Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0735A609EAF11EFBDFC50AF762E951A.roa
File: B0735A609EAF11EFBDFC50AF762E951A.roa (raw, json)
Hash identifier: Ary5vh6+6mQ/pzmQZNDzeAiQslGSJVQmpJ1TMRJ4+n4=
Subject key identifier: 59:14:DF:4A:7B:31:CA:CC:CE:3F:20:1A:7C:A9:FB:77:49:82:3C:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D035
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0735A609EAF11EFBDFC50AF762E951A.roa
Signing time: Sat 09 Nov 2024 15:31:29 +0000
ROA not before: Sat 09 Nov 2024 15:31:25 +0000
ROA not after: Thu 12 Dec 2024 15:31:25 +0000
asID: 398993
IP address blocks: 156.231.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53301 (0xd035)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 15:31:25 2024 GMT
Not After : Dec 12 15:31:25 2024 GMT
Subject: CN=672f8051-4cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7b:d9:40:40:82:a6:d0:d4:db:39:ef:0e:34:
23:9f:cb:70:d3:22:f6:02:e4:2a:f1:8d:fe:34:ed:
8c:b2:8d:5b:a9:52:73:5a:c2:a9:46:d6:f6:74:8c:
fd:2a:df:f5:d3:d2:5c:d4:2c:ac:1d:b7:ac:75:b9:
a6:1c:24:71:bf:46:df:51:33:74:63:5d:3f:17:25:
08:60:bd:f2:9c:af:37:db:51:cc:b0:2a:bb:27:65:
5b:77:db:67:ac:42:b0:73:45:ce:b4:a7:10:06:bb:
30:b2:51:45:8e:a4:67:6d:d0:dc:9e:79:d8:de:46:
63:47:db:e9:85:59:cd:19:9f:9a:93:e8:5f:76:e1:
92:82:c4:9c:13:c2:73:35:73:3a:80:06:b7:49:d4:
7e:ea:75:bb:47:16:85:bd:f1:44:0b:1a:ef:1b:ab:
57:64:1c:f2:14:8d:1b:5f:4c:ae:79:34:9c:55:b3:
c4:37:6e:cb:73:54:f9:d6:fe:56:48:d0:5e:8f:0a:
0f:3f:60:fa:65:20:5b:9a:ab:de:43:b4:3f:ec:4f:
3c:d6:72:f9:f7:ba:15:04:f5:d7:7d:7e:74:05:64:
30:2a:8c:43:e4:79:9a:40:43:eb:fb:4e:2d:45:6d:
c6:61:f6:a3:79:c8:43:40:01:2d:30:b8:61:b0:28:
66:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:14:DF:4A:7B:31:CA:CC:CE:3F:20:1A:7C:A9:FB:77:49:82:3C:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0735A609EAF11EFBDFC50AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.52.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:5f:60:fb:92:fa:d6:fe:ef:58:6f:b1:a5:5b:0e:18:07:5b:
f6:a3:35:ce:40:b0:0d:5b:77:50:3a:a9:ee:79:19:9b:29:f9:
83:8c:2d:7f:9f:f8:31:39:54:ee:54:f8:7c:78:80:a0:1d:4b:
d8:51:1b:8a:f7:d5:73:b3:eb:79:44:0c:90:37:ef:6d:25:02:
6c:c1:83:e6:4e:44:35:a7:3b:e3:20:0e:00:00:d2:5b:a2:dc:
b1:e6:5f:a3:66:ce:19:de:d4:de:e1:e0:b1:09:2f:5d:06:27:
ff:69:25:dc:e2:ac:62:55:6c:52:63:c0:ad:2a:96:b6:3b:14:
a5:e0:44:72:ab:92:44:2a:6e:d8:f0:03:55:a3:56:f0:a7:70:
d0:64:e5:39:be:8e:89:55:63:d2:47:b2:9b:0d:6f:20:b1:9c:
a8:4e:d0:38:78:e7:f1:3a:aa:e6:fd:4c:52:8a:98:68:7e:d8:
fb:5a:0a:7a:6d:e9:63:0c:48:7a:cd:ea:64:1d:ff:99:78:ee:
d9:1c:76:c2:f9:7c:5e:e1:48:74:84:95:e9:01:1c:c6:27:b8:
6f:36:a4:a4:cf:eb:27:ca:c6:5c:a1:cd:38:44:03:f9:53:ad:
8a:23:ed:2e:ec:ad:8f:2b:96:a4:9d:ea:3a:6c:14:0c:89:c6:
a8:fc:bc:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:44 2024 by rpki-client on console-fra.rpki-client.org