Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E1137B6766911EFAB36D261762E951A.roa
File: 9E1137B6766911EFAB36D261762E951A.roa (raw, json)
Hash identifier: HGQw5WnPrm/qLLHLwymb0xQCBJGmTfQlgbI9QQ2sy7Q=
Subject key identifier: D6:19:6D:CD:EC:FE:D3:44:5C:03:ED:3D:0C:3A:A7:B4:83:37:EC:53
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B811
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E1137B6766911EFAB36D261762E951A.roa
Signing time: Thu 19 Sep 2024 09:29:07 +0000
ROA not before: Thu 19 Sep 2024 09:29:04 +0000
ROA not after: Fri 08 Aug 2025 09:29:04 +0000
asID: 133861
IP address blocks: 156.245.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47121 (0xb811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 19 09:29:04 2024 GMT
Not After : Aug 8 09:29:04 2025 GMT
Subject: CN=66ebeee3-735a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:33:bd:fe:9a:ce:32:64:86:42:94:9c:ba:79:
9d:b5:a8:ac:a1:66:8c:e9:72:d1:9a:be:ae:0f:4e:
01:b7:9a:d7:7e:c0:57:5c:fe:fc:b0:1b:8e:e1:98:
0c:3c:b6:a7:b6:60:0f:ab:09:17:47:a7:d7:68:52:
10:ae:4a:09:52:f9:da:6e:01:35:7a:80:98:1c:f7:
dc:48:44:ef:5d:72:49:d8:75:c2:cd:23:07:4b:4e:
8f:a0:fb:57:b6:eb:6c:97:a5:6b:e5:df:3c:58:61:
d6:85:0d:32:c9:57:b6:dc:de:64:1d:4b:51:18:e0:
8f:9d:46:12:68:72:c0:33:67:2d:8a:e7:84:9b:74:
11:88:9d:c7:17:8b:1f:88:25:58:74:64:f9:35:f1:
2f:23:b8:58:4a:c2:a9:e1:c9:a6:bb:ea:2f:d3:96:
4a:05:b5:b6:09:57:a1:08:27:8f:04:34:4f:7c:1f:
f4:e6:f6:1e:af:e8:f8:53:90:68:74:06:64:d3:bf:
ea:a8:9e:30:a5:69:93:a0:83:b1:04:38:11:8a:d8:
d7:9b:13:72:e6:87:9c:ce:61:e3:ab:a8:04:41:3b:
33:7f:de:dd:3c:19:b5:e2:a3:67:e1:9f:a6:78:3a:
b9:21:1f:e6:b4:d6:fa:6c:d2:21:e2:d2:c5:48:75:
c2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:19:6D:CD:EC:FE:D3:44:5C:03:ED:3D:0C:3A:A7:B4:83:37:EC:53
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E1137B6766911EFAB36D261762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.31.0/24
Signature Algorithm: sha256WithRSAEncryption
92:c8:ca:73:1e:61:3a:e9:d6:a9:17:f0:77:73:a8:0e:05:61:
e3:2d:62:d4:02:2f:73:8e:24:b5:27:47:c0:6a:bf:8c:3c:89:
37:6e:f9:f3:45:95:59:26:d9:c9:c3:d1:6b:95:b8:3d:ea:0f:
ed:d4:68:1f:3a:3d:13:06:fb:ea:30:8a:8d:15:4d:f3:0a:dc:
0c:e4:aa:24:b5:9d:a6:77:22:6b:19:bb:3e:1c:69:c7:2d:dd:
4f:61:4d:75:c0:b0:be:ce:bb:ad:2d:42:cd:50:ce:10:36:54:
22:f3:d7:86:6f:2c:7f:22:ab:fb:12:bc:95:cf:4f:3a:d2:63:
78:e0:c3:cc:c5:88:65:22:11:f9:c1:1b:e3:3f:62:88:9b:e5:
e8:de:06:06:96:c2:03:c5:be:bc:41:ec:7c:67:55:c0:c9:df:
58:5f:17:f8:c4:e5:15:b1:c7:6d:d7:6a:d8:3f:7e:aa:ea:9a:
cb:d9:85:a6:26:4a:fa:f3:ae:50:55:fd:a9:ff:79:5e:45:5d:
d1:87:f1:95:f9:cb:f9:37:92:48:fb:a1:5d:01:b1:55:ad:a9:
1a:cb:fd:73:75:a9:5f:b8:4e:5a:7b:f9:df:3b:7a:27:5a:6f:
ef:e6:38:13:83:e7:6b:16:84:9f:e8:a2:a0:23:c1:cb:0e:8f:
df:ca:6f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:42 2024 by rpki-client on console-ams.rpki-client.org