Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44F3B640A33711EFA005566C762E951A.roa
File: 44F3B640A33711EFA005566C762E951A.roa (raw, json)
Hash identifier: e6tIcrd+ATb44OZEaMKPHSXfgwiBfveRj4vrP/4mv4U=
Subject key identifier: D1:3C:BB:89:28:90:35:2D:BF:B3:0E:D3:74:B0:9D:D9:F6:8A:FB:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D311
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44F3B640A33711EFA005566C762E951A.roa
Signing time: Fri 15 Nov 2024 09:52:05 +0000
ROA not before: Fri 15 Nov 2024 09:52:01 +0000
ROA not after: Sat 23 Nov 2024 09:52:01 +0000
asID: 54467
IP address blocks: 156.247.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54033 (0xd311)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 09:52:01 2024 GMT
Not After : Nov 23 09:52:01 2024 GMT
Subject: CN=673719c5-952e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:54:62:32:01:dc:45:34:62:04:d6:a6:e2:a8:
99:ad:cb:9a:c8:13:06:4a:3d:5f:d6:25:57:f4:b1:
bd:9c:72:fd:ac:f7:ff:34:03:70:3b:c9:3e:54:e3:
c4:a4:9b:05:91:3e:ba:d0:87:47:a0:8e:3e:3d:bb:
47:af:ff:29:f7:7e:b8:b3:2b:3c:1a:4f:f7:1c:37:
76:aa:50:d0:69:99:41:ab:e5:a4:3f:db:bf:98:87:
60:d8:f6:17:70:3c:4e:57:cb:1a:c0:1a:33:8a:ef:
f4:ba:b8:98:8d:d3:cd:85:7e:ec:70:95:f8:da:4b:
45:be:16:7a:d7:df:be:62:1e:5c:1d:58:d2:aa:5b:
cc:2c:72:c1:17:5c:5b:50:f8:62:d6:4e:85:bf:96:
29:27:76:52:74:0c:ec:2f:e9:5c:43:73:b5:66:fa:
c0:11:40:76:d2:eb:90:80:66:02:d8:58:08:68:ee:
df:10:65:4e:ba:98:52:94:54:aa:39:1b:37:a5:88:
03:97:97:5f:60:91:5a:5e:04:46:5f:fa:4a:f8:5c:
4f:79:d5:da:72:ab:5c:16:f8:45:02:38:6a:34:0d:
24:27:83:bc:73:48:cd:13:ad:0f:fa:5c:7c:06:23:
67:63:0e:58:b5:ee:37:b5:e6:b6:3e:76:ca:1b:16:
4a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:3C:BB:89:28:90:35:2D:BF:B3:0E:D3:74:B0:9D:D9:F6:8A:FB:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44F3B640A33711EFA005566C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.52.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:a5:a9:99:af:15:f6:2e:64:e6:f7:e5:22:31:63:bc:a7:49:
e3:2c:e6:c4:04:54:10:15:9c:ac:ec:4f:4f:cb:7c:cb:99:57:
11:30:1b:f7:51:71:82:cd:1d:37:23:53:52:54:20:7b:fe:49:
32:1b:03:6e:a2:30:1b:7f:8f:eb:41:70:48:8b:45:5b:3b:9f:
06:3d:44:dc:63:ec:e9:11:85:d6:02:2f:1e:d5:0e:d0:cd:5c:
8a:20:8a:17:3f:dd:f9:a9:1b:63:a2:ee:db:ed:80:2f:59:67:
2e:e8:03:ed:66:ce:f2:1e:3f:27:3b:9a:7e:9b:a3:ab:d8:30:
0b:a1:21:ef:9b:a3:1e:be:52:ef:41:7d:4b:74:70:5f:76:f1:
aa:c8:da:db:3e:34:cc:ca:01:a0:33:38:2e:87:af:f7:1f:76:
da:a4:fd:66:b4:ce:e5:9a:06:8d:ba:a8:a6:0a:19:6e:e0:49:
5a:11:c8:2b:c3:14:69:3c:92:54:5b:78:58:b5:97:d2:26:d1:
81:db:1f:d2:28:86:01:54:ac:08:09:4c:35:2d:d8:34:25:e6:
00:e3:ef:a2:ba:5f:5e:b5:f5:76:36:bd:44:11:e3:84:1e:4a:
fa:d3:be:39:33:4b:56:85:65:b9:de:df:2d:0e:50:fd:b7:12:
f6:94:5e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:28 2024 by rpki-client on console-ams.rpki-client.org