Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/60CC5EE6960611EF846DC893762E951A.roa
File: 60CC5EE6960611EF846DC893762E951A.roa (raw, json)
Hash identifier: yhKyjlarZuIbPktPzCJN+3HxoGP1ODfV14aog3a1CVM=
Subject key identifier: 0A:D4:51:85:0D:2B:05:83:82:C7:58:B2:4D:45:5E:0C:D3:45:78:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CA12
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/60CC5EE6960611EF846DC893762E951A.roa
Signing time: Tue 29 Oct 2024 14:59:21 +0000
ROA not before: Tue 29 Oct 2024 14:59:17 +0000
ROA not after: Sun 24 Nov 2024 14:59:17 +0000
asID: 59187
IP address blocks: 156.238.98.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51730 (0xca12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 29 14:59:17 2024 GMT
Not After : Nov 24 14:59:17 2024 GMT
Subject: CN=6720f849-23b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:63:af:e4:ed:f7:7b:c0:a2:cc:2b:c0:43:
44:56:a9:e1:7d:30:ad:e5:2e:c3:72:46:40:06:8d:
34:e1:81:fd:9c:72:7f:b3:a6:7b:68:29:15:7e:d7:
ef:cb:ca:ae:d9:76:47:25:a3:10:52:23:43:bb:f5:
d5:b1:35:cb:02:35:c9:b6:44:46:3f:9a:94:7d:ca:
6f:c0:9e:91:a0:46:45:9f:e6:df:86:40:9d:6b:af:
d1:e2:cf:2a:34:04:7f:c5:84:fe:ac:29:b6:a1:e6:
0b:53:f3:58:9d:34:c4:36:28:c0:69:85:07:59:b7:
8a:3a:80:bf:18:41:2b:93:fc:5c:72:12:a4:ed:95:
69:6d:fb:45:a3:30:0c:41:c7:16:5e:06:e2:cb:e4:
72:ca:81:f3:b9:83:6a:ae:ef:1a:72:fd:66:56:2a:
3a:04:64:ea:6d:f9:94:20:2b:b0:8d:de:6f:03:ef:
5f:85:89:40:9a:b7:b4:76:80:be:c8:12:6b:07:aa:
8d:d7:86:50:ec:9c:14:82:1a:e1:6f:87:6f:45:dc:
fd:52:ef:fb:6d:b4:30:2b:3d:23:a6:3d:56:aa:87:
57:c7:e5:21:50:d7:ad:34:18:a7:8f:d4:20:b8:f0:
98:90:ac:49:e9:f6:73:c0:88:8e:d6:0b:0e:d5:f5:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D4:51:85:0D:2B:05:83:82:C7:58:B2:4D:45:5E:0C:D3:45:78:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/60CC5EE6960611EF846DC893762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.98.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:e4:bd:49:e9:2a:30:32:3a:3f:0e:34:64:b4:23:6b:ae:45:
ca:af:e2:6d:c1:25:99:2e:7d:55:f3:13:b0:7f:71:ca:11:0d:
6e:92:32:31:60:b0:c3:3f:2e:9d:ca:7e:94:b4:f2:59:83:56:
cd:d6:16:e0:dc:d2:62:c8:13:6e:e0:b5:b4:3a:c2:e8:72:29:
a7:d6:e5:5f:e8:da:3f:cf:60:f3:ea:c7:69:1f:b5:c1:79:cb:
96:2d:82:52:0c:45:f4:aa:d8:19:d2:6a:15:43:fd:67:be:a5:
ac:12:04:a5:3e:2e:4a:3b:df:02:b5:bd:30:0e:75:5f:06:d0:
79:ab:9f:e6:fb:ef:50:99:1c:9e:9c:3c:70:2e:45:8f:3b:e6:
68:4c:06:86:fb:5e:d3:5b:32:00:96:31:42:23:8b:1b:53:b5:
80:09:fb:77:18:0d:a4:94:5b:fd:c3:ba:c0:95:16:cf:a4:64:
ac:8d:5b:85:b4:ea:c7:de:6c:6b:8b:8f:8a:5a:23:37:53:d0:
86:c5:e1:aa:bf:72:63:e9:61:fa:4d:e3:35:13:ec:c5:86:5a:
6c:64:dd:04:9b:9c:ee:7c:f0:0a:4b:72:f6:f0:81:eb:56:37:
83:0e:f1:30:1a:cf:07:9e:83:b2:0d:cb:9a:06:ed:e1:da:79:
be:9d:8e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org