Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/679EEA905EF211EFB2E1C499762E951A.roa
File: 679EEA905EF211EFB2E1C499762E951A.roa (raw, json)
Hash identifier: 1PYB0y4icpSFolS/4fADP/mfwrjEf1meRz8EbsMTyJM=
Subject key identifier: D1:FE:CE:D3:D4:61:86:F9:47:36:BE:3A:8C:43:C4:0F:15:2F:76:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9F2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/679EEA905EF211EFB2E1C499762E951A.roa
Signing time: Tue 20 Aug 2024 12:47:49 +0000
ROA not before: Tue 20 Aug 2024 12:47:45 +0000
ROA not after: Tue 27 May 2025 12:47:45 +0000
asID: 399077
IP address blocks: 156.251.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43506 (0xa9f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:47:45 2024 GMT
Not After : May 27 12:47:45 2025 GMT
Subject: CN=66c49074-7894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:55:66:84:d1:93:be:8b:f1:85:b8:a6:1f:e2:
26:40:1f:ff:aa:7e:5b:af:08:c4:40:a4:6e:03:2f:
d8:3a:38:18:2a:b4:ac:e8:75:d5:1a:0a:4a:72:43:
08:c0:23:77:40:cd:77:cc:80:6c:52:29:f5:f3:28:
73:e6:39:41:0f:6a:26:19:d0:64:a5:b3:a1:c1:ce:
45:1a:60:d3:e0:a1:7a:17:bf:c0:1b:56:70:af:91:
01:87:24:33:54:ad:58:15:e4:6f:45:c5:ed:81:82:
8f:0f:27:03:f8:9e:e2:08:f2:2c:73:a8:00:8b:28:
ad:e8:a5:9f:13:cc:25:9f:de:77:9f:54:b6:94:9d:
53:71:a9:59:9f:18:cb:02:3f:a2:ad:74:5f:8e:97:
55:db:d8:c5:a0:1c:67:03:f9:f1:94:62:ba:0a:bb:
e6:63:5e:28:75:23:dd:76:76:86:96:cf:9d:e0:1e:
04:8e:7f:33:9b:ff:ec:46:d0:8c:9c:e9:91:f7:82:
a1:5d:89:0b:5c:2c:d7:32:be:dc:87:f6:03:b4:26:
1a:73:d8:36:91:5c:fc:ed:15:35:c8:25:2a:f6:93:
4b:c0:5b:9c:cb:7f:f4:a0:cd:69:50:c0:d0:50:08:
80:7d:b5:3b:4e:18:f8:d0:41:cc:63:a6:cd:70:8c:
fb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FE:CE:D3:D4:61:86:F9:47:36:BE:3A:8C:43:C4:0F:15:2F:76:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/679EEA905EF211EFB2E1C499762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.22.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:00:b2:72:6c:3c:f1:79:00:c0:c3:43:fc:b7:24:1d:0c:17:
88:fc:86:a4:03:91:90:a8:ea:92:92:ba:df:ae:36:17:65:29:
17:9b:d5:a5:2d:53:17:0a:b9:c7:eb:3e:47:ca:50:ae:df:5a:
71:56:5e:ed:57:e6:f1:f0:e8:ba:69:3c:50:e4:b4:70:03:f5:
cb:f3:78:13:6c:19:5f:51:76:4c:12:6b:98:9d:2c:bc:0d:10:
99:f2:61:80:62:5a:cd:02:16:12:15:01:2e:8a:22:00:5f:40:
cb:25:60:68:da:1e:d6:a7:ed:6a:2d:b7:99:33:02:ad:3f:65:
b1:f0:63:a3:d5:52:6e:1a:a9:79:88:d7:07:b8:c6:0e:d2:ce:
c9:96:5a:b7:a1:36:fd:0e:4f:4b:42:8a:a4:b1:54:cd:e6:7c:
cd:9c:f5:e0:06:1b:ad:62:b6:19:90:60:91:44:f9:05:44:d5:
ab:e2:c7:ac:38:05:c6:6e:89:eb:83:0d:f2:8d:91:ba:47:7d:
80:3b:60:48:d1:0b:1b:ad:48:da:2e:98:bd:71:30:44:aa:31:
fd:ff:ac:c9:a3:da:1e:e0:44:f8:bc:97:d7:98:a6:ab:b7:17:
65:de:52:e0:bf:95:12:2b:f0:8e:f4:0f:a1:56:a6:f6:d5:2f:
57:99:1e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:32 2024 by rpki-client on console-fra.rpki-client.org