Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6484DB92A45E11EF83FA4B9B762E951A.roa
File: 6484DB92A45E11EF83FA4B9B762E951A.roa (raw, json)
Hash identifier: FUWliYtd+HECOFXklcagS0VkxqWMS9OsZGH4t7Xp+xY=
Subject key identifier: 30:AE:A0:80:07:36:A8:56:1C:FB:59:FB:D0:AB:C8:A6:30:7E:77:D1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D448
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6484DB92A45E11EF83FA4B9B762E951A.roa
Signing time: Sat 16 Nov 2024 21:04:39 +0000
ROA not before: Sat 16 Nov 2024 21:04:36 +0000
ROA not after: Sat 30 Nov 2024 21:04:36 +0000
asID: 212238
IP address blocks: 156.226.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54344 (0xd448)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 21:04:36 2024 GMT
Not After : Nov 30 21:04:36 2024 GMT
Subject: CN=673908e7-0a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3e:91:91:6d:01:b6:d4:69:44:54:60:28:bc:
e9:1a:2c:de:47:6e:5c:e1:3d:f6:83:2d:3c:82:ed:
d7:2e:28:ad:80:93:55:a4:14:aa:28:f9:c9:a2:c5:
fb:69:00:e0:87:3e:a4:1c:c4:4a:58:a0:62:df:b4:
dd:e1:10:1a:31:a2:83:90:79:37:8e:20:94:d4:ee:
7f:fe:78:cd:6b:20:a7:b8:b8:00:20:a9:13:0e:27:
03:78:48:d7:ff:c0:44:9a:78:aa:84:d5:57:94:ec:
c1:32:e8:3c:58:5b:f2:62:95:43:79:5d:d0:f0:9d:
71:e2:bd:2c:5a:83:06:4d:dc:b5:d3:08:e4:9d:d8:
fe:20:fe:aa:37:e3:8d:d5:7f:4a:98:0c:0f:d9:a1:
c8:11:54:f6:cc:92:4e:5a:c7:77:b0:3d:46:db:6e:
92:8f:70:72:54:c0:6d:a0:a2:41:66:ea:6b:42:ea:
b4:f1:8f:2f:e3:6b:d7:f6:f6:70:9c:5d:39:f2:d7:
7a:0d:46:ea:0e:d1:06:57:2c:94:bc:0e:90:38:1b:
7a:e7:d4:ef:a4:bf:fa:9b:df:75:de:88:59:aa:0f:
fa:f0:ab:95:c1:84:db:f8:a4:a0:eb:c0:2e:72:bb:
93:27:d6:e9:9b:1a:5e:93:37:73:35:ec:30:c9:83:
e4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:AE:A0:80:07:36:A8:56:1C:FB:59:FB:D0:AB:C8:A6:30:7E:77:D1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6484DB92A45E11EF83FA4B9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.8.0/21
Signature Algorithm: sha256WithRSAEncryption
02:de:04:d5:36:92:c5:b7:5d:ab:68:db:11:56:5f:cc:eb:e4:
8d:38:d5:21:47:34:68:4a:76:23:c0:6b:ba:3f:1b:d0:73:02:
a0:66:73:3e:28:93:0b:78:94:af:fc:d7:81:94:c0:15:22:30:
c5:f2:44:fc:38:f4:33:57:9b:90:b1:4d:93:33:57:aa:a3:bd:
94:21:33:1d:63:e4:a1:4a:5d:f5:c7:f1:2a:f5:08:7a:e4:e2:
47:27:ac:91:33:c4:7c:8f:2e:c4:c5:d3:8d:1f:b8:af:c7:f5:
f8:30:7c:9b:35:dc:94:b7:da:8b:de:ca:f3:35:41:26:c3:7a:
81:dc:3d:c2:99:6c:4d:54:c3:e7:7f:58:fd:9d:8e:34:57:fe:
5b:63:d5:d1:fb:e1:57:b4:7a:42:5c:f4:88:60:56:8c:08:44:
0c:bf:c4:dd:e9:e8:de:52:8a:40:54:68:92:ff:08:55:ef:39:
a5:ae:a9:c1:98:f9:a1:7b:dd:2c:32:5e:f5:15:f9:5c:75:14:
5c:4f:cc:32:88:47:28:39:8a:a5:13:ed:da:14:4e:7a:c2:ec:
b4:a4:e7:5f:60:61:80:81:5b:b0:13:e8:b7:ce:88:bb:64:25:
86:41:c6:51:f1:5a:54:ff:50:ee:f5:e4:44:19:33:d9:c1:f6:
cb:ae:a3:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:32 2024 by rpki-client on console-fra.rpki-client.org