Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/941008BA5EEE11EF919A0F80762E951A.roa
File: 941008BA5EEE11EF919A0F80762E951A.roa (raw, json)
Hash identifier: vwgvpfc7MD19ub67HeORq2W5yM0zV3HDQiiFZ0enhlg=
Subject key identifier: 77:5A:C9:80:7E:75:7C:E4:95:EF:22:BC:9A:7E:59:7E:DC:10:84:4B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9BE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/941008BA5EEE11EF919A0F80762E951A.roa
Signing time: Tue 20 Aug 2024 12:20:25 +0000
ROA not before: Tue 20 Aug 2024 12:20:21 +0000
ROA not after: Tue 27 May 2025 12:20:21 +0000
asID: 399077
IP address blocks: 156.251.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43454 (0xa9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:20:21 2024 GMT
Not After : May 27 12:20:21 2025 GMT
Subject: CN=66c48a09-d78c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:86:fe:27:5d:4a:8f:fe:5d:1c:68:ce:8d:af:
7a:03:c7:6d:88:12:fc:bf:79:2f:90:d1:c2:bc:5a:
3a:96:19:ba:9a:d5:4f:0e:fe:b5:ce:50:7a:3f:6a:
12:68:7a:0e:ec:10:6b:a2:64:52:20:4c:d8:45:8b:
f2:24:79:94:55:7c:9b:89:69:64:3a:95:24:84:af:
2b:30:c0:32:d1:10:30:1b:fe:1f:0f:53:7a:49:7d:
56:ff:04:18:77:14:25:73:70:c5:59:7d:5a:05:bd:
dc:e5:15:19:d8:75:2e:e2:70:a9:ee:5f:e3:77:b5:
f3:d1:31:15:fc:bd:0e:d3:7e:84:83:0f:5c:ac:a4:
87:c7:3c:1f:b7:02:27:ee:a9:32:5d:56:14:56:70:
1e:6c:1f:db:6a:6e:40:6e:20:2e:4e:e7:f0:23:19:
56:cc:b1:4f:99:3b:c5:30:a2:c8:10:cd:ac:b2:a6:
7b:e3:f8:2f:e8:8f:25:df:69:44:d8:cf:bd:4b:6b:
6c:a1:c1:71:16:a7:dc:1a:31:0e:37:08:bf:d7:5e:
93:97:31:1a:f0:0b:38:98:9f:a6:ca:7c:fd:08:65:
bd:f2:0b:f6:5e:58:f7:ca:2e:75:41:bc:06:2b:b1:
27:47:9e:a3:dd:a8:75:f5:b6:56:fe:91:d9:41:da:
f3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:5A:C9:80:7E:75:7C:E4:95:EF:22:BC:9A:7E:59:7E:DC:10:84:4B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/941008BA5EEE11EF919A0F80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.50.0/24
Signature Algorithm: sha256WithRSAEncryption
61:9b:f4:87:9a:21:a0:73:1b:10:6c:b7:01:63:5d:16:94:7c:
a6:2f:30:70:b1:d9:78:1a:0a:6b:80:99:5e:cf:86:f0:4c:0a:
1b:7d:e5:a5:ff:70:db:58:41:4e:86:3e:d0:a9:f7:97:74:1d:
b5:e0:bb:d4:ec:53:40:23:37:0f:81:89:76:df:5d:4a:11:a3:
5c:a8:bd:0c:d4:1a:fb:bd:05:8b:5a:7a:07:b5:fa:59:d4:e8:
12:7f:8c:41:19:56:0d:4f:f0:74:02:dd:25:ee:53:01:7f:72:
a6:80:13:91:f4:1d:32:48:df:1b:8c:21:73:1b:85:33:b7:a3:
78:07:dc:8d:9c:0e:9c:02:34:4a:3c:db:cc:54:39:8a:ed:2c:
fa:85:d5:2c:5c:8b:ba:64:69:57:d8:b1:3a:ec:c4:8f:6f:1c:
54:5d:4d:46:9c:d6:66:e3:2c:a1:b9:1e:ac:33:c1:bc:ee:9f:
f8:99:3e:4d:06:49:36:50:88:68:43:b5:c5:14:d6:1d:3f:34:
f7:0a:14:39:c7:bf:c4:13:7e:de:8d:93:85:42:33:1c:d4:76:
bd:ec:3f:7a:60:f3:54:d1:f1:67:16:c2:64:3d:37:a8:12:63:
39:c0:5a:5f:bd:52:0a:ec:26:b1:ae:73:c8:02:63:69:e3:f6:
8e:24:e2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:39 2024 by rpki-client on console-fra.rpki-client.org