Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC6D06E7F1211EFA8918166762E951A.roa
File: 6DC6D06E7F1211EFA8918166762E951A.roa (raw, json)
Hash identifier: 4ZpNHgeYXM5M+XnB4rfyhCVPQ4mVsW+qbYUQxC/kpPg=
Subject key identifier: D5:E0:C0:50:00:84:EC:64:C0:9D:51:D8:B9:3B:F5:50:9F:85:74:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BDC5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC6D06E7F1211EFA8918166762E951A.roa
Signing time: Mon 30 Sep 2024 09:57:40 +0000
ROA not before: Mon 30 Sep 2024 09:57:36 +0000
ROA not after: Mon 02 Dec 2024 09:57:36 +0000
asID: 149440
IP address blocks: 156.227.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48581 (0xbdc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 30 09:57:36 2024 GMT
Not After : Dec 2 09:57:36 2024 GMT
Subject: CN=66fa7614-cb50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:72:65:12:50:cc:a8:be:dc:01:bd:83:e8:c6:
ba:6e:0a:0c:cd:68:c0:b1:49:1e:f1:3c:77:c1:af:
3a:74:b1:1b:83:23:8e:b1:b2:74:01:d8:6e:93:e5:
4e:9b:98:67:e2:c8:e7:bf:61:7d:3c:e5:32:7e:43:
84:db:f1:c6:d3:c6:01:5e:80:69:9b:ec:3d:c1:83:
cc:51:e2:d0:f2:82:48:6c:80:d2:37:57:b5:ff:1c:
1a:be:d1:fd:db:60:d2:e8:c1:9e:ed:16:8a:16:53:
aa:b2:92:e3:5e:c8:c2:b5:2a:32:6c:86:31:c4:5e:
15:e6:95:ea:97:ee:f7:a5:92:cd:91:31:8b:61:3d:
f5:2c:60:1f:21:f4:0c:78:c0:08:55:8c:df:96:ce:
4f:00:b0:8c:0f:d4:94:2a:75:bb:a3:a5:5a:e0:29:
4f:88:ec:21:7c:5d:7f:cb:4f:6f:de:c8:e8:d7:81:
0d:50:35:87:7c:97:6f:91:d6:3b:d7:f8:95:7d:39:
5e:c3:1d:a2:8e:67:7c:0e:cc:52:e8:dc:a5:12:e6:
75:14:42:57:b8:f7:7f:d0:f1:7e:c0:ac:47:51:ad:
63:6e:3b:e1:af:9f:40:2a:42:a0:41:33:4f:7f:74:
3c:96:2f:d4:87:8c:36:81:f5:62:3f:20:c4:58:29:
d0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E0:C0:50:00:84:EC:64:C0:9D:51:D8:B9:3B:F5:50:9F:85:74:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC6D06E7F1211EFA8918166762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.0.0/24
Signature Algorithm: sha256WithRSAEncryption
07:5f:74:33:44:eb:be:8a:ed:f7:f0:fa:f2:ff:a7:7a:c5:2b:
25:cf:aa:61:09:47:24:3a:79:e9:7b:10:0c:7f:5a:5b:95:ad:
c6:95:eb:d9:ae:54:70:1b:7a:55:d1:f0:40:1f:95:54:5f:11:
56:d3:f8:a8:6e:3b:cc:f4:f2:a4:42:61:52:5f:a6:48:e3:d7:
a1:89:53:68:2e:4a:0f:a7:f0:2e:4b:22:78:bc:37:af:15:5f:
08:12:92:bf:07:68:a6:1b:98:21:d0:ff:35:41:fc:ae:33:5b:
3b:58:43:f3:4e:dd:f3:82:ab:3b:d6:ad:df:db:96:7a:95:11:
de:e0:44:e5:63:fb:86:53:d9:bb:93:72:16:29:98:15:bf:bd:
5d:6d:cd:dc:12:1a:3b:6d:58:cd:6e:1a:29:b7:38:f2:0b:10:
eb:7e:b7:47:ad:f7:19:68:cc:b3:e2:b1:9e:94:03:49:6a:c7:
47:2c:93:28:7a:50:85:b1:37:bb:a8:be:90:24:65:dd:f9:d4:
dd:72:ae:49:5b:cc:3f:eb:4e:bd:3d:f2:ca:7b:25:51:2c:dc:
3a:32:45:9a:19:56:d1:9c:46:4c:2a:0a:c7:59:d3:5f:76:5d:
72:2c:14:26:76:d8:e7:e4:e6:ca:8e:67:61:e7:db:c3:7b:bf:
86:31:42:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:34 2024 by rpki-client on console-fra.rpki-client.org