Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3AEADFD0951211EFBB03D093762E951A.roa
File: 3AEADFD0951211EFBB03D093762E951A.roa (raw, json)
Hash identifier: B/xDEf2W/tuB+RN+/GjsQXuD/8tWLB1r7sIwLPXtmWs=
Subject key identifier: 78:A2:8A:EF:4E:17:6B:79:D8:44:53:44:0A:87:29:FB:E7:10:8F:6B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C93A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3AEADFD0951211EFBB03D093762E951A.roa
Signing time: Mon 28 Oct 2024 09:51:40 +0000
ROA not before: Mon 28 Oct 2024 09:51:37 +0000
ROA not after: Sat 30 Nov 2024 09:51:37 +0000
asID: 203020
IP address blocks: 156.243.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51514 (0xc93a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 28 09:51:37 2024 GMT
Not After : Nov 30 09:51:37 2024 GMT
Subject: CN=671f5eac-e8ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:50:ef:dd:ea:07:ab:2c:62:8e:bc:64:3a:f8:
c6:49:11:98:f0:8d:9c:9f:99:5a:fe:4e:b7:eb:51:
4a:0f:ef:0a:e6:0f:c4:b0:64:12:5b:9e:94:67:b4:
17:b1:dd:ef:da:8b:10:66:72:23:15:e1:cb:c9:d7:
05:8b:56:cd:a5:49:5b:3c:63:b0:d4:5b:0d:54:aa:
ce:91:7c:da:97:a2:69:fb:e0:7d:a0:4c:8e:e3:61:
31:cc:7d:36:bf:41:dc:f7:76:65:fd:5e:c3:47:64:
f0:d8:c0:9e:57:bf:23:da:e1:62:22:7f:e5:ac:0d:
d4:48:d0:c6:ec:35:7b:e5:28:3f:78:f6:0e:47:6a:
62:9d:c6:09:0a:07:2e:49:5d:22:d6:d3:a7:04:26:
d5:99:d8:25:bb:91:60:32:67:3e:37:4f:e0:78:bc:
7b:77:25:1b:94:39:6f:da:1a:b9:cc:0b:dd:97:b5:
bb:9c:85:99:eb:45:10:2a:6b:fc:d0:6d:17:93:0d:
d3:d8:1b:27:34:70:2c:4a:69:25:30:8a:37:21:f9:
7a:2c:71:bc:83:5f:15:eb:14:ee:07:52:1c:87:41:
fd:f2:63:f1:5b:63:b1:7c:33:1d:9f:68:4b:b9:31:
69:8e:31:93:fd:6d:a0:4f:a9:07:4b:e2:2c:f9:20:
7b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A2:8A:EF:4E:17:6B:79:D8:44:53:44:0A:87:29:FB:E7:10:8F:6B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3AEADFD0951211EFBB03D093762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.235.0/24
Signature Algorithm: sha256WithRSAEncryption
46:de:90:8e:11:94:11:99:21:e7:65:92:4a:02:ed:c1:c6:76:
59:8a:45:48:c1:06:a7:ec:2d:e5:54:46:43:16:c8:c7:d1:5f:
31:2d:01:0c:06:82:ec:32:f5:83:3e:5a:1b:04:cc:c5:fa:9b:
d5:ab:72:41:5e:09:fa:5a:4f:58:52:00:30:9e:7d:c3:94:cf:
60:28:c4:2a:a4:63:c2:7d:b4:cc:ba:1a:c5:5e:fe:cd:ab:ea:
c9:89:fe:52:83:27:f2:7a:9e:a9:93:51:3c:4d:85:9a:b8:8c:
79:84:8e:a8:dc:92:e5:a4:d0:b9:41:cb:ab:7f:93:3d:14:e1:
2f:38:b1:7a:9f:12:25:a6:52:6e:c3:ed:e5:bd:e0:56:fb:62:
20:ce:18:7c:f2:2d:4d:c0:f3:c6:6a:25:a9:e1:8e:2a:41:de:
a3:fc:4f:5d:40:14:f4:a4:d8:ec:77:d2:45:d1:0f:17:7d:f5:
80:1e:75:5c:77:62:c3:f1:11:41:f6:f8:0c:63:32:d1:d9:e3:
6b:5f:ca:65:1f:cf:4a:ee:3e:f1:56:1d:b2:94:bd:a8:9b:99:
f5:85:b4:f4:fc:3f:24:17:7b:38:86:92:b8:94:5b:3e:32:8d:
4c:fc:aa:ae:ae:2b:2f:ba:9f:db:79:3b:66:9e:e4:33:2a:59:
a1:c1:c6:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:26 2024 by rpki-client on console-ams.rpki-client.org