Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84DE4B84A45011EFA2EFC347762E951A.roa
File: 84DE4B84A45011EFA2EFC347762E951A.roa (raw, json)
Hash identifier: zh4Zt2I/owcc6KbroSnLbiVu1aNLPv8cSNPOGqG44Ts=
Subject key identifier: F1:56:BF:46:78:27:36:80:31:4C:7F:99:53:40:E9:DF:3B:C8:6F:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3C8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84DE4B84A45011EFA2EFC347762E951A.roa
Signing time: Sat 16 Nov 2024 19:25:21 +0000
ROA not before: Sat 16 Nov 2024 19:25:16 +0000
ROA not after: Mon 25 Nov 2024 19:25:16 +0000
asID: 22773
IP address blocks: 156.238.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54216 (0xd3c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:25:16 2024 GMT
Not After : Nov 25 19:25:16 2024 GMT
Subject: CN=6738f1a0-2eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1e:d3:4d:86:f6:2d:7c:37:42:6d:e0:8f:3e:
a8:ba:e0:87:6c:d5:7a:06:13:b5:a6:59:81:d3:a9:
3e:85:bb:22:2f:0a:52:45:d8:b8:8b:81:62:a7:7f:
f0:53:01:31:ac:f6:a3:89:32:8d:50:5e:03:ab:11:
3b:a0:6c:20:7d:d2:45:21:8b:d2:58:ce:2a:4b:09:
c7:b1:69:2a:e0:c4:78:3c:d7:c1:32:1a:52:ba:1f:
dc:47:8d:70:29:44:b3:e1:0a:59:e3:c7:cc:5e:05:
ea:71:93:5e:71:f6:1a:d8:b5:96:4c:e7:48:4b:6d:
d8:8b:89:06:a5:98:3c:dd:d3:02:ff:17:c7:18:49:
38:18:57:47:87:ac:2c:a8:a4:53:7e:4a:c6:30:2a:
b1:ef:f0:74:eb:c1:85:2e:ec:b4:1f:80:dd:95:12:
e2:1c:ee:19:da:ad:91:64:dd:8f:7f:1b:b7:ad:56:
65:bb:d3:2c:06:c4:6c:bb:cb:e7:9d:2f:5d:56:18:
de:0c:72:bf:23:41:d5:56:c6:4a:60:37:b7:ea:d3:
ef:f6:b0:12:42:7d:92:22:ae:b5:f7:6c:56:7c:7e:
7d:7d:22:11:92:2f:d6:44:e4:54:35:f8:5b:a3:c4:
2f:62:d6:ec:29:10:d9:08:50:70:53:a8:ab:01:5b:
af:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:56:BF:46:78:27:36:80:31:4C:7F:99:53:40:E9:DF:3B:C8:6F:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84DE4B84A45011EFA2EFC347762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.176.0/22
Signature Algorithm: sha256WithRSAEncryption
37:c3:e4:f4:39:b6:6f:5a:80:50:5a:4b:96:5d:c2:68:d9:05:
1f:92:4e:c1:df:ab:2f:2e:eb:41:b1:2b:0c:15:2d:b0:0f:cc:
3c:b9:10:b2:98:0c:f3:86:43:f9:fb:04:70:ba:e9:3c:c8:2b:
1d:0d:e2:6a:13:ae:13:1a:12:31:82:10:ec:69:3f:ac:7e:04:
7b:04:24:06:b5:17:b6:c6:91:0b:0e:b3:b4:d0:9b:ba:51:ee:
db:0a:99:0e:76:cb:c7:15:75:1a:18:47:72:92:d7:84:7f:98:
69:b0:35:51:e4:67:6c:28:1a:98:26:c6:bc:ff:59:b6:6f:30:
75:88:2e:4d:44:17:48:69:6a:ed:47:11:37:3c:48:1e:2d:51:
f6:33:f5:23:07:78:50:d1:26:4c:c7:c2:e3:c3:fa:3e:2a:84:
89:8d:60:bd:33:d0:a2:6c:ef:2f:31:e3:d1:88:98:d1:bd:e2:
36:d5:2d:6b:8a:8d:27:d8:ab:d6:ae:7c:3b:5c:83:61:80:b4:
cb:59:3e:ff:b2:d7:1e:59:ab:3f:9f:76:db:7f:40:bb:63:63:
72:45:8b:86:3e:a9:44:cc:a6:40:73:95:7c:ac:00:35:3c:fa:
37:6b:a7:9a:b8:d0:77:f4:c9:fe:f7:ca:87:1a:c5:90:d0:87:
fa:3a:1f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:38 2024 by rpki-client on console-ams.rpki-client.org