Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD8AC14AA2E711EEBF10E66BD25BE465.roa
File: AD8AC14AA2E711EEBF10E66BD25BE465.roa (raw, json)
Hash identifier: 1A/05gn9LriV6OH+QGoVA71p9LSN1HAFZsMMjiHIVM4=
Subject key identifier: A9:E4:B8:BD:63:5A:57:4C:DD:76:9D:49:CC:80:A3:03:13:8C:9E:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 590C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD8AC14AA2E711EEBF10E66BD25BE465.roa
Signing time: Mon 25 Dec 2023 05:37:23 +0000
ROA not before: Mon 25 Dec 2023 05:37:19 +0000
ROA not after: Mon 13 Jan 2025 05:37:19 +0000
asID: 18004
IP address blocks: 156.225.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22796 (0x590c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 05:37:19 2023 GMT
Not After : Jan 13 05:37:19 2025 GMT
Subject: CN=65891513-07ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:15:2a:f6:9a:79:be:95:e3:66:be:a1:f6:d8:
0b:b6:00:69:3b:09:e2:a9:a1:7d:46:43:2c:c8:f3:
45:94:1b:8f:17:3d:aa:92:b9:6c:0e:0f:fe:26:bf:
7b:c1:77:7f:ac:18:29:aa:5c:6c:0c:b0:04:3c:cc:
ef:73:32:18:d1:b4:96:69:e1:b3:4c:cf:b2:c8:12:
4a:09:fa:6d:f1:aa:db:2b:e0:bc:37:f0:22:52:01:
27:69:65:86:6b:56:0d:8f:7e:66:88:65:26:86:0f:
24:5b:c8:dc:fa:65:36:9f:ac:f1:29:85:db:df:bf:
be:fd:12:c3:77:9f:db:79:3d:43:a4:e6:ac:bf:62:
50:52:79:0b:db:da:0a:58:5d:20:ff:03:53:c7:22:
03:1a:d1:47:20:20:e8:cd:53:32:de:38:cc:94:a6:
b0:0c:ae:16:df:84:98:80:ca:80:52:6f:3c:40:17:
60:36:57:d9:b8:2f:8b:73:8a:6a:54:4e:eb:dc:a9:
2a:bf:f9:96:07:a8:92:09:bd:3a:3d:78:a6:cc:75:
06:c6:52:50:89:c5:39:4a:16:25:05:00:46:63:39:
3d:ac:b0:25:65:6d:40:5c:2c:8b:b7:d8:fd:38:d5:
ae:70:e8:c6:31:33:47:85:67:2d:e2:83:66:95:e8:
92:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E4:B8:BD:63:5A:57:4C:DD:76:9D:49:CC:80:A3:03:13:8C:9E:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD8AC14AA2E711EEBF10E66BD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.99.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:b7:0e:d5:be:6d:54:8a:4c:c8:2e:98:63:75:f8:cc:88:d7:
ca:35:57:d7:34:a4:51:89:a2:d3:ba:1f:e2:f3:5c:5a:57:4b:
90:be:3c:23:a0:18:9f:97:fd:26:4d:7c:59:b3:96:8a:6a:b8:
b5:49:51:83:9d:3e:7f:45:30:71:f2:91:b9:2d:a2:42:5e:47:
3d:d4:b9:a9:55:dc:2c:0e:70:12:1a:61:0d:21:1c:5b:48:bd:
06:ed:6c:62:1c:34:61:e9:95:57:c7:5c:ca:47:53:94:c7:8b:
e3:f3:0c:db:67:6d:80:f4:63:9c:c4:ff:a1:ea:ae:49:ed:b6:
c4:a2:f1:24:4b:e2:e6:82:b2:95:e5:26:c9:f1:17:68:6e:c8:
f2:ef:b1:a3:27:9a:aa:ed:c3:a8:ed:0d:cf:b6:d6:db:37:e3:
5a:08:df:29:04:17:11:fa:30:33:1e:b9:09:ae:70:9a:b6:97:
69:6c:1c:80:6b:57:db:f8:69:5c:14:20:6d:bf:53:1c:f7:1b:
05:85:ba:6d:33:5c:0c:06:65:8a:bd:7d:36:6a:2f:b0:96:9c:
40:64:ff:ee:6b:ed:d2:b9:93:91:e2:08:bc:6c:ea:6d:cc:66:
13:32:a6:62:bd:a8:5d:41:f8:a4:4e:07:ba:81:2e:e1:37:12:
7f:87:9e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:43 2024 by rpki-client on console-fra.rpki-client.org