Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/392B6A0869D811EFB85E6A7A762E951A.roa
File: 392B6A0869D811EFB85E6A7A762E951A.roa (raw, json)
Hash identifier: t7GiE7qDnzUXknhXwuKe5Uibz9Giojh+fmFyq+Y6sTw=
Subject key identifier: 6A:1E:D3:85:72:C3:B1:CD:00:54:DD:E4:32:00:ED:3B:48:5A:9D:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B0FB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/392B6A0869D811EFB85E6A7A762E951A.roa
Signing time: Tue 03 Sep 2024 09:38:07 +0000
ROA not before: Tue 03 Sep 2024 09:38:03 +0000
ROA not after: Fri 07 Mar 2025 09:38:03 +0000
asID: 29802
IP address blocks: 156.239.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45307 (0xb0fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 3 09:38:03 2024 GMT
Not After : Mar 7 09:38:03 2025 GMT
Subject: CN=66d6d8fe-ca81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:52:c8:ed:46:89:18:85:b0:e6:e1:7b:e6:79:
31:44:78:bb:10:34:e5:79:60:25:7a:ef:df:a9:f3:
75:07:92:29:c5:eb:46:48:bd:bd:2a:da:a4:74:43:
d2:ac:13:3f:ed:59:0c:9a:22:af:7f:1b:4b:60:c3:
76:22:6c:bf:dd:80:73:34:9d:96:1c:74:61:72:63:
99:d4:bc:a5:7e:c6:b5:34:b0:9c:9e:7b:7c:67:30:
cd:00:04:14:e6:6a:14:82:3c:ae:61:d6:37:15:ff:
48:27:5b:86:f2:08:08:1c:0f:fa:ed:7e:4f:b9:4e:
19:52:f4:c5:d0:94:5e:a5:ce:9e:3c:00:f3:e1:f2:
88:e3:e2:7d:6d:7b:16:17:b2:ee:5e:3f:86:ab:97:
71:71:dc:ef:d5:95:ea:50:50:7a:bd:db:c8:a6:c4:
c3:6e:4a:13:a2:79:97:90:1e:2e:3e:82:a3:de:f1:
62:3b:75:8d:17:13:29:7d:5a:92:3e:64:0b:c1:97:
84:7d:5b:38:47:09:f0:95:eb:73:41:cb:ae:0b:92:
b2:3e:e3:d2:8a:e9:81:9d:9d:df:24:30:da:25:da:
3f:0c:8d:7c:4d:5c:7b:09:43:2e:d3:63:0b:9d:1e:
c1:b1:ef:36:9e:cd:8e:81:46:0f:8b:da:d3:9f:5e:
ba:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1E:D3:85:72:C3:B1:CD:00:54:DD:E4:32:00:ED:3B:48:5A:9D:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/392B6A0869D811EFB85E6A7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.54.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:bd:97:19:91:9d:3b:e9:e1:9f:72:12:0b:d2:ce:f1:f9:fc:
f2:1e:3e:8f:51:00:7a:39:b5:47:41:fa:da:45:e1:85:4d:40:
06:27:b3:e2:80:89:65:0a:b2:02:4d:3b:73:96:cc:5d:ba:46:
04:04:6a:f6:d0:35:2e:47:79:a9:27:dd:ac:ae:4a:4f:c2:80:
1a:bf:07:56:3b:5a:88:4e:0e:47:df:8e:4a:b4:03:20:e7:dc:
32:30:bb:75:f7:1a:c2:d6:2f:90:e5:5b:f7:d1:8d:1a:95:88:
0e:bb:96:be:86:8a:9f:bc:78:98:fd:92:ee:58:5e:37:1c:ff:
aa:98:09:67:5b:8e:40:23:05:be:04:87:b9:2c:a4:4d:2d:03:
7d:82:f5:f9:53:7a:1a:cf:ec:81:a4:69:77:b1:2c:57:a2:30:
e4:43:61:f9:98:e9:8c:5d:52:ec:e9:99:16:e0:2d:30:c6:fd:
86:a9:5f:e9:c3:27:3f:ee:41:79:8c:2d:04:f9:cb:a7:08:68:
70:1c:e2:93:4b:78:e4:e8:b0:ac:be:2e:61:85:74:b2:44:7b:
a5:f4:4d:f7:d5:80:f7:05:db:19:fc:6d:d1:85:b2:64:83:c9:
23:a3:4a:c7:ec:6e:6c:6d:7c:a0:c0:28:27:2c:42:0f:73:ea:
00:bb:0b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:26 2024 by rpki-client on console-ams.rpki-client.org