Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3368893E9C1911EF847A766B762E951A.roa
File: 3368893E9C1911EF847A766B762E951A.roa (raw, json)
Hash identifier: ATrN8hQGv9+fXwSI1yh0tMkAZD/9s2Hle9Hu7hvzr5s=
Subject key identifier: F5:99:4E:37:B8:1C:F3:69:EC:7B:9B:5D:99:81:5E:B0:BB:5A:7C:57
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CF14
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3368893E9C1911EF847A766B762E951A.roa
Signing time: Wed 06 Nov 2024 08:29:12 +0000
ROA not before: Wed 06 Nov 2024 08:29:09 +0000
ROA not after: Sun 01 Nov 2026 08:29:09 +0000
asID: 132813
IP address blocks: 156.254.126.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53012 (0xcf14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 6 08:29:09 2024 GMT
Not After : Nov 1 08:29:09 2026 GMT
Subject: CN=672b28d8-858c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4c:aa:84:4c:20:08:64:c7:1d:40:8d:c5:ee:
0b:f2:fe:31:36:f5:68:76:63:c0:7c:2d:4d:dd:bd:
69:42:2c:37:7c:4a:0b:f6:0b:c9:17:7e:85:66:53:
8e:dd:53:cf:68:99:40:03:e1:da:ee:1c:f8:2d:9e:
b9:e0:60:43:f1:86:de:d1:8d:e1:b2:22:d6:52:b5:
76:88:de:5c:5c:1a:ce:66:4b:c2:c4:8e:c1:34:db:
7c:0e:b5:cb:15:ed:be:52:dd:bd:cb:33:9a:11:84:
99:91:c5:ad:91:7f:fc:4e:90:6c:a4:14:b6:f3:d1:
d7:d5:9a:76:1c:85:c7:b6:16:a7:16:67:90:90:79:
19:4a:09:d1:c4:e0:46:27:2c:8f:39:33:f6:21:e9:
a3:7c:8f:56:df:b6:a9:78:b8:ae:14:7a:26:cd:2a:
17:d6:5b:66:77:f7:df:a1:9d:20:07:b8:b3:6f:05:
c0:c6:04:56:3c:62:91:2c:3b:5b:6b:9f:e5:de:df:
54:58:50:be:43:7b:a1:72:d8:6f:88:43:46:c4:fc:
f6:44:12:b4:a5:4f:3e:5e:49:4d:f7:be:38:86:15:
d9:ae:c1:d6:37:90:6a:5a:57:8f:fb:47:dd:8a:94:
8d:d9:59:01:76:53:88:4d:41:d7:1d:84:cd:24:38:
0d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:99:4E:37:B8:1C:F3:69:EC:7B:9B:5D:99:81:5E:B0:BB:5A:7C:57
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3368893E9C1911EF847A766B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.126.0/23
Signature Algorithm: sha256WithRSAEncryption
21:7f:fc:40:69:f7:d7:80:17:b9:ae:1e:f7:37:51:2b:28:c7:
be:3a:5d:ee:0f:57:16:fd:4d:b0:99:f7:b5:59:32:bf:b9:94:
25:ac:0b:74:90:f2:c1:30:32:23:01:2a:44:9b:6e:70:05:6c:
b4:2d:e5:85:ef:27:cf:16:51:df:8e:48:6b:a5:59:ff:8c:34:
57:98:2b:d9:55:16:6d:ec:0c:09:6f:08:26:b6:80:dc:65:91:
bc:95:59:fb:0f:c8:94:d3:8f:bf:7d:84:77:4e:f3:b7:30:a8:
9e:9b:8e:ff:96:ca:5f:3a:7f:62:b8:ee:98:1a:5b:eb:43:63:
92:53:db:2c:76:44:1a:48:61:d1:1c:50:77:dd:56:39:1d:69:
0f:94:3d:6d:9e:45:98:f5:05:a0:47:ad:8a:4a:d5:6c:e1:dc:
12:d0:ff:46:1d:c0:a2:74:9d:00:15:bb:18:3d:58:ff:03:ef:
57:ac:6c:6b:ad:ce:30:79:4b:cd:be:56:28:82:e3:c4:70:b2:
82:4f:0c:75:64:f7:bd:92:05:90:ac:42:93:cb:8d:49:4a:78:
6c:40:dd:0e:5c:cb:d8:94:b7:13:b7:a2:be:d3:76:85:65:80:
97:0a:04:76:55:db:a5:a3:78:85:47:27:d0:5f:dd:f1:a0:ac:
f7:24:df:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:25 2024 by rpki-client on console-ams.rpki-client.org