Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63096D85EEC11EF82808472762E951A.roa
File: A63096D85EEC11EF82808472762E951A.roa (raw, json)
Hash identifier: UsFtBBvQ/aHKPAlSnUCExihpIBhy0fTyXxeM8hyP1wE=
Subject key identifier: CB:D7:E5:59:3E:6D:04:8E:0D:17:E6:16:32:99:88:6B:BF:38:50:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63096D85EEC11EF82808472762E951A.roa
Signing time: Tue 20 Aug 2024 12:06:37 +0000
ROA not before: Tue 20 Aug 2024 12:06:32 +0000
ROA not after: Tue 27 May 2025 12:06:32 +0000
asID: 399077
IP address blocks: 156.240.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43430 (0xa9a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:06:32 2024 GMT
Not After : May 27 12:06:32 2025 GMT
Subject: CN=66c486cd-ed32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:61:a6:14:d6:28:ac:39:04:9b:f0:fb:01:33:
96:4a:fd:ef:35:08:e8:3f:5a:90:01:0d:4f:a6:ce:
06:8f:75:fb:13:9d:42:b4:07:25:c3:2e:36:09:57:
aa:7b:83:6c:c4:d8:3b:df:eb:8c:b6:54:ff:fe:c7:
0c:40:34:21:02:f3:f3:fa:8e:91:b8:86:ee:a6:8d:
f8:5a:5b:2b:43:41:ba:d2:7e:fc:c9:b4:56:59:6e:
8c:20:ae:b6:91:78:99:d4:76:ae:42:ea:d5:30:46:
90:2e:1e:2c:41:2f:fb:fa:45:06:f4:94:0b:af:a9:
77:94:87:a4:c3:75:0d:2a:0b:f4:7f:02:cf:d4:38:
99:d6:48:c2:e9:31:58:e6:56:e0:f9:2c:bc:ab:84:
73:c4:16:32:e5:07:33:16:83:d2:7b:d7:cf:54:73:
3f:5e:ed:75:fb:ee:dc:5f:dd:96:bd:b0:aa:5a:5d:
0c:fe:34:29:f3:2a:f2:9a:9e:e5:08:d5:c4:80:cd:
5a:a6:44:1f:16:d5:e7:98:d3:c3:e8:49:16:6c:17:
76:d9:5a:4b:1e:51:ce:12:02:c6:80:8a:08:02:c4:
2b:96:fa:b5:3a:0a:0d:7d:4d:d5:b7:1c:a4:d7:31:
52:a5:6b:56:11:76:1f:5a:eb:52:a1:b9:fc:57:ce:
f6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D7:E5:59:3E:6D:04:8E:0D:17:E6:16:32:99:88:6B:BF:38:50:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63096D85EEC11EF82808472762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.192.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:5f:ca:79:a1:70:f0:2b:2a:cb:6c:c6:d0:b6:51:b7:9f:2d:
02:f7:70:3e:aa:f9:66:17:94:42:d6:c0:99:a8:e5:92:02:68:
06:96:fc:17:8c:7b:c0:ca:c9:3c:73:2f:7b:e1:5b:84:b2:17:
b9:21:d6:96:ad:f5:e0:2b:63:72:1a:6b:46:3c:64:1f:37:98:
7c:d5:05:ae:6a:d7:c0:8e:4f:46:fb:45:dd:b0:eb:96:c7:bc:
2f:c5:2b:b4:65:92:44:e5:dc:45:74:99:96:2c:07:21:96:a1:
60:a7:ed:69:23:77:67:41:bf:93:72:42:73:fe:4d:dd:9d:a8:
ce:9e:e6:d9:92:4e:1c:9a:54:9b:e9:7e:71:cd:66:44:9d:93:
fd:9f:6c:23:1a:cd:29:8a:35:3f:89:73:c4:db:4f:3a:c2:bd:
1b:7c:00:1e:05:66:b8:7d:43:47:05:53:d6:2e:49:c8:9a:c1:
2e:d7:e6:e7:40:4f:d4:c6:63:fc:df:5b:2b:18:fe:59:65:03:
6f:09:cc:61:6c:27:a1:ac:85:3d:b3:a0:a7:6a:dc:9a:9c:5c:
9c:45:59:f4:2b:20:32:9e:f0:3f:83:8b:05:86:01:51:b2:70:
f4:9a:23:c3:f5:63:05:fa:86:42:d4:69:43:05:2d:37:cf:40:
42:9c:fa:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:42 2024 by rpki-client on console-fra.rpki-client.org