Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/432DBF50A8D111EF95F34499762E951A.roa
File: 432DBF50A8D111EF95F34499762E951A.roa (raw, json)
Hash identifier: Hs/UwGPu1T+QjHysGLhVlZhtMKllflmui6zIvUpQXWA=
Subject key identifier: 4B:C3:14:31:F2:C9:AA:28:C0:ED:03:71:3B:12:E5:BD:0E:3D:A3:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D861
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/432DBF50A8D111EF95F34499762E951A.roa
Signing time: Fri 22 Nov 2024 12:57:00 +0000
ROA not before: Fri 22 Nov 2024 12:56:56 +0000
ROA not after: Sun 01 Dec 2024 12:56:56 +0000
asID: 133522
IP address blocks: 156.227.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55393 (0xd861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 22 12:56:56 2024 GMT
Not After : Dec 1 12:56:56 2024 GMT
Subject: CN=67407f9c-a5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:de:d8:af:18:bc:c6:36:35:c2:5f:21:22:38:
e0:de:92:32:20:e1:12:88:be:ab:df:fd:37:a2:49:
62:d2:30:da:23:1c:30:69:9c:15:ee:f0:cc:50:c6:
4f:4c:0f:dc:1b:04:7d:72:57:21:40:6b:a5:5d:c4:
ba:d1:e5:da:5f:8c:60:ce:8b:5a:1c:1d:d2:79:c8:
46:4f:f7:a0:75:d8:36:e0:52:6f:70:03:52:2b:c1:
f5:8b:81:0a:39:df:ef:f8:39:82:c9:4e:e0:08:c1:
ac:6f:c4:9b:05:f7:c5:2e:cd:6e:5a:35:01:07:80:
a7:ff:5b:45:82:c9:60:2b:44:ca:ca:97:5d:94:72:
8f:34:32:b2:8b:97:ac:d6:7f:95:cb:a7:f0:fe:e7:
57:27:a2:7e:d3:67:ca:6a:eb:e1:bc:ec:72:50:b7:
2c:d1:ea:db:7c:53:ee:e4:12:63:d8:99:23:cc:70:
43:4c:51:a0:64:20:e0:d7:c5:56:6a:73:70:b1:b3:
cf:d7:6f:60:b0:98:43:81:84:c4:07:b3:26:5d:ae:
a0:57:af:76:48:40:a8:f5:3c:0e:d5:2f:5d:0c:3f:
02:58:fe:4f:d4:ed:42:4d:ba:27:f7:7e:fe:db:f3:
12:62:f1:fe:da:a4:8e:29:d0:23:21:2c:d5:a1:1a:
8e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C3:14:31:F2:C9:AA:28:C0:ED:03:71:3B:12:E5:BD:0E:3D:A3:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/432DBF50A8D111EF95F34499762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.32.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:08:33:76:49:d8:cf:b8:09:a2:87:69:a5:82:b7:9c:f3:6a:
8d:2c:dd:65:a3:c6:f1:18:5c:d4:03:d1:92:a9:e1:07:30:df:
a4:fc:37:75:0c:cc:d6:8b:90:45:9c:37:32:fd:ba:63:b2:da:
19:57:da:eb:b1:8c:59:a0:64:6e:eb:68:84:73:6a:fc:1b:ed:
0d:2f:38:0b:f8:35:03:30:fd:23:d3:6c:12:be:de:b1:6a:a2:
46:f4:6c:cd:84:8d:7b:c3:ad:2d:d8:8e:92:fe:a6:82:ee:9b:
38:4a:44:54:08:3d:62:bc:5b:62:56:4c:96:c9:40:0d:f1:96:
22:05:8d:b4:25:18:7d:4b:e0:1c:2c:17:d2:05:78:88:22:6a:
6d:62:d3:48:b0:99:cf:c0:94:38:21:07:53:fe:d5:77:78:aa:
e0:e2:8f:96:28:9b:5d:0e:ae:99:82:e8:91:55:10:7f:8c:d8:
2a:49:20:ae:d2:bf:d1:fb:3c:3b:01:7f:8f:3a:1e:78:d2:21:
6c:5d:a0:d6:f9:f4:81:5e:13:55:8b:50:43:10:bc:7e:f3:21:
80:0c:bf:e1:aa:6d:bc:1f:b9:cb:e7:cd:fe:23:f5:14:14:42:
d6:1b:fc:0c:09:74:9c:cc:f2:70:56:7e:a4:e7:78:42:6f:38:
4b:06:24:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:59:35 2024 by rpki-client on console-fra.rpki-client.org