Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40A93158A43D11EFA6A36F4D762E951A.roa
File: 40A93158A43D11EFA6A36F4D762E951A.roa (raw, json)
Hash identifier: CzE7GJ0N3GhAbgSCMqxdzxJz8Sq3nqdtLcUWCkrM4DQ=
Subject key identifier: B9:67:41:B1:A7:E1:A8:ED:D6:BB:95:85:FF:B6:11:80:2D:8D:1B:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D346
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40A93158A43D11EFA6A36F4D762E951A.roa
Signing time: Sat 16 Nov 2024 17:07:26 +0000
ROA not before: Sat 16 Nov 2024 17:07:22 +0000
ROA not after: Tue 17 Dec 2024 17:07:22 +0000
asID: 14315
IP address blocks: 156.224.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54086 (0xd346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 17:07:22 2024 GMT
Not After : Dec 17 17:07:22 2024 GMT
Subject: CN=6738d14e-ce4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4e:91:44:31:e9:8b:6f:99:ea:1e:a7:b4:2e:
65:49:33:bc:f3:10:c8:c9:49:27:1a:e3:49:6f:c1:
3b:d5:0c:9e:cc:6f:97:3f:cd:30:08:9e:1a:42:0b:
6c:b4:66:9f:01:6c:5a:a9:c9:f4:57:fb:0e:7e:a9:
c9:0f:36:54:3f:29:a0:31:cd:0f:f6:27:af:50:f9:
70:6e:e1:59:ae:e8:c0:24:71:5f:38:3b:dd:7f:b8:
e0:aa:59:aa:6c:fa:89:82:36:59:31:34:a5:0c:cf:
09:91:00:e8:81:fe:74:b6:32:91:56:a7:fc:24:4d:
e9:10:8f:af:21:9b:74:a5:42:5b:2f:06:83:12:d5:
1a:e1:ef:08:fb:8f:52:32:5f:80:e1:a3:e9:83:98:
71:98:e6:be:dd:b5:a1:ac:e5:5d:13:f9:2b:c5:f7:
88:73:9c:c1:ba:6b:87:7e:01:2a:fc:a9:b1:c2:2e:
0a:b9:cc:69:8a:30:21:e3:82:84:2a:c4:43:cb:8d:
f3:35:5b:1e:5c:3c:de:cc:92:c0:73:0d:c3:56:29:
fb:bc:0e:e9:41:f8:ef:78:1a:68:f6:36:d2:d2:97:
a3:eb:6b:63:ce:be:2f:43:42:d5:57:0c:59:ab:92:
9f:b3:80:08:41:23:38:36:fb:8b:79:7f:19:3b:6d:
f3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:67:41:B1:A7:E1:A8:ED:D6:BB:95:85:FF:B6:11:80:2D:8D:1B:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40A93158A43D11EFA6A36F4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.68.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:36:58:88:a5:1d:1d:c1:39:bc:2f:03:dc:7a:6c:ab:80:eb:
6e:24:4c:eb:b1:cd:9b:7b:33:05:ed:fd:7c:23:b9:8d:79:78:
c2:bd:dd:16:ec:00:bb:a2:60:c7:4d:ea:f7:2f:ef:bd:2c:1d:
3b:4c:4a:6f:81:2d:48:9d:31:3b:97:76:84:3a:32:d1:76:ca:
66:58:c9:b4:f1:ef:76:d1:79:2a:23:12:58:3b:dd:66:6a:8a:
50:48:c4:da:c6:e5:b1:ed:d8:db:a2:d7:1c:1b:9f:fe:b9:5f:
5f:e8:71:3c:6d:7f:5d:0d:7e:4e:c7:88:6c:68:7d:28:19:84:
c2:85:f4:ad:5f:39:18:fc:85:6c:c5:0b:52:85:79:bb:00:1b:
45:fb:e8:b2:cd:e0:7e:56:ca:a1:75:f3:38:af:d8:ff:e5:ff:
17:b9:8b:36:b7:ef:a9:5b:10:17:39:d5:6c:fd:07:97:fb:44:
13:cd:b3:be:fc:95:a0:56:ac:2a:e8:fd:78:82:46:38:cf:b1:
b8:6c:b7:3d:f2:34:78:3a:2f:45:70:35:40:21:57:83:3d:f8:
e0:b4:08:6a:60:cc:c9:6e:1b:59:06:98:85:d9:c2:a5:71:bd:
ee:66:26:59:12:37:11:e5:9b:22:da:f5:6d:8f:0e:72:1f:7c:
e7:db:25:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:26 2024 by rpki-client on console-fra.rpki-client.org