Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B245D76A4D511EF85D73693762E951A.roa
File: 5B245D76A4D511EF85D73693762E951A.roa (raw, json)
Hash identifier: lFGTGiDyyHH01XxdmAfgSFGUh0iepPy3ZRvX68dcdas=
Subject key identifier: C0:46:CD:77:E3:B0:7D:AA:F9:68:DD:71:8E:74:2A:0D:14:CF:6F:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4F7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B245D76A4D511EF85D73693762E951A.roa
Signing time: Sun 17 Nov 2024 11:16:14 +0000
ROA not before: Sun 17 Nov 2024 11:16:10 +0000
ROA not after: Wed 27 Nov 2024 11:16:10 +0000
asID: 39600
IP address blocks: 156.238.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54519 (0xd4f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:16:10 2024 GMT
Not After : Nov 27 11:16:10 2024 GMT
Subject: CN=6739d07d-23b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2c:36:69:f4:61:57:91:78:66:32:05:33:43:
53:8b:71:e9:df:c3:43:d2:27:13:51:60:b8:2b:e2:
04:ca:f7:d7:dc:74:28:7d:a1:22:98:97:0c:a8:65:
a5:cf:5b:62:ca:2d:ea:8c:7d:33:3a:d8:d7:cb:f2:
d9:a6:e4:62:79:0c:16:93:ba:67:58:5a:ed:b8:f4:
49:8a:10:0f:cd:ae:30:ff:f3:80:4a:75:2e:a0:de:
8d:4e:44:4c:d4:be:ea:8f:d9:d6:b7:3c:9b:5b:11:
8a:2a:c9:ea:7e:9f:1c:52:96:ab:b0:4a:34:17:e0:
f4:f8:8b:03:10:b5:28:c7:d1:d2:71:df:11:51:5b:
23:43:3f:97:55:c3:03:a9:f0:c3:e9:47:74:df:57:
27:dc:46:e3:5e:91:69:44:b0:f5:9d:f6:ac:e8:47:
c1:52:75:1c:55:7e:e0:8d:02:2e:f4:ef:e0:4a:1e:
fb:69:98:5d:d9:d4:03:9e:b5:89:29:c0:03:3f:d5:
35:0b:82:d1:b6:9d:62:4a:2a:2a:e4:0d:28:c8:80:
e7:b1:23:1f:ff:0a:b9:da:6d:6e:ca:d7:fd:b5:f4:
f7:88:d8:88:25:bd:86:1c:4e:b9:0d:f3:ae:16:d8:
df:c5:6b:40:22:87:b3:86:24:45:b1:a5:f5:ec:cf:
b5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:46:CD:77:E3:B0:7D:AA:F9:68:DD:71:8E:74:2A:0D:14:CF:6F:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B245D76A4D511EF85D73693762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.169.0/24
Signature Algorithm: sha256WithRSAEncryption
57:a8:9f:79:a4:5b:39:64:f9:03:3e:fd:7f:fb:05:fe:1d:ff:
64:0d:de:a8:13:31:0f:ec:79:dd:de:2d:e5:f5:b9:b7:86:9d:
98:df:f1:c1:78:12:66:7a:23:e3:ba:59:3e:25:c9:d4:f5:65:
b1:23:0e:f4:4a:64:c0:29:4f:7b:88:77:65:47:be:99:f9:fc:
b2:31:13:3d:6b:c4:31:b3:cf:56:3a:0b:2c:54:bd:2a:14:19:
82:3e:8d:e7:e2:27:6a:88:51:6f:e4:24:fa:57:7e:95:de:ca:
de:6f:5f:e2:27:b9:6a:e9:af:ac:d7:4e:5f:75:6a:58:b2:42:
d2:5a:a7:17:4f:2a:09:9d:83:27:a5:69:40:65:56:7a:b5:0e:
77:2c:0b:b8:4b:7f:ae:76:09:11:f0:08:79:d4:fd:1f:96:d4:
1f:c8:6d:c7:85:51:49:b1:9a:bd:10:1f:e5:cf:69:70:ed:21:
c0:9f:49:03:4a:e8:0c:41:a8:d0:3f:c5:6b:a6:8f:04:58:67:
48:39:8e:9a:b0:4a:96:e2:09:21:93:0e:c9:9c:08:28:18:e6:
22:0a:4b:5b:65:59:ac:94:cc:54:11:08:d5:c0:32:00:06:79:
62:d4:dc:47:81:99:83:12:79:ed:42:d1:16:b4:a5:0b:79:67:
4e:6d:58:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org