Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1B8EC3A96B011EFB59AD049762E951A.roa
File: A1B8EC3A96B011EFB59AD049762E951A.roa (raw, json)
Hash identifier: qT6krhm0ZSVI5yWD9vtqgGnNsO6Q7E8fzbo0nzgOCuI=
Subject key identifier: EE:51:B2:CD:E3:7B:7E:A1:81:00:31:35:7B:17:9A:6E:37:3A:D4:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CA2B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1B8EC3A96B011EFB59AD049762E951A.roa
Signing time: Wed 30 Oct 2024 11:18:04 +0000
ROA not before: Wed 30 Oct 2024 11:18:01 +0000
ROA not after: Tue 03 Dec 2024 11:18:01 +0000
asID: 269070
IP address blocks: 156.249.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51755 (0xca2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 30 11:18:01 2024 GMT
Not After : Dec 3 11:18:01 2024 GMT
Subject: CN=672215ec-86be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c9:de:17:3b:7f:36:f9:37:9f:bc:26:3f:06:
c4:ab:62:0e:4f:25:db:ab:5d:ae:bd:be:1f:d1:6c:
6a:53:cf:6c:4b:f7:c4:0d:44:b0:bf:02:7e:9a:be:
42:c7:66:71:2c:22:ca:54:2c:26:2f:97:71:41:b0:
5a:ed:c7:d4:be:7a:5a:d3:0f:16:cf:3a:17:72:2a:
d3:2d:aa:02:14:1d:5f:60:6b:2c:94:41:3b:8c:82:
ce:70:f4:e8:46:2b:c1:c2:e1:32:95:43:84:ba:61:
a8:98:68:d1:66:a8:55:f6:25:b4:16:37:af:91:2f:
68:b5:fe:44:e0:4a:56:31:e0:c3:0a:dc:53:31:26:
20:89:6f:4c:bb:68:e8:71:fb:04:9b:77:4a:9a:99:
34:f9:0c:46:96:38:62:37:fa:3c:c2:a2:70:1e:f3:
01:67:f1:2a:ea:dc:00:a3:30:fd:8a:6c:63:3e:cc:
af:c8:19:13:1e:51:57:c2:8a:fa:db:ba:05:d1:48:
58:c7:ed:a0:ee:ff:67:5d:73:90:f2:cf:60:32:19:
ae:9f:58:ee:55:6f:e4:07:57:42:ab:87:3a:8c:8a:
d4:c7:cd:56:55:67:fe:7f:8d:e2:e6:6a:1b:2f:cb:
86:99:18:7c:39:69:8e:92:94:b4:89:b1:0d:dd:97:
4e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:51:B2:CD:E3:7B:7E:A1:81:00:31:35:7B:17:9A:6E:37:3A:D4:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1B8EC3A96B011EFB59AD049762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:ba:4e:b2:fb:3a:37:42:e7:0e:69:fc:a9:3c:17:7f:3a:5b:
28:93:b5:b8:a1:c5:a2:8d:03:85:c9:94:32:8c:f7:bf:52:e8:
1f:49:0a:09:64:e6:ce:ce:b4:39:0a:ea:bf:b8:be:92:7b:3d:
68:47:de:5a:d3:7b:fb:68:e1:d2:d5:6a:f8:6f:16:f1:9f:c0:
ab:dd:5a:8a:df:0f:fc:48:94:3c:f4:fe:2d:c1:ff:72:ca:c0:
6c:b2:52:eb:8f:af:9f:7f:49:f9:ec:57:b8:17:86:20:91:c4:
79:63:ad:3c:da:6b:fc:b3:6c:f2:d9:8b:0a:a9:9a:5a:31:18:
71:d9:5a:bd:30:b1:90:0e:b1:97:5c:96:11:ef:d5:50:18:5a:
39:ec:78:65:8c:28:69:d0:c3:08:5a:60:7c:d6:8a:6a:14:1e:
f7:31:23:1d:8f:fe:7d:00:b1:93:47:e2:20:ed:3f:98:a3:13:
5c:0e:0f:84:d0:09:d2:b4:d0:c0:b1:22:71:65:6e:30:18:1a:
1e:40:e4:c5:3b:fd:8e:0b:9a:0f:ca:53:98:13:b0:18:cf:35:
28:80:7d:a6:33:3b:5c:1d:e2:35:8f:a2:6b:53:44:c0:cd:2b:
4d:07:9b:e2:d8:f7:af:27:b8:84:71:ce:ef:b5:30:0f:87:5d:
14:f6:fa:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:42 2024 by rpki-client on console-ams.rpki-client.org