Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3EB8B668F8A11EFA5129CBE762E951A.roa
File: A3EB8B668F8A11EFA5129CBE762E951A.roa (raw, json)
Hash identifier: Fe8R6GC6yZMX5LjuzMkV0d/04QAJY6YUiQYTFln8sn4=
Subject key identifier: 74:21:7C:84:71:24:81:B6:EE:CE:50:BF:CA:3B:0D:08:55:52:95:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C753
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3EB8B668F8A11EFA5129CBE762E951A.roa
Signing time: Mon 21 Oct 2024 08:58:29 +0000
ROA not before: Mon 21 Oct 2024 08:58:25 +0000
ROA not after: Sat 23 Nov 2024 08:58:25 +0000
asID: 44559
IP address blocks: 156.246.184.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51027 (0xc753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 21 08:58:25 2024 GMT
Not After : Nov 23 08:58:25 2024 GMT
Subject: CN=671617b5-a1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b7:0f:55:33:02:9a:87:f5:46:37:69:7d:34:
87:9b:cb:70:cf:d2:28:11:36:20:91:32:df:e3:2e:
6b:2e:f2:19:65:b8:9f:2c:5f:94:bd:ad:1a:35:33:
c3:c0:9d:73:69:44:cc:0b:65:bf:9d:e5:91:1d:6d:
cb:bc:6a:ce:92:8f:00:9d:e0:67:bc:f8:a1:01:c3:
2c:c7:ba:3e:a3:92:68:e2:6e:0d:e2:d8:a3:37:95:
19:3b:82:22:af:7a:7f:fc:03:15:d4:5a:a1:57:55:
bb:a3:dd:50:26:18:2f:86:91:27:3b:67:cb:11:fb:
47:3a:61:b3:68:39:6c:3d:fc:78:e5:a0:36:00:7b:
41:fd:72:26:0b:94:08:b5:f5:a5:48:24:c1:68:a7:
eb:37:25:75:ab:55:fb:96:8f:8b:bb:d7:c8:2a:11:
3a:1f:31:bf:d5:df:dc:2f:1d:dd:12:eb:18:4f:59:
a2:80:23:46:3f:3c:2d:60:2e:0f:80:ad:43:b1:3f:
69:28:48:ad:8b:ad:5d:a6:ce:09:5d:1d:a8:21:e2:
8e:b6:8c:c7:30:bb:a3:81:af:19:2c:5f:99:44:07:
fb:eb:a7:01:71:f1:19:fa:67:34:8c:fe:d3:42:3a:
7c:98:61:3c:c5:f6:66:6f:d2:e2:c1:81:ec:e2:c8:
a0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:21:7C:84:71:24:81:B6:EE:CE:50:BF:CA:3B:0D:08:55:52:95:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3EB8B668F8A11EFA5129CBE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.184.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:b0:1b:00:a1:1b:bc:c3:0b:1a:51:f2:32:7d:09:9c:51:46:
b4:fe:c6:d3:f6:97:26:ff:24:78:14:30:89:1c:c0:24:8e:bc:
88:ae:6f:ed:08:f9:f2:4d:e1:eb:39:65:88:23:7f:26:6b:01:
b7:03:05:8a:d4:92:25:80:cf:b4:dc:1b:06:8e:2e:e0:39:18:
40:71:af:71:15:fd:fb:20:74:3c:24:e2:f1:2b:d7:6e:47:d7:
63:49:76:c5:c3:04:97:7e:8f:2f:93:60:5b:94:cd:8b:2f:ff:
e4:d3:ac:50:4d:0b:4f:d8:04:44:37:53:d6:be:6f:5e:d8:fa:
70:4f:cc:da:0c:f1:5b:a5:e3:1f:8a:e4:f5:ca:57:0e:bb:46:
24:e4:65:8c:ac:e2:34:20:65:a3:f6:1d:2d:62:a4:6a:8d:87:
14:4e:6b:8f:a3:6f:05:42:76:b9:1c:ef:4d:5e:a5:c7:7a:b9:
5a:8b:b5:ce:25:7a:3a:50:76:71:8e:68:58:04:77:8f:f5:d5:
85:40:5b:be:bf:13:ac:fc:69:05:c9:99:9d:86:8b:51:00:b2:
05:30:74:3f:e4:b8:29:9d:b8:dd:93:a5:7a:04:8e:e7:ee:24:
ea:f7:ee:38:44:66:59:1e:74:b3:72:94:ab:3e:9a:0a:be:46:
c4:b6:84:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:41 2024 by rpki-client on console-fra.rpki-client.org