68:
e0:67:05:7f:3d:ce:36:21:f9:e3:62:ef:5a:5a:cd:72:11:34:
34:95:94:a3:45:ab:2f:3b:12:0a:b7:8b:8d:1f:0f:8e:1e:fb:
b1:ee:7d:b9:c4:ab:0a:f7:eb:c8:39:18:95:d9:5a:26:33:6c:
e4:0a:46:8d:72:f5:92:be:9b:f6:2c:81:0b:e0:9e:21:e5:69:
23:9f:de:21:0a:4a:6f:9e:ca:51:3d:f2:8d:90:38:e0:f9:fc:
54:fe:b0:bc:d0:a0:56:72:58:09:44:a7:ac:67:0c:c0:6f:e1:
38:dd:b9:93:25:b5:53:4f:cf:57:93:2a:3f:dc:7c:c5:e7:91:
b3:ce:08:1d:42:72:11:ef:fd:fa:34:21:6d:18:36:ae:f7:21:
c9:fe:77:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:24 2024 by rpki-client on console-ams.rpki-client.org