Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/967F102CE46511EE9CBA369C775412E6.roa
File: 967F102CE46511EE9CBA369C775412E6.roa (raw, json)
Hash identifier: U06AK0UjZa7u2woJJRkq7xy73Nc5vsQMFKQpNTOguyQ=
Subject key identifier: 2C:3F:F5:FF:78:B4:F9:F5:03:78:28:AC:5E:CB:29:0F:25:C4:E5:69
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7EA0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/967F102CE46511EE9CBA369C775412E6.roa
Signing time: Sun 17 Mar 2024 13:52:26 +0000
ROA not before: Sun 17 Mar 2024 13:52:23 +0000
ROA not after: Sat 25 Jan 2025 13:52:23 +0000
asID: 139811
IP address blocks: 156.240.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32416 (0x7ea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 17 13:52:23 2024 GMT
Not After : Jan 25 13:52:23 2025 GMT
Subject: CN=65f6f59a-6eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:75:5e:f3:59:12:d2:76:aa:65:69:92:a9:73:
1d:5c:e3:0f:8a:46:0f:2c:f4:bb:e6:c2:e1:ba:4a:
9d:5c:bb:be:9b:25:6f:26:72:e1:0c:a0:ba:69:8b:
3a:7f:cb:34:91:5c:40:e1:a1:32:70:47:6d:a2:9c:
c2:ce:df:d4:83:f2:19:80:15:49:09:db:25:42:50:
58:f9:b4:c3:09:c6:54:09:68:30:52:f3:a1:6b:7d:
d4:30:cc:18:48:b5:f5:37:6d:7c:89:1f:28:3b:7c:
4d:bf:db:b1:d0:8b:15:26:60:5b:6d:36:22:0c:74:
1e:3c:ec:dc:9e:23:de:cd:30:fb:ec:75:ac:40:87:
73:9d:af:62:a4:57:27:00:4b:99:56:a3:9e:35:d3:
6c:c3:d2:2b:00:87:7f:eb:b4:74:c4:21:7f:6c:f8:
43:f4:3e:1f:2e:0e:bb:71:d6:6c:e0:4d:69:db:2e:
69:9c:33:ba:36:88:47:84:0d:af:8e:e2:85:8d:e6:
f9:ce:32:43:95:2c:6d:b9:0e:a1:f0:37:3e:18:7b:
fa:7e:c6:1c:7c:fa:0b:be:ac:e4:b9:ba:3f:52:00:
50:3c:51:aa:e6:37:0d:3e:07:3b:be:79:fe:fd:9e:
f4:21:56:aa:f2:5d:16:47:44:a6:94:41:5d:8d:ca:
76:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3F:F5:FF:78:B4:F9:F5:03:78:28:AC:5E:CB:29:0F:25:C4:E5:69
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/967F102CE46511EE9CBA369C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.93.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:83:b0:d5:19:61:38:cb:d7:27:9e:f0:c6:83:3b:8a:2c:a2:
b0:96:31:e2:70:65:8f:ad:42:55:a6:c3:fc:60:e6:f5:44:a3:
a7:6e:bc:35:a0:33:08:41:02:91:92:2b:1a:79:52:51:71:56:
a4:3c:49:25:83:b1:53:9e:26:0b:ac:91:f1:4b:a7:f3:91:30:
7d:df:d3:38:a1:85:46:0f:3f:cf:c4:89:4a:6f:9a:f5:fd:bb:
88:6d:e3:9b:34:c9:b1:5d:bc:81:9d:d1:bd:47:bb:36:d6:d2:
6e:87:78:7f:e6:b2:13:4b:23:84:2e:5b:4e:91:ec:30:80:7c:
0e:47:b7:16:15:8e:98:0d:9d:81:37:0a:ce:d7:56:60:91:6e:
c5:8c:fc:31:4a:14:5c:dd:d4:fe:52:d4:86:3d:4e:2d:14:47:
06:f1:8b:db:5f:a5:5a:3f:a2:9f:d4:b7:f5:9e:be:8d:d0:6a:
12:dc:16:d2:cc:42:67:f3:ce:75:18:e6:12:b6:fa:be:d6:c9:
67:79:1a:5f:ca:ae:5b:20:38:77:98:3d:d7:d2:fc:e3:f3:c0:
94:ef:92:f5:2f:41:c0:d2:76:3b:19:f3:62:ca:18:c2:9a:94:
1e:c4:37:61:a4:36:e2:83:2f:a5:0b:0f:9d:01:a3:68:af:3f:
d3:b2:13:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:39 2024 by rpki-client on console-fra.rpki-client.org