Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF97540E976811EFA942CA55762E951A.roa
File: BF97540E976811EFA942CA55762E951A.roa (raw, json)
Hash identifier: 8unYi7aGLjd/d+fSqGs7AhV/jYdHQUwiFzlVbi12ASE=
Subject key identifier: BB:EC:14:B6:39:6A:4C:C2:D1:5B:1F:4E:A5:FC:DD:D3:47:3F:7E:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB12
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF97540E976811EFA942CA55762E951A.roa
Signing time: Thu 31 Oct 2024 09:16:02 +0000
ROA not before: Thu 31 Oct 2024 09:15:58 +0000
ROA not after: Fri 13 Dec 2024 09:15:58 +0000
asID: 138915
IP address blocks: 156.244.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51986 (0xcb12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 09:15:58 2024 GMT
Not After : Dec 13 09:15:58 2024 GMT
Subject: CN=67234ad2-163e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:59:8c:60:10:b6:e6:28:88:e3:0c:01:d4:04:
3e:fc:8f:be:21:47:4f:e5:e5:ce:15:49:da:4f:b4:
9f:7a:ed:cd:ea:11:a4:50:8b:f8:5f:0d:8a:00:83:
f0:b4:61:83:a1:7d:c9:ef:cc:db:1a:4f:ef:a3:06:
3e:34:c6:55:6b:c1:1d:2a:f1:44:85:02:c7:e5:e3:
76:77:68:ea:4b:ab:f9:50:73:0f:ab:ce:cf:41:e6:
68:69:49:f3:d6:e6:cf:0f:f3:cb:59:80:12:39:fe:
ba:62:b1:0f:e7:a8:dc:cd:48:8f:e2:b3:6a:e6:75:
01:f9:d1:64:37:a3:41:00:67:2a:1c:f6:bd:f8:87:
3e:96:58:ad:50:28:6e:1c:fe:1f:2d:29:cb:d9:ae:
b5:12:6e:cc:f1:9a:a6:02:3d:6b:e4:e4:c0:f9:10:
61:fd:40:56:81:2c:4d:a0:af:4e:d3:f8:64:d2:5a:
f2:c8:88:0d:7d:a3:d6:01:df:09:96:c9:9d:ec:c6:
1f:40:73:95:5b:b9:cb:e5:d2:ed:9b:cf:ff:ce:ec:
b2:54:8b:fc:8d:0d:38:6d:c1:26:0f:01:72:03:54:
82:b2:dc:eb:25:01:8c:60:33:07:4b:54:cf:e5:04:
85:8e:77:24:7c:2f:e0:9d:c9:3a:5a:c5:20:d2:32:
2e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:EC:14:B6:39:6A:4C:C2:D1:5B:1F:4E:A5:FC:DD:D3:47:3F:7E:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF97540E976811EFA942CA55762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.34.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:bb:4a:d2:4b:e6:c1:ef:0d:30:75:e5:54:bc:99:7e:e3:47:
3d:83:9f:db:10:c4:46:d5:bc:4f:e0:31:a5:81:1c:04:32:55:
da:85:de:6c:e2:21:40:eb:3e:f3:2d:04:d8:ca:2f:27:14:b8:
a8:1b:44:69:fd:a9:98:2e:a5:64:1d:8f:e4:e2:55:af:c2:4f:
2f:fa:0b:c4:01:86:75:c2:bc:dc:6f:19:43:89:8c:46:24:49:
01:98:fe:99:4b:68:b8:d5:88:d9:14:d7:74:0a:05:e4:4d:2e:
24:52:af:1a:7d:3b:26:50:cc:49:7f:67:7b:0c:1a:3f:f6:a9:
48:70:44:d9:c5:ea:e3:8f:46:4b:04:00:54:4d:69:6a:d9:57:
dc:58:f4:d3:b4:16:8b:7d:e8:42:36:d1:f8:42:26:35:84:74:
f3:3a:d0:6e:f5:51:3c:5c:14:04:32:8d:84:a3:36:46:56:12:
c9:df:c9:00:09:b9:ee:14:f0:d9:d6:01:65:b1:c7:d8:2d:10:
01:a3:b9:9d:00:e8:29:78:57:19:ed:b0:03:aa:72:99:f8:dd:
ab:86:a2:7f:aa:c1:a7:08:ec:aa:87:d7:07:40:dc:17:50:7f:
57:f3:8f:ba:a9:c2:ff:0d:cb:eb:0f:88:5d:89:ff:1e:0b:7b:
fa:95:d1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:46 2024 by rpki-client on console-fra.rpki-client.org