Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/523BF936976911EFBB3F0F5A762E951A.roa
File: 523BF936976911EFBB3F0F5A762E951A.roa (raw, json)
Hash identifier: forFYpmkTuilkSMhy6w997sq55e+gXtuxM7fw6dJmGI=
Subject key identifier: 01:38:46:A0:B4:BD:99:25:13:91:27:ED:E9:5E:E8:0C:4F:23:2A:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB1A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/523BF936976911EFBB3F0F5A762E951A.roa
Signing time: Thu 31 Oct 2024 09:20:08 +0000
ROA not before: Thu 31 Oct 2024 09:20:04 +0000
ROA not after: Fri 13 Dec 2024 09:20:04 +0000
asID: 138915
IP address blocks: 156.244.44.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51994 (0xcb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 09:20:04 2024 GMT
Not After : Dec 13 09:20:04 2024 GMT
Subject: CN=67234bc8-74c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5c:6e:58:d4:c2:4d:30:a1:cf:bd:5e:ec:14:
20:74:e3:08:f0:de:36:d2:b8:9e:4d:4e:56:ee:a2:
35:bb:90:04:91:53:42:02:72:aa:f6:6a:14:40:d4:
7b:9e:89:72:2f:c9:c7:14:08:7b:1d:b0:14:0c:23:
9d:99:8a:77:c4:22:f7:59:f6:06:a6:b6:ee:46:d1:
3f:a1:77:ee:b3:9d:4a:60:9c:10:d8:c0:87:e1:ee:
65:ac:7e:2b:7d:ea:84:34:33:22:10:cc:e8:2e:f9:
0f:18:4e:64:36:83:c9:bd:a4:c5:9d:27:eb:de:54:
8c:e6:f3:80:8b:27:f6:4a:4f:70:f4:dc:69:a1:45:
d7:22:25:9f:24:5d:35:56:04:bb:8f:d1:02:c7:cd:
34:65:09:f5:97:76:76:97:33:3f:93:b3:93:7b:1e:
c8:d8:2a:de:43:76:f7:3e:7c:72:bb:15:f2:7b:4d:
17:f0:cf:59:08:af:b3:76:ac:6a:50:f7:71:1f:49:
56:d8:89:7d:e7:ed:64:5d:36:5b:46:14:a5:b6:6b:
18:be:8f:32:6a:38:a7:da:f1:2c:52:d4:81:64:d2:
e7:ed:3f:f6:04:25:07:f7:44:c3:c6:73:14:54:8e:
a3:6a:44:2a:e4:e2:86:1d:4f:d3:0f:e3:8b:9d:71:
54:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:38:46:A0:B4:BD:99:25:13:91:27:ED:E9:5E:E8:0C:4F:23:2A:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/523BF936976911EFBB3F0F5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.44.0/23
Signature Algorithm: sha256WithRSAEncryption
51:e8:6c:e0:02:7b:94:95:b9:21:01:2b:07:eb:de:97:73:88:
14:1e:cc:dc:a8:76:e8:7a:0d:a2:2e:ee:6b:a9:96:93:32:37:
b1:44:58:76:ee:0e:5b:8e:92:b0:a9:93:fe:8e:49:97:23:11:
e9:7b:b3:20:b8:5b:35:73:da:df:67:55:eb:31:ee:9d:10:ac:
74:12:00:5b:53:6f:0b:ef:12:39:12:95:b4:3a:e1:3b:c9:1b:
0d:81:e9:37:83:30:f9:d5:6d:8a:34:c9:5c:8d:34:be:75:e3:
04:b5:a7:a6:6e:d6:c6:02:fc:60:b5:a6:1c:ed:f0:7e:fd:1d:
b6:3c:a5:96:43:8f:8c:c5:89:2c:a9:81:3d:b9:8b:4a:5c:c7:
3e:30:b3:26:dc:41:62:33:ce:da:95:34:fe:33:58:f3:72:f1:
77:59:6d:b8:4d:be:5d:bb:b7:e2:54:72:07:88:9e:61:59:48:
7d:30:87:93:92:50:fd:ec:50:53:62:bf:99:a5:0e:0d:20:b0:
fc:5b:b8:b2:d1:ca:b2:5b:39:a8:32:57:32:a2:ed:77:7b:5b:
f0:b1:1b:ce:60:cf:34:4e:57:57:e4:97:e7:b7:f6:5d:ba:0e:
2e:3f:9f:37:23:0f:0b:63:ca:80:eb:d7:9e:c2:77:e1:de:0d:
ae:2a:fc:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:30 2024 by rpki-client on console-ams.rpki-client.org