Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B1602869EAF11EFA82A45AF762E951A.roa
File: 8B1602869EAF11EFA82A45AF762E951A.roa (raw, json)
Hash identifier: DwvjUO/FTeN2ZdFYpMruR5w55VoH9gXDkAyxRQiW+eA=
Subject key identifier: AF:89:42:B6:85:A3:6F:6C:9A:84:22:F6:FF:41:58:75:67:1C:9A:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D033
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B1602869EAF11EFA82A45AF762E951A.roa
Signing time: Sat 09 Nov 2024 15:30:26 +0000
ROA not before: Sat 09 Nov 2024 15:30:22 +0000
ROA not after: Thu 12 Dec 2024 15:30:22 +0000
asID: 398993
IP address blocks: 156.231.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53299 (0xd033)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 15:30:22 2024 GMT
Not After : Dec 12 15:30:22 2024 GMT
Subject: CN=672f8012-5b23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:94:cb:d7:3f:fe:0a:68:ec:88:e4:1c:b6:d5:
e0:db:48:a9:a8:e5:f7:c7:78:07:e9:eb:95:dd:f2:
24:47:27:a4:1f:7f:1b:1b:f7:60:10:66:b1:2d:df:
03:93:da:78:04:54:75:16:90:98:9a:82:bb:ec:a0:
8f:39:03:a1:62:45:f6:4c:bd:76:9c:bc:24:dd:00:
fd:24:06:f6:13:18:22:5d:e9:25:c8:19:d3:5f:fc:
53:7a:67:95:2d:27:5d:c7:aa:45:e3:9e:dc:17:43:
42:7e:4b:07:88:a8:5c:ca:b2:c7:8c:29:eb:37:3b:
10:b2:75:0a:58:84:db:13:91:6d:26:35:1e:92:15:
da:6f:85:e9:c4:9f:55:09:06:38:09:51:c5:7c:b4:
21:4c:26:ac:77:da:19:a0:cd:e0:74:06:8c:0a:ee:
92:5e:0a:72:23:28:88:e3:e7:1c:17:46:64:5b:7b:
cc:97:fb:75:e1:38:5e:4b:3a:86:94:37:27:2b:15:
c6:75:9d:53:db:ae:db:04:c7:61:83:0a:50:71:d8:
37:d7:96:55:e4:f9:3e:ec:33:09:19:57:d7:27:44:
df:50:3e:9e:57:6f:44:49:a9:4c:de:07:ec:e2:92:
54:d9:7c:0f:ec:f2:75:19:b1:7b:13:b9:27:3b:53:
1b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:89:42:B6:85:A3:6F:6C:9A:84:22:F6:FF:41:58:75:67:1C:9A:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B1602869EAF11EFA82A45AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.68.0/22
Signature Algorithm: sha256WithRSAEncryption
16:24:fd:c5:62:85:10:51:ac:cd:8b:b4:16:38:12:1b:94:ab:
bf:a4:ba:64:3d:23:9a:0d:d0:23:51:55:64:66:1e:e8:8e:ce:
cf:8b:aa:54:5b:15:f7:d6:8a:31:ff:7d:51:bc:25:cb:1d:77:
3a:ee:50:20:ac:52:3e:e8:65:41:52:b2:c8:08:27:d3:a2:8e:
5c:93:9d:b5:7f:49:60:4e:c7:f1:fc:cd:03:9d:2f:95:98:05:
86:ea:2e:55:eb:c7:aa:2f:6e:ea:81:29:8c:f5:32:40:ce:9e:
43:a4:6f:39:17:b9:83:a2:18:4d:05:5e:30:f0:8e:7a:e1:73:
f7:89:55:1d:af:9d:cd:6c:d7:81:2a:f8:27:df:0a:97:b5:36:
3e:1c:09:f6:ac:dd:25:bc:f4:d1:09:7d:94:e8:bb:79:00:1f:
74:d4:66:d8:32:ce:51:b7:87:78:d2:30:2c:00:fb:00:60:df:
65:b5:f8:44:93:1b:36:5d:24:aa:27:47:f2:79:dd:06:75:e2:
ea:e5:c2:3e:db:25:4c:86:e6:2b:0c:cb:79:ee:e5:c1:9e:12:
4e:5d:3a:f5:ae:45:ce:8d:18:f3:e0:5c:b1:c3:ef:86:48:3d:
f3:11:70:81:9c:8b:af:d6:e0:49:52:c5:22:c8:f6:20:68:97:
a7:a9:48:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:39 2024 by rpki-client on console-ams.rpki-client.org