Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53D7843EA44011EF940A7F60762E951A.roa
File: 53D7843EA44011EF940A7F60762E951A.roa (raw, json)
Hash identifier: MAb5MmQ/cLIsMYTqNnewa5z3ov9v9wV4DlotR0YxZ2Q=
Subject key identifier: C9:C2:4B:66:25:9F:E6:F9:81:2D:11:10:D3:94:9D:98:1D:06:28:B5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D362
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53D7843EA44011EF940A7F60762E951A.roa
Signing time: Sat 16 Nov 2024 17:29:26 +0000
ROA not before: Sat 16 Nov 2024 17:29:23 +0000
ROA not after: Sun 22 Dec 2024 17:29:23 +0000
asID: 140869
IP address blocks: 156.225.80.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54114 (0xd362)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 17:29:23 2024 GMT
Not After : Dec 22 17:29:23 2024 GMT
Subject: CN=6738d676-fb03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:89:54:e5:f7:55:be:9c:fe:41:3a:cb:a3:51:
6d:13:77:a5:64:a5:f2:0b:d6:8f:49:fe:b5:58:02:
11:e2:b1:7e:2d:b3:36:b2:00:9b:2c:af:41:16:af:
2f:22:44:a8:d1:ea:c2:b9:4c:92:96:49:1e:78:67:
ac:cb:02:30:da:9d:ba:3b:30:8f:9f:7e:52:0f:a4:
c4:be:5b:75:2a:08:aa:5a:30:38:6f:a7:63:28:85:
a6:28:25:d1:1e:31:aa:9b:81:51:d9:8f:7b:57:97:
75:b1:85:a0:cf:01:da:89:84:6f:62:7d:9d:8d:4e:
5b:a3:f1:f5:6f:b6:a2:d5:14:10:4d:e1:a3:7e:db:
be:9f:4c:50:44:5d:ec:b1:f5:23:5d:3f:c4:18:1d:
c0:f6:c2:fd:92:30:a0:0b:f5:bd:a5:b8:12:f5:f0:
8c:30:07:69:87:2f:76:35:ae:f2:bb:f8:a9:36:63:
fc:6d:9a:08:50:9e:98:6f:50:8a:b5:03:15:a5:6b:
35:c5:f6:39:ec:56:84:d3:06:b9:7a:76:f9:b3:ac:
41:dd:fb:b8:fb:35:43:94:27:7b:ed:99:74:49:0f:
4c:c8:fa:f0:d1:f7:2f:9f:47:49:b6:4a:6e:4d:13:
4e:5b:05:d6:15:49:4a:3e:47:a2:16:07:f3:ca:e9:
01:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C2:4B:66:25:9F:E6:F9:81:2D:11:10:D3:94:9D:98:1D:06:28:B5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53D7843EA44011EF940A7F60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.80.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:fa:ec:d2:b5:61:71:a7:1c:af:7c:73:eb:fe:40:14:ba:72:
cb:52:23:bb:15:fc:03:3d:fe:e9:07:1e:c9:2c:e8:cb:f9:26:
a7:3c:6f:0a:14:48:6a:81:bd:3c:e8:da:88:90:23:6f:c8:fa:
c9:af:f8:ec:57:f9:73:68:22:03:0a:e5:e9:fc:0d:ed:a2:66:
aa:dc:b1:0f:16:d5:5d:5f:9f:b0:ca:75:e7:00:85:fc:2e:ec:
8f:e8:aa:a8:9c:ac:35:c7:86:9a:21:a5:35:3d:c1:18:86:54:
3b:37:00:33:33:51:e7:71:f9:3b:dc:30:37:a5:63:73:05:1f:
c1:8c:bb:71:ae:30:3f:9c:2a:f0:ee:98:1a:04:87:df:9c:b1:
3b:d4:74:d8:b6:86:74:dc:60:52:b8:9a:aa:e2:40:a8:d2:cc:
28:56:e9:d3:f7:1d:61:4b:0d:60:b9:69:f2:a4:44:41:1e:2d:
9d:ea:44:b3:76:bb:f2:b1:b9:2e:43:92:04:9b:56:0c:bd:6f:
79:e1:be:82:50:93:69:60:ce:f0:ad:05:c6:0f:36:d6:3b:77:
18:3d:33:c0:4b:7b:40:70:fc:65:9e:b8:0c:f8:84:75:40:72:
c4:ac:ec:ce:ea:dc:74:49:b4:6a:5d:9e:06:0e:ae:50:5a:71:
e2:f0:7d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:30 2024 by rpki-client on console-ams.rpki-client.org