Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93C59DB0A75111EFA882C6A9762E951A.roa
File: 93C59DB0A75111EFA882C6A9762E951A.roa (raw, json)
Hash identifier: U+EWpxIz4meLvq/8JM+Bp9UL966hMaqw1S1043VaA+A=
Subject key identifier: 3A:1C:83:F0:49:57:16:C6:79:B6:59:D3:87:D2:80:D8:13:DC:53:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6F4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93C59DB0A75111EFA882C6A9762E951A.roa
Signing time: Wed 20 Nov 2024 15:10:29 +0000
ROA not before: Wed 20 Nov 2024 15:10:25 +0000
ROA not after: Sat 30 Nov 2024 15:10:25 +0000
asID: 142062
IP address blocks: 156.238.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55028 (0xd6f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 15:10:25 2024 GMT
Not After : Nov 30 15:10:25 2024 GMT
Subject: CN=673dfbe4-c6de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:64:8c:fe:f4:b4:16:9f:cc:1b:da:de:40:5b:
81:eb:48:41:28:d7:81:22:b5:bf:56:28:f4:f2:90:
55:42:8b:ac:fa:dc:99:10:9f:04:0d:20:88:6d:71:
05:da:2e:8c:e2:05:5b:0f:73:95:8f:e9:6f:38:ea:
a6:45:16:b7:23:0f:3c:50:70:e8:48:68:c9:fb:f4:
f5:4f:13:67:bd:e5:77:30:e4:22:cc:2d:84:8e:b1:
00:ff:d4:c9:56:21:20:bf:52:5e:af:0f:f8:8a:b0:
d0:7d:74:94:ea:2a:5a:c8:cc:4f:f0:9c:a2:3a:b8:
92:76:74:8b:96:70:0c:cf:cc:cc:f6:2f:1e:9f:4f:
78:de:1f:65:50:e5:71:9b:b6:7a:33:1f:28:08:a5:
82:11:24:2d:b0:74:39:03:e5:60:7b:f8:39:cd:6e:
de:c7:1e:7d:2f:5a:7e:bc:b7:92:0e:18:d9:bd:8b:
90:65:26:42:c5:2d:62:0b:bc:4a:19:a3:5c:5b:f6:
91:fd:84:02:5c:1a:2b:99:30:55:42:aa:a0:91:8d:
f9:f0:1f:1d:75:d8:55:8c:45:1b:ae:79:f4:59:77:
9d:ab:98:0d:8d:f8:44:c9:75:08:fd:32:c9:f0:c6:
22:fd:da:88:f2:e5:6d:67:af:d7:54:96:a8:2f:27:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1C:83:F0:49:57:16:C6:79:B6:59:D3:87:D2:80:D8:13:DC:53:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93C59DB0A75111EFA882C6A9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3f:96:20:3b:d0:1f:0b:79:76:b9:94:82:85:04:bc:8f:c8:c5:
bc:90:c6:5a:49:58:a5:7e:1b:c2:bf:b7:30:a2:4c:d9:23:4f:
ad:df:7f:42:2f:2d:25:31:7e:b4:96:7f:3f:d0:b0:44:d0:80:
94:89:f8:88:4b:1b:6c:81:a0:cd:4f:f7:29:28:26:ac:d8:ad:
d5:69:b8:7a:a6:65:5e:61:c7:99:8a:45:a7:60:19:a7:ac:73:
38:c3:7b:7c:a3:b5:c5:bb:42:36:50:d5:f6:8d:ed:e0:62:93:
f0:ac:7f:76:e2:d8:bd:49:0f:7e:d5:24:99:fb:dd:56:b6:5d:
46:74:3a:8c:0d:2e:9d:20:27:95:36:bc:44:a8:23:59:21:bf:
59:3e:d0:ea:51:42:91:ef:22:1c:cd:9c:6e:86:fa:aa:6f:5e:
25:6c:63:ae:76:57:ff:ae:ae:ee:36:5d:39:c2:c5:dc:39:e6:
e9:ea:46:3d:d3:af:59:c2:15:8e:0f:a8:b1:ed:48:43:0f:90:
53:59:90:9d:6c:71:8c:d1:76:05:d2:d1:d2:db:5a:9c:c7:48:
95:38:73:f8:d4:dc:8b:dd:00:23:95:a4:92:30:5a:24:b2:f2:
5d:76:4b:f7:a9:bc:70:18:d1:88:7c:ca:e3:09:8d:b4:50:fe:
be:6f:29:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:41 2024 by rpki-client on console-ams.rpki-client.org