Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6257E482977E11EFAB4F065C762E951A.roa
File: 6257E482977E11EFAB4F065C762E951A.roa (raw, json)
Hash identifier: 4BpcT2hk6KZbExEgnjUd76Nawh75sxxFRyUfk2P3AH4=
Subject key identifier: 14:32:C0:9E:D2:AE:35:1C:7C:6A:94:51:36:EF:55:C8:88:E0:7C:2C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB46
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6257E482977E11EFAB4F065C762E951A.roa
Signing time: Thu 31 Oct 2024 11:50:54 +0000
ROA not before: Thu 31 Oct 2024 11:50:51 +0000
ROA not after: Sat 21 Dec 2024 11:50:51 +0000
asID: 63139
IP address blocks: 156.229.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52038 (0xcb46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 11:50:51 2024 GMT
Not After : Dec 21 11:50:51 2024 GMT
Subject: CN=67236f1e-a10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c6:19:3b:e7:54:8a:6f:ee:f3:38:14:1f:9c:
a8:7d:db:cf:94:a0:ee:80:2f:a4:bc:17:f9:6b:d7:
21:1c:c9:0f:ad:2e:f3:df:54:b3:41:db:fa:11:a2:
cb:b2:2e:9e:70:a2:8c:8d:75:ad:73:9c:08:52:8a:
c4:1b:1e:be:aa:3e:d6:70:14:9e:bf:41:5f:04:f2:
47:54:af:70:2a:d6:19:a1:49:ff:70:9c:2e:68:99:
99:f1:b8:98:8a:11:29:34:30:32:5f:9b:eb:e4:98:
67:6d:63:a6:55:da:59:1d:47:68:68:9c:5f:8c:f9:
25:42:98:80:e5:4e:4a:f2:21:cd:22:fd:8a:56:36:
78:e7:ba:05:7f:be:34:05:4e:0e:35:6e:42:53:55:
ad:41:25:02:4e:16:35:2f:80:6f:5b:ac:25:95:e0:
76:d4:30:e8:f4:43:06:72:1b:78:cd:17:fa:14:ff:
8d:76:05:53:f5:94:49:62:46:24:12:90:9f:d5:2d:
60:9d:3f:20:99:60:f7:ac:04:13:26:f2:0f:42:65:
5c:0c:7a:75:a5:e1:14:ff:ef:c9:dd:5b:ee:f7:ba:
df:61:72:7f:b9:fb:85:96:9e:02:7c:4d:f8:c8:16:
33:e8:60:94:5e:93:e1:fe:10:c8:85:88:44:ca:f1:
78:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:32:C0:9E:D2:AE:35:1C:7C:6A:94:51:36:EF:55:C8:88:E0:7C:2C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6257E482977E11EFAB4F065C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.51.0/24
Signature Algorithm: sha256WithRSAEncryption
75:1f:a5:e6:36:e8:90:bc:0e:9d:b1:c9:7e:30:d1:be:46:1b:
41:26:c6:83:c2:28:20:19:05:ec:e8:1b:c5:99:18:35:32:e6:
c7:37:da:7c:39:d2:9f:84:30:31:60:16:1e:8a:97:0e:4f:18:
4b:22:80:ad:2b:a7:8e:ab:6a:a0:b5:0f:09:bc:23:45:1d:dc:
a1:36:59:85:2e:7e:cb:08:6d:29:0f:9c:4f:31:51:8c:7a:90:
36:4a:07:cc:0b:d7:d3:96:69:d2:2c:6a:d2:2e:30:b1:bc:d2:
6c:12:3a:9a:54:ee:1d:4b:91:a4:eb:89:bd:bd:fb:03:87:4d:
07:de:6d:53:fe:66:2d:49:c6:ca:0c:bb:33:84:42:55:85:ab:
15:cd:35:d0:a5:15:b2:c5:b2:98:32:8d:22:e3:49:52:88:c3:
ab:69:a3:e5:8c:83:dc:d0:d2:59:0d:e4:cf:c7:97:f1:23:06:
ff:95:75:0d:d8:1c:f5:ec:27:2e:15:05:9b:42:e1:c5:f1:56:
a4:f9:e7:e5:e8:a2:5a:80:ec:1b:ce:3d:20:e4:af:55:8b:04:
e4:22:04:f7:a0:5b:e8:19:6f:00:ea:c1:9d:60:b0:f5:e3:5e:
aa:2a:29:6e:1f:60:92:fc:9b:4f:01:c8:17:db:3a:7e:73:b1:
1a:95:92:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:31 2024 by rpki-client on console-fra.rpki-client.org