Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B44F5069AA811EF967D3252762E951A.roa
File: 8B44F5069AA811EF967D3252762E951A.roa (raw, json)
Hash identifier: aYYpMNGvENT60sdrpZKghVXqCgiv/aRfCMH1W3jaBHU=
Subject key identifier: 01:33:B3:49:B1:4E:94:B0:10:29:66:00:64:EA:45:94:B4:02:A0:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD72
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B44F5069AA811EF967D3252762E951A.roa
Signing time: Mon 04 Nov 2024 12:30:15 +0000
ROA not before: Mon 04 Nov 2024 12:30:12 +0000
ROA not after: Tue 03 Dec 2024 12:30:12 +0000
asID: 139646
IP address blocks: 156.242.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52594 (0xcd72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 12:30:12 2024 GMT
Not After : Dec 3 12:30:12 2024 GMT
Subject: CN=6728be57-73fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e7:22:3c:eb:08:39:b3:79:2f:ae:f1:db:db:
22:52:d8:7f:15:69:e5:d4:1a:c2:e4:b7:1e:a1:49:
f4:a0:cf:da:20:3b:44:48:0e:94:87:49:a1:12:a8:
3c:33:ce:1a:02:f9:3e:c8:41:43:68:1f:14:04:dd:
41:b7:09:a4:ee:7a:1a:c2:37:26:5d:cf:4b:2f:e7:
32:04:b3:60:31:b4:b0:94:56:5e:da:3a:9a:80:cf:
26:64:4d:ce:8d:1a:04:0d:46:98:6e:df:e4:9c:e3:
a7:18:72:5a:52:33:35:28:bd:58:1c:be:26:3c:96:
8c:69:8e:ce:5f:1a:cc:ff:36:00:b4:93:cd:60:b5:
15:1e:23:7a:e9:be:25:b3:a9:90:9a:bc:32:56:c2:
7e:a1:6e:c0:92:57:7f:cf:cb:cf:54:20:ba:20:e4:
58:d4:a5:9f:14:bd:7f:7d:a4:2d:28:a7:0c:2f:d0:
a2:a4:d7:a8:77:4d:21:9d:ed:7d:8e:65:b6:ad:21:
be:7f:fe:ff:5d:71:7f:72:a3:ed:e6:7f:73:08:f7:
2a:33:b9:5b:3f:c8:2e:ad:63:cc:9f:65:64:60:76:
07:79:e4:8f:1d:2b:27:99:f0:05:4e:cb:df:39:84:
91:fb:e1:47:39:f7:d2:a1:b1:b0:af:fd:9e:33:c6:
d7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:33:B3:49:B1:4E:94:B0:10:29:66:00:64:EA:45:94:B4:02:A0:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B44F5069AA811EF967D3252762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.12.0/22
Signature Algorithm: sha256WithRSAEncryption
41:50:04:43:80:42:d0:bd:0a:90:1b:4f:05:a5:1d:b2:fc:c7:
97:64:36:c5:7c:63:ae:9b:62:da:6d:9e:f1:de:36:b8:11:1c:
00:d1:83:27:a2:91:d3:33:c7:40:3c:db:a9:d4:cb:30:5b:c5:
1c:8e:43:47:9c:96:36:cc:ad:41:34:ee:62:73:df:f6:d1:32:
0a:9b:3a:2d:43:1a:a8:52:c5:88:d9:a7:fb:fe:00:54:21:32:
63:e7:38:f2:46:55:ec:8b:59:86:d9:3f:74:3f:b1:b0:3a:f3:
46:18:e6:b2:2e:f9:98:0c:be:f4:fb:10:11:e6:5e:20:87:1b:
2a:b3:70:bb:be:18:77:f8:7a:85:c0:77:d3:80:56:7c:51:1d:
98:c5:29:1c:57:b9:12:e3:b8:09:37:3a:3e:99:3e:b8:d8:ac:
72:67:cd:ce:06:5e:10:60:26:63:20:2c:99:30:1c:30:2c:b9:
d7:a0:84:5b:65:8a:2b:00:e3:83:51:be:3f:e9:d5:14:b5:01:
b2:a6:02:2b:9e:ed:34:0a:a5:f0:29:d0:ff:1a:e5:3d:9c:63:
53:0c:4c:13:70:f6:aa:58:b1:c8:2d:55:52:ef:30:b3:4b:12:
2b:4f:a7:65:72:77:fe:51:0f:a3:d6:b3:08:8b:22:d1:10:26:
6c:fa:70:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:38 2024 by rpki-client on console-fra.rpki-client.org