Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE962384983411EF8E39FE59762E951A.roa
File: AE962384983411EF8E39FE59762E951A.roa (raw, json)
Hash identifier: WxEmeknZvI5f9VvlFBy2dExuQ/4NbGCFo8d4koccK9w=
Subject key identifier: C0:78:CB:00:3F:19:C3:53:BA:3B:41:05:9A:7A:AC:53:B5:06:5B:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB79
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE962384983411EF8E39FE59762E951A.roa
Signing time: Fri 01 Nov 2024 09:35:51 +0000
ROA not before: Fri 01 Nov 2024 09:35:47 +0000
ROA not after: Sun 24 Nov 2024 09:35:47 +0000
asID: 54467
IP address blocks: 156.227.48.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52089 (0xcb79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 09:35:47 2024 GMT
Not After : Nov 24 09:35:47 2024 GMT
Subject: CN=6724a0f7-800d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2b:7e:f4:e8:d2:15:73:29:36:59:a3:8a:75:
cb:4b:d7:66:53:1c:90:c3:ab:02:b0:85:40:c2:2d:
bc:20:09:ba:c2:26:49:55:66:d1:f5:fd:58:14:cd:
c4:e5:c8:4c:06:02:16:49:db:f7:cf:b1:0e:da:37:
34:a3:bc:5d:b3:56:c2:94:bd:ea:fe:ee:cc:fe:3f:
4d:74:3a:4d:25:c9:d1:29:dc:4e:b2:57:58:d6:0b:
8e:0e:63:fe:02:53:9c:5f:e4:6b:37:76:33:ab:7e:
be:c2:48:25:1d:15:68:b4:14:23:13:79:60:8b:d0:
f2:a4:38:24:e8:77:c5:f0:c4:d1:45:b5:9a:2f:44:
2b:46:20:c5:65:0e:e3:90:19:e1:d1:e9:d9:09:86:
cc:36:13:d8:41:c0:e4:aa:c0:69:12:f1:56:e3:be:
55:d7:fa:20:27:33:ab:5c:2e:38:e8:f6:3a:dd:72:
4a:b1:56:92:d2:7c:cd:ca:d7:f2:48:f4:89:34:48:
d4:87:e7:24:a2:86:af:2e:0b:29:e6:34:bd:20:04:
55:31:98:e6:53:22:2b:1f:8a:42:69:75:72:58:a8:
bd:aa:e8:bd:bd:65:70:9e:c1:34:e5:26:32:32:fb:
ef:e8:2d:e9:07:b5:19:bd:df:9d:c7:d7:ab:7f:da:
a9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:78:CB:00:3F:19:C3:53:BA:3B:41:05:9A:7A:AC:53:B5:06:5B:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE962384983411EF8E39FE59762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a9:30:1a:4a:fd:49:33:29:4e:10:9b:aa:d1:b5:72:bc:e0:ca:
ac:ee:cd:5c:34:c2:e9:3f:d8:69:10:70:43:21:23:ce:3d:c8:
97:df:4b:73:33:e7:0a:f4:ae:a0:1e:04:d8:6a:da:a9:ef:46:
95:a8:a9:bb:1b:b7:a6:5b:30:35:68:5f:2b:d7:93:d0:cf:77:
3f:10:8c:5b:31:ee:45:04:07:b6:a0:0e:c2:86:5b:8b:b5:4f:
d6:9a:39:5f:18:2e:13:f5:2f:a1:0e:61:0c:94:1b:30:de:e8:
b8:79:e8:09:5f:98:4b:c0:f1:ed:95:7b:8e:41:fc:b9:6c:2e:
77:6f:c9:f3:f2:ef:45:80:c5:e4:ea:7b:4a:79:ad:8b:9a:ff:
e0:1f:97:c1:31:ea:1a:45:fa:2e:99:91:d7:a1:eb:37:2b:b3:
79:3e:2e:c6:1d:f5:9b:3b:83:30:8d:a1:c0:20:da:0a:45:ed:
67:b0:a0:b2:ed:ca:7a:d9:98:0f:82:ea:41:7b:81:22:d9:98:
e2:22:2e:63:8b:74:e6:c0:f9:4e:ec:11:12:c0:0e:14:54:3b:
a0:f7:90:7c:47:50:a2:a6:70:3c:03:04:70:ff:0b:4c:f1:b1:
9f:72:ab:dc:9c:bd:a4:86:15:91:fc:e8:ea:e4:ef:62:db:bb:
32:0c:2b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:43 2024 by rpki-client on console-fra.rpki-client.org