Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/561FBC886AA311EFB1F98779762E951A.roa
File: 561FBC886AA311EFB1F98779762E951A.roa (raw, json)
Hash identifier: cNY1n8e8Htdb8OgTZadg/WMl+crTek/JhnxQGqz/uyw=
Subject key identifier: 5E:86:27:1F:C0:9A:32:51:59:3A:00:9D:1A:17:24:95:21:C4:22:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B1BF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/561FBC886AA311EFB1F98779762E951A.roa
Signing time: Wed 04 Sep 2024 09:52:03 +0000
ROA not before: Wed 04 Sep 2024 09:51:59 +0000
ROA not after: Thu 24 Apr 2025 09:51:59 +0000
asID: 63888
IP address blocks: 156.254.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45503 (0xb1bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 4 09:51:59 2024 GMT
Not After : Apr 24 09:51:59 2025 GMT
Subject: CN=66d82dc3-e335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bb:e1:44:a1:87:7f:5c:df:a3:55:1e:a2:5c:
70:ae:57:58:49:0d:65:eb:c1:74:c6:2d:85:75:25:
75:51:1b:4e:9f:01:a8:fa:6c:50:fc:29:2b:ba:f8:
d4:0c:9d:52:7f:3c:6e:6e:9d:44:ea:ba:cd:e6:48:
e1:e4:38:a5:0c:3d:e5:4f:91:5b:a7:31:19:34:03:
be:f2:06:a8:41:cd:90:cb:9f:e8:4a:42:76:53:95:
b6:c4:f3:15:82:81:9a:78:90:7c:0a:b7:a2:b2:a9:
d7:11:40:a4:92:4d:64:3d:c2:3f:b9:e9:6e:6d:92:
8b:b2:4d:ef:6a:20:f0:44:28:c7:8d:a8:4b:5b:92:
25:3d:93:a1:9d:58:1f:86:5d:d4:31:d8:0a:ca:81:
10:ac:91:92:a7:e8:8e:7f:5b:d0:74:89:d6:a2:b8:
57:d8:9b:e0:ca:b2:ac:62:14:bd:38:32:0e:6a:2f:
48:46:dc:5d:12:36:5d:28:61:ba:2f:eb:a2:d2:7d:
ac:e4:11:b6:5f:c0:0f:55:f6:dc:77:43:4e:3b:5b:
57:11:d7:20:62:d0:c9:02:01:1f:9b:78:45:41:27:
70:6c:cf:41:98:56:7e:9e:77:db:6e:4e:fa:2c:84:
d8:1a:c4:c6:1b:0e:49:cf:61:0c:8b:93:90:b0:d7:
3f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:86:27:1F:C0:9A:32:51:59:3A:00:9D:1A:17:24:95:21:C4:22:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/561FBC886AA311EFB1F98779762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.114.0/24
Signature Algorithm: sha256WithRSAEncryption
95:7a:ed:fe:e0:cb:93:8c:83:c2:0e:c1:79:3c:9a:b9:16:26:
95:76:1a:d6:99:de:53:00:72:87:28:da:ff:8b:70:4e:4a:08:
05:1f:fc:55:7b:8d:6c:0e:97:6c:57:7e:da:fe:54:5c:e2:e2:
5a:93:4f:cb:4b:da:31:f5:52:cf:f0:3a:dc:5d:21:b8:8f:d4:
22:c1:30:c6:18:5a:25:78:46:1a:54:4b:43:65:a7:d2:cb:94:
b3:f3:4f:77:c8:af:db:e2:33:6d:a0:47:20:94:06:2b:ca:99:
69:46:95:22:b0:ec:b1:a8:61:11:9d:0f:e3:27:56:26:af:3f:
97:af:bb:35:bd:b3:a4:6c:f1:91:39:a4:1c:e8:60:27:2a:f8:
f7:26:d2:8d:fd:a3:92:f5:48:59:12:2a:e1:d0:a4:30:e6:8b:
6d:a2:cf:9d:e3:84:6f:bc:07:f4:a2:ae:2d:b8:d6:c3:80:35:
0d:d9:a0:21:33:04:74:bc:6a:00:75:a5:3b:58:12:25:de:58:
c5:61:c6:77:93:63:77:ac:b6:fa:00:02:8f:02:b0:db:28:9f:
93:9b:98:97:97:31:ae:61:1d:8f:99:4d:76:ae:ac:b3:f8:aa:
6b:be:9a:39:cd:31:f8:28:91:15:dd:dc:63:5f:2f:68:38:d8:
58:31:7f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org