Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5663E5E8605811EF96441C56762E951A.roa
File: 5663E5E8605811EF96441C56762E951A.roa (raw, json)
Hash identifier: C4BYf7i2ZiClKulodwncmtPdZiFadgIV2zQxyNgqoIA=
Subject key identifier: F1:81:2A:98:FE:D0:78:38:F2:D4:05:F7:2B:20:07:E3:C6:80:4C:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: AC75
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5663E5E8605811EF96441C56762E951A.roa
Signing time: Thu 22 Aug 2024 07:29:59 +0000
ROA not before: Thu 22 Aug 2024 07:29:56 +0000
ROA not after: Wed 20 Aug 2025 07:29:56 +0000
asID: 152179
IP address blocks: 156.241.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44149 (0xac75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 22 07:29:56 2024 GMT
Not After : Aug 20 07:29:56 2025 GMT
Subject: CN=66c6e8f7-320a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2e:08:ad:04:54:6c:02:ff:a7:7e:ab:6b:c0:
16:4e:54:5a:5b:ec:5e:eb:0d:30:5c:2c:4f:ce:c9:
fa:97:8e:61:32:99:be:d7:46:ff:69:89:bd:fc:95:
00:b2:a6:0b:07:e2:ac:cd:50:b9:94:70:6b:2c:c0:
c1:3a:a2:97:3a:99:81:80:66:f9:fb:96:c6:c6:ec:
bb:1a:2e:89:0d:13:bc:df:05:45:2f:b0:a6:fd:6c:
fc:ae:50:75:d5:77:25:7b:71:9e:cb:46:77:b5:8f:
17:e7:e6:55:14:ed:be:a9:94:07:4c:96:a1:fb:41:
31:cc:c8:33:da:c6:72:6a:2f:3e:b6:20:bb:2a:52:
bf:02:ba:7e:64:d6:9b:a0:44:04:f1:22:b6:08:ef:
fb:e7:ac:4c:45:62:f0:64:f3:55:5a:06:ec:75:38:
9a:38:e4:fd:3e:34:ae:67:ce:10:fd:53:8e:5a:71:
a4:75:8c:0f:22:6e:1b:15:9a:2c:b1:d6:f2:a0:f9:
0f:76:a8:b8:ff:46:30:d0:86:b4:cf:6d:cc:f9:fa:
b0:2c:6d:17:bf:9a:67:3a:73:01:f0:9e:1a:47:42:
65:bb:10:7d:2f:63:d6:ca:b5:02:6f:80:aa:d6:8d:
63:34:17:df:46:64:9e:d9:fd:a4:e6:ff:39:4a:43:
32:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:81:2A:98:FE:D0:78:38:F2:D4:05:F7:2B:20:07:E3:C6:80:4C:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5663E5E8605811EF96441C56762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.3.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:2a:b1:f6:83:a3:ec:46:3a:df:c3:a0:ce:0e:58:d3:75:c2:
be:bd:76:86:a9:50:68:de:f8:d2:54:f2:f1:96:c6:a5:80:e1:
97:2e:9f:2c:e3:b5:b6:cd:a5:14:69:aa:ac:81:b8:8e:7e:9d:
c0:be:4b:8a:74:39:b2:3e:aa:44:e9:29:d1:eb:1d:88:b7:69:
6c:82:81:f5:1d:11:b1:48:6d:88:8d:5c:fd:32:5f:aa:ec:06:
e7:a9:ed:43:a2:2e:bc:7b:34:63:f5:83:41:9b:6e:c9:92:dd:
5f:71:1a:34:03:06:2a:56:4c:a3:e3:3b:f4:60:04:07:b0:33:
85:35:cf:cf:cb:61:c2:7a:b6:30:b0:13:c7:a2:bd:c9:b7:b9:
0e:b9:ec:ba:8b:9a:0b:c6:0e:e3:ce:69:d8:64:e7:00:95:4b:
26:ed:81:86:00:91:d9:ae:b1:cc:39:6a:dd:d5:da:60:54:fb:
c1:32:8d:43:89:ca:fa:1e:4b:53:ab:8a:a4:b9:e7:1b:14:92:
10:0e:ff:e5:f3:7b:88:2d:c3:ed:e3:e2:c1:1c:dc:45:0f:3a:
8c:fa:72:31:21:6a:84:a1:6f:04:06:b2:1d:1a:5c:bf:97:ee:
86:02:4e:1c:7e:ba:85:94:40:f6:16:ae:b3:af:13:6e:c6:dc:
8f:09:bb:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:31 2024 by rpki-client on console-ams.rpki-client.org