Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5861DF309AB411EF80ED699A762E951A.roa
File: 5861DF309AB411EF80ED699A762E951A.roa (raw, json)
Hash identifier: O0IlzAbJELOBS7cEm6YQ5moQhRjbdlrCvYkx19rLygo=
Subject key identifier: 04:AF:F7:9F:D6:87:EF:D1:AB:9F:1C:8A:3F:66:A8:5A:53:13:67:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CDE4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5861DF309AB411EF80ED699A762E951A.roa
Signing time: Mon 04 Nov 2024 13:54:44 +0000
ROA not before: Mon 04 Nov 2024 13:54:40 +0000
ROA not after: Wed 25 Dec 2024 13:54:40 +0000
asID: 135330
IP address blocks: 156.227.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52708 (0xcde4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 13:54:40 2024 GMT
Not After : Dec 25 13:54:40 2024 GMT
Subject: CN=6728d224-28f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6e:25:c0:96:d2:46:a8:de:83:62:2d:be:19:
9d:a2:5c:da:b0:b5:33:83:8d:d9:d9:49:00:6f:96:
e0:89:88:7d:25:6a:63:1c:12:fb:67:bc:dc:8c:8b:
dc:f0:1c:ad:f0:bf:85:50:11:22:f9:c1:48:6e:9c:
97:e6:f7:e5:c6:88:b4:a2:1a:62:15:be:49:1b:06:
9e:cf:4c:ab:ab:a9:b8:33:9d:68:ff:af:3a:71:43:
2f:e9:d6:64:2f:48:64:c0:42:7e:14:f9:92:80:b0:
0e:70:e1:be:4f:37:b2:51:26:e2:7a:e4:28:de:d2:
e1:c9:9b:d2:7a:43:5c:a9:7b:9b:e1:8e:ae:ba:65:
a3:c0:52:cf:d4:7a:dc:2a:58:dd:ea:79:a4:e7:a1:
66:8f:49:a3:e1:56:58:87:d9:ce:ab:8b:13:99:4e:
a3:11:6f:26:d9:08:c5:a0:3a:5e:0b:b9:1e:3d:d8:
56:07:10:21:79:6f:ad:97:ea:55:e9:78:24:2e:b5:
f9:d9:7b:53:12:a6:1a:37:45:72:84:3a:6f:fe:d8:
6f:57:fc:cf:c6:5a:f3:10:d8:da:42:25:7a:4e:4f:
b9:43:36:55:f4:6e:a2:ec:cc:65:92:74:20:66:41:
00:ea:b7:5e:60:0e:f9:aa:9c:9b:42:92:ae:61:2e:
9b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:AF:F7:9F:D6:87:EF:D1:AB:9F:1C:8A:3F:66:A8:5A:53:13:67:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5861DF309AB411EF80ED699A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.6.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:65:97:6f:b4:f2:36:00:ec:58:c2:0c:d0:bd:4b:c8:cf:f7:
09:f6:ff:74:8e:59:56:da:c1:42:8e:93:89:1e:e3:6a:93:a5:
59:1f:2e:e7:98:4a:58:12:bd:58:6f:1f:22:c1:5b:10:d4:6b:
94:70:36:1e:9f:64:9c:57:8d:77:19:ab:81:83:79:79:62:59:
97:53:ba:95:db:56:58:a5:a7:a8:ca:aa:01:e2:89:f6:08:3b:
05:ab:e0:d1:e1:03:67:4e:f2:a4:6b:75:e2:1f:23:0e:50:ad:
dd:01:d7:97:35:42:38:8a:37:a1:c4:85:00:14:39:21:c7:97:
4c:b0:14:a9:28:79:19:8e:aa:32:20:f3:b9:60:61:8a:c0:a6:
f6:72:2d:61:c5:34:7d:31:5a:b4:b0:82:36:37:45:20:8d:2c:
0f:f7:a2:1c:3b:2f:20:56:a0:74:01:78:9f:7f:08:c6:26:92:
0a:69:e3:33:9e:c2:8a:11:21:e7:87:71:4c:64:fa:22:2c:b2:
c1:49:12:37:3d:50:7a:74:ae:8d:dd:31:cd:f2:50:d0:ba:b9:
a4:28:ac:b3:2d:32:9b:e6:de:ac:c9:cf:49:a6:a3:35:a4:fc:
5d:cd:0a:34:42:6f:5a:e8:74:f6:31:c7:ed:a8:d8:f0:c3:a2:
e1:ee:e8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:30 2024 by rpki-client on console-fra.rpki-client.org