Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5400FF949F9A11EFBF6D2974762E951A.roa
File: 5400FF949F9A11EFBF6D2974762E951A.roa (raw, json)
Hash identifier: AALCUeJjzhKS5v72tdo9lNldrfiLKtPD+taYFP5Bif0=
Subject key identifier: 82:87:A5:28:B3:41:1B:E2:CF:6A:EA:E5:09:D6:46:DA:42:F5:5F:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D144
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5400FF949F9A11EFBF6D2974762E951A.roa
Signing time: Sun 10 Nov 2024 19:31:06 +0000
ROA not before: Sun 10 Nov 2024 19:31:02 +0000
ROA not after: Thu 21 Nov 2024 19:31:02 +0000
asID: 44559
IP address blocks: 156.233.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 21 Nov 2024 19:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53572 (0xd144)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 19:31:02 2024 GMT
Not After : Nov 21 19:31:02 2024 GMT
Subject: CN=673109f9-8bd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:87:59:1d:a3:d1:48:c1:71:98:86:24:03:
bd:38:b9:52:90:ff:7f:1c:3d:6a:4d:4f:8e:64:7b:
dd:2a:4c:55:f3:ef:0e:5d:ca:c7:57:94:9c:6f:b6:
13:74:14:9f:a4:83:56:f4:a7:8f:69:e0:7f:f7:7a:
98:b2:c7:40:31:59:e9:dd:13:fa:cb:a2:21:f8:d4:
07:34:cd:d6:7b:94:7c:d0:23:ca:32:e0:09:e0:32:
d7:f2:c2:1f:07:8d:8e:5a:47:69:be:72:4f:d8:20:
bb:2e:4a:ad:f1:f7:57:d1:03:ab:bf:7d:bf:8d:4c:
de:09:98:7c:3f:8e:a2:ce:9e:99:77:be:8b:29:0a:
4c:59:d4:f8:b7:dd:31:bc:77:78:fd:5b:2d:ab:55:
14:58:7c:89:03:cd:ad:48:f4:00:23:32:c0:0a:25:
d9:59:da:9c:4e:65:71:33:55:cc:02:17:1d:08:24:
19:d9:34:4b:a1:3f:20:bf:b6:cb:24:0e:ad:1e:d3:
cf:a6:ca:52:7e:20:c2:91:2e:bb:43:6c:73:69:ab:
ad:fa:a2:d3:66:3c:55:d4:2c:cf:98:b9:cb:cd:1d:
6f:fc:9a:b2:df:00:84:ca:07:fb:24:61:10:dd:5e:
54:79:e9:49:0b:92:d4:fe:25:a0:8f:2e:b9:bb:a3:
96:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:87:A5:28:B3:41:1B:E2:CF:6A:EA:E5:09:D6:46:DA:42:F5:5F:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5400FF949F9A11EFBF6D2974762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.208.0/24
Signature Algorithm: sha256WithRSAEncryption
11:a7:52:a9:e3:3e:6d:94:97:6f:da:26:41:2c:93:72:5a:d2:
1c:32:23:52:1d:ef:8a:df:c2:86:56:ee:be:f1:a5:57:49:1a:
3b:d5:09:59:7a:54:93:0c:9c:58:99:1c:67:8f:88:81:4f:04:
ca:ee:79:24:11:d7:fc:41:5c:85:e6:30:77:1a:d9:41:b5:1d:
24:46:b4:45:fc:20:bf:b6:98:e7:03:06:c7:32:26:3a:c8:61:
9d:83:ef:0f:6b:df:11:7a:bb:78:13:91:2d:42:e3:d7:c5:e3:
25:93:7b:68:4c:0c:68:4d:18:64:05:f6:67:51:b3:50:34:de:
f4:b1:3a:56:43:42:4f:34:99:15:9b:33:35:d4:f1:dc:72:48:
6d:14:cb:c2:04:4c:87:8e:18:8f:8b:7e:40:fd:bf:33:08:54:
32:a0:bb:07:17:9c:0d:fd:41:96:fb:ad:f0:78:43:ae:fa:78:
48:98:96:f9:97:96:cc:5f:e5:b7:af:40:f8:ce:05:08:17:dd:
01:42:df:f4:82:44:3e:c6:4c:aa:16:f5:aa:5e:d2:fa:3a:b5:
7f:fa:f5:27:6a:d7:1c:b2:66:ab:33:79:46:f7:ad:34:a3:f3:
37:90:02:72:8b:7e:ba:5c:d6:e3:e8:16:5f:9a:2a:82:e2:1a:
7f:01:1d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:30 2024 by rpki-client on console-ams.rpki-client.org