Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65EA0CB8978011EF98E9DE68762E951A.roa
File: 65EA0CB8978011EF98E9DE68762E951A.roa (raw, json)
Hash identifier: y2LTKnsTqvAYkAC1wIqLghvuHPOKWksPsV810stlrLU=
Subject key identifier: DE:5A:2D:09:82:D4:30:D3:78:9C:EB:7F:22:DF:39:1C:77:DC:25:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB56
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65EA0CB8978011EF98E9DE68762E951A.roa
Signing time: Thu 31 Oct 2024 12:05:19 +0000
ROA not before: Thu 31 Oct 2024 12:05:16 +0000
ROA not after: Fri 27 Dec 2024 12:05:16 +0000
asID: 20473
IP address blocks: 156.240.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52054 (0xcb56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 12:05:16 2024 GMT
Not After : Dec 27 12:05:16 2024 GMT
Subject: CN=6723727f-558e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:61:30:c9:17:49:77:b0:0f:f0:7b:c1:66:ca:
0b:bb:3c:69:c6:87:12:c5:a4:18:82:d6:89:11:22:
15:58:58:e4:55:5f:1f:0e:bc:e3:95:ac:e1:dd:5b:
dd:b8:cc:a9:75:f5:8e:87:20:9c:f5:08:fe:40:5d:
2b:a9:0f:91:2e:84:7e:45:72:6c:ff:de:e9:9d:b3:
03:ef:8d:3e:af:41:d7:b1:49:05:97:12:d2:04:36:
4a:a4:72:4f:a1:35:51:37:37:9b:28:d4:9c:57:6a:
6f:f5:7f:c4:22:fd:47:42:63:dd:fe:4d:80:fb:bf:
67:9f:2f:8f:7e:7d:51:23:8d:06:2c:8b:4a:96:ae:
17:2a:20:e2:66:73:8d:c0:ad:7d:45:b0:20:68:df:
a4:25:3a:6d:87:34:94:21:da:2f:ad:ba:f4:86:5f:
8d:ea:db:8f:a2:67:c9:36:19:80:27:31:5d:69:df:
7a:33:85:45:f9:fb:36:a4:90:4c:0d:0e:46:dd:8b:
e9:98:24:fb:cd:85:c6:ba:14:5a:9d:d6:c2:60:79:
2d:8e:11:e5:a8:fa:80:ba:7b:b8:97:1a:f6:db:51:
fe:ec:dd:f5:b9:6d:ba:8e:7b:76:1e:12:61:65:b2:
36:02:bd:9c:60:c6:83:59:16:1c:e6:f8:2e:c6:27:
de:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5A:2D:09:82:D4:30:D3:78:9C:EB:7F:22:DF:39:1C:77:DC:25:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65EA0CB8978011EF98E9DE68762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.98.0/24
Signature Algorithm: sha256WithRSAEncryption
04:9f:b8:27:11:17:bb:a7:fb:55:80:aa:df:a6:d4:d8:8d:69:
8a:a3:2d:92:42:df:1f:48:71:71:b3:1b:56:e6:5b:83:7b:4c:
76:09:92:86:3b:24:4d:6d:20:f3:84:a5:03:71:a3:20:ee:a7:
6c:63:26:2b:d1:12:db:01:94:a5:e1:b2:5c:36:5e:49:13:f5:
61:35:fa:4d:e3:23:83:95:6f:60:1d:36:4a:58:94:6a:b7:4f:
20:6c:df:f6:6c:d3:28:1d:8a:ce:76:bb:90:c6:a0:ae:6b:07:
cb:61:a0:31:ac:fc:ff:6f:a2:01:88:2b:6c:b4:de:78:51:f8:
ec:7d:25:2b:c9:2c:57:2f:f6:b4:48:c4:b0:02:67:3d:e1:fa:
22:f1:e1:1e:d9:36:a1:c6:2a:d0:82:8b:d5:85:00:51:48:e8:
93:5a:f7:fb:e6:2d:70:bc:68:ca:79:51:8d:90:6c:45:61:ac:
61:d2:df:f4:cf:b4:77:49:f0:b5:68:a5:97:05:d1:ef:4a:26:
4a:6a:c8:12:07:29:3f:45:66:c4:58:45:34:d4:fd:df:f9:81:
d7:d2:f9:c6:b7:98:41:ce:c3:ea:57:da:9e:59:e3:e5:d7:08:
12:d3:07:d3:f7:7a:21:56:59:3d:9e:e6:38:8f:2d:98:80:dd:
37:7e:e0:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:32 2024 by rpki-client on console-fra.rpki-client.org