Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A5AB968605811EFB01B9856762E951A.roa
File: 7A5AB968605811EFB01B9856762E951A.roa (raw, json)
Hash identifier: +KRXvZtPZhIfT4tYwzoQA+G9SI3cQE0jBg7ECDppbJs=
Subject key identifier: C3:8F:60:0E:64:3E:45:5F:C2:8B:9B:36:32:1D:26:B5:A6:22:8F:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: AC77
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A5AB968605811EFB01B9856762E951A.roa
Signing time: Thu 22 Aug 2024 07:31:00 +0000
ROA not before: Thu 22 Aug 2024 07:30:57 +0000
ROA not after: Sun 24 Aug 2025 07:30:57 +0000
asID: 135391
IP address blocks: 156.253.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44151 (0xac77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 22 07:30:57 2024 GMT
Not After : Aug 24 07:30:57 2025 GMT
Subject: CN=66c6e934-3714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5a:d1:c2:e8:03:ab:23:65:47:99:6d:8f:e2:
89:d4:90:08:32:21:e9:01:f5:6d:65:67:56:68:89:
5c:b5:49:b9:7d:d7:f3:9c:dd:a8:57:81:88:db:94:
62:02:22:81:ba:44:4f:a4:99:d6:0a:f5:82:30:20:
fc:a7:3c:33:68:42:09:9e:34:d4:a6:a9:9a:66:a9:
f3:e4:10:07:41:da:4e:af:a5:e0:51:a9:64:18:c9:
4c:6c:d4:51:91:1d:45:98:72:5c:0b:88:1c:40:dd:
ea:c5:3d:7e:dd:cd:2c:d6:48:7d:80:38:0c:dd:b7:
61:99:e7:3e:5f:d8:73:e4:26:3d:95:a0:32:7e:e9:
40:4d:67:f6:5e:ad:7e:f5:51:b4:e8:08:e0:ad:8c:
4c:68:b8:ed:5d:64:08:38:f2:5f:e0:6e:59:98:8c:
c8:d1:5b:ce:92:54:6e:44:1b:ff:dd:16:72:7d:98:
2a:78:bc:a9:0f:fe:47:f5:bd:3f:cc:88:0a:7d:a6:
b1:f5:30:62:f5:31:90:55:93:5d:31:37:90:ff:5a:
7d:b0:53:8b:8b:5b:91:cc:44:56:12:0b:04:ba:b7:
9a:5d:78:53:36:58:4e:98:08:7d:94:1b:d0:2c:92:
96:95:c4:74:60:da:2c:80:0c:e5:d2:b1:d9:8d:4e:
d2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:8F:60:0E:64:3E:45:5F:C2:8B:9B:36:32:1D:26:B5:A6:22:8F:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A5AB968605811EFB01B9856762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.3.0/24
Signature Algorithm: sha256WithRSAEncryption
22:fe:8d:b0:51:b4:00:c7:28:99:bc:54:31:0b:84:69:c8:25:
3f:d6:6d:d1:c7:dc:06:af:8f:e6:44:d1:c3:e8:0b:2e:db:b2:
6d:b9:f5:53:e4:d0:fd:28:b0:09:8b:69:8e:98:9b:d3:eb:67:
72:89:c8:ab:14:2e:44:63:bc:1b:7d:d5:72:84:2e:4e:b8:63:
a7:29:aa:01:b9:09:36:c2:d1:80:91:d2:7f:7c:cb:e3:57:27:
41:98:49:5c:5b:db:34:5d:af:b9:17:3b:8a:ad:fc:02:85:65:
da:1f:ea:26:c1:27:a8:95:fe:f0:dc:06:12:60:37:94:c1:61:
cb:73:53:15:85:6c:c9:1e:64:4f:05:b3:52:6a:04:84:1a:0c:
38:ab:8a:fc:44:4b:16:02:83:8d:b6:b4:e2:cc:bb:ca:f2:0c:
31:ce:af:26:f8:8f:ea:12:d4:16:b7:8e:27:74:27:35:55:5a:
0f:34:98:8c:c6:99:3f:ee:c5:a4:94:41:dd:40:b9:ae:1c:51:
37:3a:94:c0:f4:01:55:63:a2:a2:ba:a1:11:d3:92:b0:fb:75:
72:1a:9f:ad:c1:16:6b:42:a5:4e:7c:dd:cc:58:99:90:59:33:
8a:b6:43:86:9e:89:30:69:1f:34:5c:1f:36:74:76:cf:25:3b:
79:b9:18:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:37 2024 by rpki-client on console-ams.rpki-client.org