Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6EB1702A19311EF8765E28F762E951A.roa
File: B6EB1702A19311EF8765E28F762E951A.roa (raw, json)
Hash identifier: DtzZcavPqlIBr3BExdxdnKAEvMt2PLoB8PJCNGb3scc=
Subject key identifier: ED:F3:36:97:CB:CB:97:EB:3D:5F:22:55:B6:C3:1F:F8:42:89:48:F1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D238
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6EB1702A19311EF8765E28F762E951A.roa
Signing time: Wed 13 Nov 2024 07:48:47 +0000
ROA not before: Wed 13 Nov 2024 07:48:44 +0000
ROA not after: Sat 14 Dec 2024 07:48:44 +0000
asID: 6079
IP address blocks: 156.243.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53816 (0xd238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 13 07:48:44 2024 GMT
Not After : Dec 14 07:48:44 2024 GMT
Subject: CN=673459df-3354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:81:e3:68:ac:06:a4:38:c9:55:8c:fc:ba:
af:04:7e:5a:9a:11:9a:69:de:37:06:af:3d:98:f5:
a3:cb:be:b4:61:63:74:73:ef:78:5d:18:b2:9a:61:
c6:a0:2a:e9:19:f4:50:28:65:d9:e8:4b:bb:2a:75:
14:b7:fb:5e:42:52:11:4f:11:99:f0:53:7d:f5:15:
17:52:be:0b:9a:1b:60:35:e0:2b:63:3e:84:6f:cb:
92:33:35:e8:1e:ba:cc:16:df:f1:04:0f:bf:2a:1c:
98:66:ab:8e:09:31:0f:c1:5c:8e:08:31:56:c4:b3:
06:a2:87:8e:29:00:55:35:0f:5a:3a:55:23:4d:5d:
d2:a0:39:0d:8f:2f:61:5f:f7:f1:13:57:98:7b:57:
c8:a8:82:12:68:f4:03:91:da:e1:0a:54:e0:ec:a8:
64:b4:ba:06:7c:55:50:d6:b9:83:c5:3b:98:12:c4:
38:bd:53:76:97:21:36:c8:21:0b:c4:6b:2d:ef:2c:
e5:1c:27:4c:71:7f:d9:2a:af:1b:6c:bc:9a:b0:77:
27:1f:19:f7:f6:de:41:5c:ef:1e:0c:77:e3:5d:64:
70:31:cd:ac:0a:14:37:c5:c4:23:67:2c:3e:6d:eb:
23:35:9a:45:c7:f0:93:82:01:be:a3:4a:88:62:5d:
30:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F3:36:97:CB:CB:97:EB:3D:5F:22:55:B6:C3:1F:F8:42:89:48:F1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6EB1702A19311EF8765E28F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.128.0/19
Signature Algorithm: sha256WithRSAEncryption
4d:f1:16:a1:13:a6:4a:32:20:3b:19:96:e1:b6:74:47:2f:ef:
85:3f:06:c0:0c:83:89:ab:5e:d2:da:25:1e:8e:19:c5:7f:42:
ba:94:68:c6:e1:2e:cb:1c:da:78:2b:1f:ce:fb:58:0e:26:df:
da:57:59:d8:8e:a4:99:e6:96:f7:57:86:db:c5:a6:02:9b:b7:
5b:0e:81:fd:6d:aa:50:59:99:ed:2a:12:75:61:f9:2c:af:2c:
2e:e9:d8:57:55:df:21:85:5f:c1:72:59:d2:bd:cf:6d:d4:0e:
d8:43:db:a5:80:e2:1f:3e:f4:9c:72:da:38:75:2d:8a:25:f3:
7f:0e:f2:53:42:dc:d2:d4:46:5d:01:cb:4b:de:76:78:f2:69:
c9:1e:ac:ee:3a:6b:3a:ec:5b:1f:30:df:e0:b7:00:c0:7b:0b:
a4:17:42:fd:91:06:af:0f:99:ef:e3:e8:f9:58:5e:e6:79:49:
d2:3f:7c:d0:e3:60:c2:d5:32:fb:fe:12:0e:71:61:62:78:4f:
5c:d0:1b:b4:84:8e:53:f3:54:38:db:0b:5b:3e:00:a4:aa:43:
75:45:56:46:43:ff:71:ed:32:b1:2b:cb:7f:70:33:10:ff:a9:
41:b7:e3:17:aa:73:d0:ce:70:43:eb:f5:9a:3c:4e:3f:21:68:
51:55:7d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:46 2024 by rpki-client on console-ams.rpki-client.org