Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D6963B4A4D011EFA7F62574762E951A.roa
File: 6D6963B4A4D011EFA7F62574762E951A.roa (raw, json)
Hash identifier: IuAaP3mTP7lOxTtgeNaa8FTljXSno11rqk2aJ6tOEko=
Subject key identifier: 70:51:70:70:E5:35:79:7F:1C:1F:DC:BB:8B:41:A5:99:07:45:7E:5B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4DF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D6963B4A4D011EFA7F62574762E951A.roa
Signing time: Sun 17 Nov 2024 10:40:57 +0000
ROA not before: Sun 17 Nov 2024 10:40:53 +0000
ROA not after: Mon 25 Nov 2024 10:40:53 +0000
asID: 22773
IP address blocks: 156.238.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54495 (0xd4df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 10:40:53 2024 GMT
Not After : Nov 25 10:40:53 2024 GMT
Subject: CN=6739c839-c5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f2:22:8c:84:ce:85:ac:6e:5e:44:47:8f:ef:
8e:08:63:4b:e3:f3:eb:41:10:e8:36:9d:cb:ad:e7:
69:dd:8d:31:c9:db:f2:d3:4e:ba:5d:3c:a9:44:3d:
72:0b:90:27:1c:2e:66:30:e7:dd:30:c5:16:6b:eb:
95:e1:41:53:59:05:08:5b:3b:a0:fe:6b:bd:34:d7:
52:52:4e:94:1a:72:11:28:11:e4:4b:39:a7:90:22:
f9:03:8e:ba:45:18:d7:9b:35:3c:5d:37:05:a8:67:
a9:21:b7:1b:9b:7d:ec:6b:99:b6:57:c1:e9:85:09:
6c:0e:1c:ed:37:85:a5:7f:2d:4e:65:e9:f3:b7:57:
ec:32:87:de:60:ec:6d:ea:ef:da:96:22:3a:de:52:
b3:a7:b5:26:2d:44:09:3a:ad:5e:d5:4a:c8:ea:6c:
e6:9d:54:c3:cc:2d:05:cc:57:d9:f5:2a:e5:da:fc:
ad:0b:ef:cf:3e:a0:31:8d:39:35:ca:37:3c:c9:c8:
49:10:03:da:95:68:e8:92:71:84:be:7f:50:0e:58:
bd:0a:43:06:20:05:10:7e:fc:eb:b2:51:7f:e6:6c:
4d:c0:39:6b:5d:e2:ee:be:b1:58:d2:92:b3:bc:d5:
68:7b:c4:03:74:98:47:e4:68:80:ea:7e:fb:1c:38:
70:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:51:70:70:E5:35:79:7F:1C:1F:DC:BB:8B:41:A5:99:07:45:7E:5B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D6963B4A4D011EFA7F62574762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.176.0/22
Signature Algorithm: sha256WithRSAEncryption
12:70:6a:4b:d0:7e:76:aa:09:23:be:ec:08:90:67:e2:b7:38:
14:ed:90:84:d7:4b:96:2a:ba:d5:4e:75:28:2d:39:e9:5f:53:
96:75:95:17:92:1e:5d:9c:0c:21:ef:16:ec:d5:de:bb:45:23:
f7:b7:f8:a9:6c:20:1a:66:f2:35:4d:cb:98:2a:d6:1f:54:03:
8f:eb:15:9f:1e:5b:45:30:a3:c9:82:07:86:61:bb:ff:19:90:
ff:04:93:f7:eb:6d:d0:3e:10:ec:ea:38:10:80:f3:d1:23:e4:
37:c8:3f:fb:c2:a7:a8:51:f9:6b:27:a5:91:fb:98:cb:bb:7b:
e4:56:09:44:d7:8a:ac:d1:8c:5f:94:8c:ca:50:56:d1:30:40:
1f:e5:39:1f:bc:67:f7:fc:33:1e:19:97:db:69:fb:5a:e0:75:
5d:e8:00:3f:fb:b1:97:6e:67:e6:3e:20:39:ef:9b:dc:d6:73:
85:f2:18:28:05:bf:99:ad:24:01:c6:e5:02:c4:20:ff:96:59:
3a:01:2d:4b:94:bc:e9:27:10:42:c1:e4:c3:ed:ce:fd:35:d5:
5c:e7:d9:d9:e0:ca:a7:41:99:b0:0f:84:41:dc:19:d7:29:38:
5b:9f:41:cd:50:e0:27:e3:f7:35:17:b6:7d:e9:ce:7a:f3:6a:
12:c7:a4:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:35 2024 by rpki-client on console-ams.rpki-client.org