Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AD4EB24A4D411EF8299B98C762E951A.roa
File: 6AD4EB24A4D411EF8299B98C762E951A.roa (raw, json)
Hash identifier: 1rwZ1bXaGfXuwkY2StXMKVGZLVRJ8HhIvHVQ9QXaIRo=
Subject key identifier: FA:C4:44:5E:E4:95:FA:23:07:75:F6:24:A4:C0:EB:6F:0A:6F:71:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4EB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AD4EB24A4D411EF8299B98C762E951A.roa
Signing time: Sun 17 Nov 2024 11:09:30 +0000
ROA not before: Sun 17 Nov 2024 11:09:27 +0000
ROA not after: Wed 27 Nov 2024 11:09:27 +0000
asID: 39600
IP address blocks: 156.238.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54507 (0xd4eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:09:27 2024 GMT
Not After : Nov 27 11:09:27 2024 GMT
Subject: CN=6739ceea-673c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:82:f8:c6:42:81:48:1f:04:a7:0f:a1:10:e1:
9a:05:bd:4a:9c:64:1e:c0:6a:f5:3d:30:f1:d7:60:
95:ef:f7:38:28:ed:6f:57:4b:be:97:a3:2f:83:73:
da:3b:65:82:20:4b:b1:02:62:c2:d1:60:1f:3a:2a:
3b:db:23:7f:f2:7f:81:84:4d:70:05:53:41:21:f3:
3b:46:3b:48:ab:ba:0c:19:7e:f6:07:e4:b5:70:31:
7c:6f:81:20:65:dc:38:9b:97:8a:bf:b1:13:17:aa:
2e:66:6d:b8:db:a3:16:f8:9a:ee:e0:e3:dc:d8:06:
b0:5c:ac:6e:a2:38:2e:bc:29:58:66:53:3d:f7:16:
a8:84:48:f6:07:ec:6d:4b:18:e7:d7:44:f0:12:fb:
d7:08:55:70:fa:6a:d3:2d:f7:63:ff:7e:31:9a:fc:
6d:97:53:24:ff:02:e3:ca:e2:84:c9:42:32:34:13:
cd:72:09:2d:47:79:c6:95:ab:a8:5c:d1:7f:74:df:
16:8b:95:b2:1c:dd:a4:90:55:ab:5a:1d:30:74:e6:
3d:ff:8e:21:58:a0:53:f2:3b:64:24:0b:71:c6:ac:
cf:f4:ae:42:12:4d:fd:0c:24:79:6d:09:4e:49:4a:
da:96:1f:f3:de:92:38:e6:81:48:b2:31:aa:56:c3:
38:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C4:44:5E:E4:95:FA:23:07:75:F6:24:A4:C0:EB:6F:0A:6F:71:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AD4EB24A4D411EF8299B98C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.163.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:90:59:40:f0:ff:74:3c:49:b4:9a:8b:17:d8:a4:5b:e8:f9:
ef:f4:0d:8c:15:5b:a5:82:a3:a0:d7:7f:1d:30:37:1c:a0:25:
cb:79:8f:c4:ea:f8:ad:2f:6c:72:c4:1f:77:62:58:2e:69:72:
9a:a8:02:a0:c1:59:b2:54:e5:05:fb:d9:99:55:ed:12:de:26:
5c:b6:67:06:3a:a0:7b:fa:c2:0d:50:e0:1b:2d:69:73:ba:58:
13:a3:59:79:63:e8:7f:65:11:ed:a2:d0:ae:d0:09:a0:47:a4:
50:68:94:cd:24:7e:e4:47:0e:4c:b5:5f:1a:36:41:04:3c:e3:
23:e6:73:da:c6:29:39:fc:c9:62:09:17:80:45:01:06:0a:3d:
dd:26:05:ad:2b:0e:6a:24:38:80:41:28:9f:67:40:82:e0:c1:
5f:bb:1b:d2:2e:22:3e:7d:25:64:d6:f9:81:5e:a9:f5:ec:fe:
b4:b9:0f:10:7f:0f:0a:db:fa:6e:45:f6:c9:93:92:e4:87:12:
19:ad:b5:1c:76:7c:b4:c0:62:a4:e1:0d:cd:61:b7:a2:e2:f4:
62:d1:55:51:af:f3:0e:25:ad:b6:3d:86:7e:0e:ad:ca:ff:00:
a0:5d:98:a8:e9:fa:8c:b2:59:11:92:98:a0:39:19:e9:e0:09:
80:94:76:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:35 2024 by rpki-client on console-ams.rpki-client.org