Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81AF37E0014211EFAC2D5828017001B1.roa
File: 81AF37E0014211EFAC2D5828017001B1.roa (raw, json)
Hash identifier: p5dXjzS4mWfsbcJsCmMwZwtiK/ypvd9zty4zmPNEzV0=
Subject key identifier: E2:80:2A:C0:C7:12:D2:D2:C0:E1:23:A9:D5:A0:56:E0:14:AC:A5:C6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 83FE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81AF37E0014211EFAC2D5828017001B1.roa
Signing time: Tue 23 Apr 2024 07:24:23 +0000
ROA not before: Tue 23 Apr 2024 07:24:19 +0000
ROA not after: Sun 12 Jan 2025 07:24:19 +0000
asID: 209242
IP address blocks: 156.238.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33790 (0x83fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:24:19 2024 GMT
Not After : Jan 12 07:24:19 2025 GMT
Subject: CN=66276227-69c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:0e:71:68:fc:df:06:05:6e:0e:18:ac:0d:df:
22:96:7d:cf:3a:c5:12:74:48:e9:69:41:e3:96:6c:
88:18:67:ef:2d:7d:48:b2:e2:f0:85:bd:04:6b:b1:
d0:e2:47:f8:af:13:0d:34:a3:81:93:ee:21:42:c5:
c4:a9:f3:74:4e:41:81:97:13:ef:83:e4:80:96:15:
cc:c8:d5:df:5e:84:9b:3c:3b:1b:7d:4c:d1:3b:3f:
80:61:17:42:5e:8d:bd:dd:41:de:63:ed:95:ba:f5:
2b:f8:60:c2:2a:0f:74:3f:d2:6f:87:a4:77:8e:77:
5e:ed:06:af:73:95:05:e6:66:69:2e:88:0f:ef:c4:
9b:ad:d1:a1:b6:53:3d:df:3b:c8:06:de:04:6d:7f:
af:63:49:f7:6f:a0:31:d2:43:35:bc:42:68:c2:8a:
7b:69:8e:fb:79:66:44:78:46:f6:cd:76:24:20:82:
75:83:da:a1:d8:98:2a:fd:ee:ea:5a:85:21:09:c6:
7d:38:c8:29:a7:cd:b7:32:36:59:f2:02:21:3e:31:
61:30:7e:97:37:c5:de:b5:54:37:c0:cb:d7:a0:ea:
bb:d9:6f:fe:b3:a7:34:6a:55:7b:3f:52:63:25:41:
2f:88:26:d2:e2:49:00:cb:b1:c6:d4:24:af:da:88:
f4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:80:2A:C0:C7:12:D2:D2:C0:E1:23:A9:D5:A0:56:E0:14:AC:A5:C6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81AF37E0014211EFAC2D5828017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.15.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:19:c7:90:3b:fd:dc:e2:77:4a:14:3f:04:2c:53:67:01:7c:
c8:09:22:5f:78:3a:da:d7:82:e7:78:bb:21:9f:ca:79:9c:2e:
67:e2:4d:cc:a4:34:80:6f:df:93:10:4f:57:cf:bf:2b:7d:ec:
74:52:c9:29:bd:c8:ce:7b:8e:ee:f4:fb:07:be:5d:a1:5e:6a:
22:90:b2:34:4d:aa:85:aa:a8:94:f0:55:7e:ea:ed:8a:8a:aa:
a6:ba:2c:85:1b:c8:6b:1a:4d:59:3f:e0:af:04:5a:01:dc:bb:
25:ac:76:e1:10:e4:d9:f7:2f:00:ec:60:2f:97:54:15:cc:56:
05:e0:0f:f3:8b:7d:c8:77:01:b8:c8:80:f5:a1:21:c9:9a:4a:
dc:2a:87:ae:e9:ff:96:09:5b:54:fd:f4:a6:63:f7:62:f8:69:
ba:4f:01:65:df:53:46:1e:e9:3d:c9:06:f8:10:7f:5e:52:3b:
31:c6:b9:2c:13:e0:68:ed:9f:d5:a6:93:b2:1a:1a:3b:f1:ae:
23:d0:bd:61:1d:d1:fa:d9:8e:12:5c:2d:b3:95:6e:ac:d0:66:
17:c4:f4:4d:d6:1a:fc:af:0a:ff:1e:22:0a:61:e3:90:c2:25:
ab:8b:3b:74:87:35:98:d2:a3:09:68:89:96:57:4f:ff:5b:b3:
0f:06:40:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:37 2024 by rpki-client on console-fra.rpki-client.org