Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A360CB60951211EFB0740696762E951A.roa
File: A360CB60951211EFB0740696762E951A.roa (raw, json)
Hash identifier: xlacsAOyuTcPODogQG7a8flh9yrE3Kp5sZqjaYE7Pg8=
Subject key identifier: 08:0E:DC:CB:15:D1:3A:C6:8A:6C:C4:2E:E5:D6:1B:88:78:F2:D4:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C940
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A360CB60951211EFB0740696762E951A.roa
Signing time: Mon 28 Oct 2024 09:54:36 +0000
ROA not before: Mon 28 Oct 2024 09:54:32 +0000
ROA not after: Sat 30 Nov 2024 09:54:32 +0000
asID: 203020
IP address blocks: 156.228.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51520 (0xc940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 28 09:54:32 2024 GMT
Not After : Nov 30 09:54:32 2024 GMT
Subject: CN=671f5f5b-26d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cc:0e:c6:72:d3:b6:6c:24:1f:f1:94:2c:80:
74:08:a4:49:eb:09:64:aa:39:1b:86:dd:c8:1a:53:
95:bc:2f:af:32:f7:44:cf:8d:ba:d0:20:b6:1a:9a:
f8:87:1f:75:dc:3d:2f:c2:0e:6d:27:83:1f:eb:08:
91:aa:1e:7e:c6:b0:6c:2c:fb:ff:c0:29:9f:4e:4f:
50:c7:96:c7:b6:c9:8f:d1:cd:86:9f:a9:ec:59:51:
ef:36:90:89:d2:9b:bd:e7:14:31:5a:33:74:6d:d1:
9f:e2:70:90:b7:f5:19:ca:97:bc:e9:81:17:75:aa:
19:13:68:65:00:1b:2e:4f:96:e2:62:c2:c0:99:4d:
b1:1f:75:79:67:59:85:96:b4:16:84:e7:33:ce:f8:
29:7c:0b:89:14:63:c8:e9:13:a2:13:ad:c2:5f:cd:
32:1b:fd:9b:5b:f0:ca:ec:4f:0b:33:b6:74:1a:50:
fd:f4:da:2a:4b:89:4c:30:7b:1e:2b:36:3b:dc:76:
4d:f1:72:6f:79:db:8e:28:9d:51:c8:0b:ee:4b:85:
b5:66:83:b3:ad:4a:a5:61:89:f3:4e:13:cd:fa:1a:
1e:f9:d9:5f:11:b7:5c:b0:f9:71:11:cd:7b:d0:6e:
76:3d:74:28:76:b1:b9:c1:a1:a6:7a:eb:79:f4:4f:
85:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0E:DC:CB:15:D1:3A:C6:8A:6C:C4:2E:E5:D6:1B:88:78:F2:D4:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A360CB60951211EFB0740696762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.19.0/24
Signature Algorithm: sha256WithRSAEncryption
19:e5:d6:5c:04:2c:86:9d:f8:b1:54:f0:f2:a1:04:82:f2:78:
93:45:02:83:de:ad:5a:7e:3a:83:69:3e:c2:e9:b8:88:85:3c:
a0:1d:00:1e:e5:08:d7:03:80:a9:03:a7:10:bb:4e:c9:d1:2d:
21:4a:46:b3:07:98:13:48:08:f9:3f:6d:76:d6:04:81:2a:f5:
ec:8b:0e:11:18:d8:7c:4f:65:2b:b8:bb:7b:27:e4:5a:44:b2:
77:bb:2a:57:dc:ce:ec:ed:19:4f:26:44:e1:84:77:22:a8:fa:
3a:c8:7b:60:37:12:a9:1c:59:7f:2d:f5:c3:eb:11:78:5a:ef:
82:b2:46:bd:44:31:ea:21:61:bb:df:60:94:ff:f2:99:4b:a6:
69:43:35:92:e0:d5:e9:94:b2:3f:ae:53:86:c7:d4:7f:05:f8:
08:ff:4a:6b:2f:b5:a7:99:26:ed:fe:58:54:29:8e:7e:3a:43:
0e:39:14:84:01:da:0d:fc:1b:b4:37:61:ea:70:78:d9:f2:06:
ee:46:57:03:2b:b7:f6:8c:51:2d:fe:31:a8:6a:68:fb:bb:83:
3e:db:16:7b:9f:02:78:96:25:4d:87:c0:f8:44:32:da:d0:42:
53:6f:99:58:48:4b:02:ec:bb:9f:45:2d:41:8d:19:29:6b:ab:
56:73:39:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:43 2024 by rpki-client on console-ams.rpki-client.org