Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33F00604A45511EF87F57263762E951A.roa
File: 33F00604A45511EF87F57263762E951A.roa (raw, json)
Hash identifier: JBvXU5cfrKqUjriqFHW3X9L5f2JDvt10dGrYyVRhy3c=
Subject key identifier: 7A:DE:A7:7F:A4:BF:C8:60:07:EF:10:34:85:8E:37:93:03:DE:3E:33
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3EA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33F00604A45511EF87F57263762E951A.roa
Signing time: Sat 16 Nov 2024 19:58:52 +0000
ROA not before: Sat 16 Nov 2024 19:58:49 +0000
ROA not after: Tue 26 Nov 2024 19:58:49 +0000
asID: 39600
IP address blocks: 156.237.112.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54250 (0xd3ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:58:49 2024 GMT
Not After : Nov 26 19:58:49 2024 GMT
Subject: CN=6738f97c-f138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:45:f0:72:71:bb:9e:f8:48:c1:d1:74:27:d4:
41:97:a7:10:23:77:9d:9a:e6:79:81:af:3c:3c:89:
b0:ce:e6:fe:56:ff:c7:a3:be:d6:28:7a:33:5a:1c:
c5:8b:d0:72:89:93:43:04:d6:ed:73:6a:72:42:fa:
44:1b:9e:9f:22:11:a0:7b:2c:81:91:17:55:4b:a0:
c6:14:6f:b0:65:33:2e:10:38:54:48:2c:bb:d2:60:
92:e7:60:4f:c8:18:f3:3b:27:49:b7:0c:fc:41:cd:
29:e7:73:25:96:ef:84:0f:af:86:f9:f2:7c:b6:b6:
3f:df:f9:42:db:be:4a:69:50:c9:e0:18:a3:52:4e:
e8:2c:06:be:88:6e:b2:dc:ff:ca:bd:c5:55:41:1f:
76:13:63:7e:69:df:59:21:da:5b:8e:93:10:07:96:
a7:13:e8:d8:bb:20:eb:a3:55:35:fa:6e:bd:08:00:
54:b0:47:54:45:e6:10:c8:f6:cf:b5:72:f5:36:e3:
7b:f3:9d:53:98:8b:8b:67:e8:dc:e2:d0:72:f5:9d:
bb:fd:44:6b:ae:a6:19:47:90:91:ac:3f:ba:be:2b:
f7:b7:c2:ab:f7:cd:d6:51:a8:5c:3f:9e:ef:17:de:
bd:6c:88:76:30:d2:44:8b:5d:ab:12:91:88:75:e1:
13:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DE:A7:7F:A4:BF:C8:60:07:EF:10:34:85:8E:37:93:03:DE:3E:33
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/33F00604A45511EF87F57263762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.112.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:50:c2:ee:a4:a2:54:b3:f2:e9:8f:ca:7a:93:89:2d:ef:a9:
eb:7b:e5:0d:2d:44:7a:df:f7:f8:37:a4:0f:e9:f5:88:fe:f5:
c2:8a:66:b7:2f:2e:87:75:df:80:20:97:15:b9:4b:c7:5b:e2:
df:1e:6f:83:de:19:bb:ea:1b:ab:59:23:c5:8e:c5:be:80:8a:
06:2e:cb:22:a8:4c:9f:f5:f9:df:e2:4d:2b:38:3d:31:55:91:
2a:37:8a:a4:6b:b3:36:c1:cd:2d:50:4c:d8:44:9f:c2:7b:3c:
91:e6:17:ad:a2:e1:2b:09:c0:4c:34:41:ec:d8:e7:23:c0:83:
03:b4:1a:b3:a1:d3:21:7a:68:68:6d:8c:89:08:09:70:0a:d4:
73:e2:5d:a3:75:8b:3a:77:38:a5:fa:0b:e0:67:13:b4:74:6d:
76:82:9e:c5:4a:fc:8f:50:10:e2:4a:e7:fd:75:f8:8d:01:00:
30:87:41:69:74:5e:93:fc:2f:e9:7d:e5:a5:6f:cb:4f:8f:1f:
43:ee:ee:f3:ad:06:52:47:c0:21:7d:22:30:ed:29:e5:a4:b4:
95:cb:85:0b:64:d4:87:be:3f:ea:fa:f8:c5:9e:f0:31:0d:73:
1d:07:0c:85:d2:b1:d0:29:15:94:79:99:6c:78:a7:a1:5b:1e:
8e:2c:b8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:25 2024 by rpki-client on console-ams.rpki-client.org