Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E15A564985D11EFACA83157762E951A.roa
File: 5E15A564985D11EFACA83157762E951A.roa (raw, json)
Hash identifier: ghLBnNjcR0Qv+VEUbTfW8HYSvgh26RVTtDulNHGBcDE=
Subject key identifier: CA:3C:05:7F:6E:9C:0C:44:DE:4F:FB:50:20:A7:C6:A8:6B:4E:49:DC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CBB1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E15A564985D11EFACA83157762E951A.roa
Signing time: Fri 01 Nov 2024 14:27:05 +0000
ROA not before: Fri 01 Nov 2024 14:27:01 +0000
ROA not after: Mon 25 Nov 2024 14:27:01 +0000
asID: 62468
IP address blocks: 156.245.128.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52145 (0xcbb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 14:27:01 2024 GMT
Not After : Nov 25 14:27:01 2024 GMT
Subject: CN=6724e539-3bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:de:eb:df:80:93:d6:97:b4:21:35:8f:c9:3a:
04:17:f4:ef:2b:7d:93:88:15:7d:a0:81:06:e4:11:
0e:91:be:4f:f7:7b:dd:ec:7d:d1:f3:d5:da:74:ff:
b3:22:e2:45:60:2e:04:e8:2d:be:db:99:22:fc:ca:
b6:06:b7:0e:45:f7:89:53:69:35:ee:35:61:fe:df:
93:db:35:be:50:d2:89:98:6a:1c:44:84:72:bf:f6:
8c:b6:8f:ec:6e:5e:5e:bc:99:5d:b3:ca:dd:63:cb:
09:e1:b4:d3:38:a5:85:af:77:58:0f:ac:3f:df:64:
92:a4:65:35:2b:28:4d:da:eb:e7:9e:82:17:56:26:
52:0b:a7:6f:67:cb:de:5d:ca:56:0a:3d:1e:ea:7f:
f6:17:4b:e0:bc:f5:40:e4:7d:2b:e2:d5:a8:c2:8f:
cc:a4:8d:11:2a:df:32:1d:11:c6:c5:0d:f5:ff:fa:
ed:9f:d0:0a:ba:18:55:78:df:87:03:dc:44:58:cc:
0d:0d:06:e5:82:27:89:98:98:51:09:ec:84:e3:25:
40:fd:90:ef:33:c1:e4:55:f2:60:23:55:92:68:ae:
1e:96:ac:8e:37:fd:fd:d4:13:a4:79:45:17:bb:cb:
a8:be:f5:6b:74:01:3f:36:c8:03:4f:6d:e1:df:2f:
51:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:3C:05:7F:6E:9C:0C:44:DE:4F:FB:50:20:A7:C6:A8:6B:4E:49:DC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E15A564985D11EFACA83157762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.128.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:24:d5:03:61:27:fb:f3:52:9c:3b:3b:7c:83:49:03:6e:5e:
d2:f7:8b:33:66:c2:4f:52:cb:0d:d0:92:b2:b8:ad:5f:f6:7d:
7e:75:b0:64:31:14:8b:ac:3e:fc:cf:3a:ba:45:01:f6:da:7f:
f1:e8:24:4c:d5:f0:c8:90:ce:56:42:15:bd:69:18:55:a2:50:
be:36:50:3c:33:b2:f7:da:eb:68:d5:81:90:67:78:52:69:fe:
03:f2:89:9e:4d:27:e6:03:6a:b2:6d:d2:a9:11:f5:f9:aa:16:
81:a8:22:0a:ab:61:3a:4a:0e:67:97:e8:6c:4b:f0:6f:a6:20:
ba:c8:73:a4:c0:cf:02:71:89:34:74:1e:27:73:bd:fb:dc:94:
8d:6b:78:92:7c:10:99:d3:ca:2f:dd:b0:0c:ca:66:fb:da:d0:
34:6f:da:c0:13:43:33:72:6a:d8:a1:0d:e8:34:2a:98:2e:32:
a5:b6:9d:3d:fd:8d:01:55:20:11:96:cd:9a:ac:98:75:1d:2c:
4b:c5:6f:e1:15:8a:5f:33:d2:2e:31:47:c0:6f:7f:1c:11:9b:
cf:8f:5f:66:e5:15:5f:0a:71:d0:06:ad:2e:28:52:44:51:6b:
d7:6d:09:1f:ca:a0:c5:4f:d5:9c:4c:14:c8:a7:25:95:62:ec:
8e:81:5b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org