Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C161CA088F8911EF94A02EBA762E951A.roa
File: C161CA088F8911EF94A02EBA762E951A.roa (raw, json)
Hash identifier: UgG0ZlsNdRyELSx6m9QiO52qtBvEtZvTvebD4SgrbHo=
Subject key identifier: 3D:55:F9:DB:A8:81:79:CD:16:92:86:A4:C2:9C:14:39:58:FB:80:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C747
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C161CA088F8911EF94A02EBA762E951A.roa
Signing time: Mon 21 Oct 2024 08:52:09 +0000
ROA not before: Mon 21 Oct 2024 08:52:05 +0000
ROA not after: Sat 23 Nov 2024 08:52:05 +0000
asID: 44559
IP address blocks: 156.246.150.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51015 (0xc747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 21 08:52:05 2024 GMT
Not After : Nov 23 08:52:05 2024 GMT
Subject: CN=67161639-ab85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:43:7e:5e:58:be:6f:6b:c5:e5:6a:1f:29:67:
1c:8c:3f:2f:2d:19:f6:a3:30:4e:01:e3:41:92:a1:
89:c9:ec:a1:3f:37:b3:f4:cb:b2:07:b3:33:2d:d9:
4e:0b:db:1e:47:3f:32:83:d0:20:3b:d8:a4:50:95:
c1:f4:23:f7:a8:2b:45:af:41:fe:20:6a:f8:4a:5d:
12:63:31:d5:a9:35:b6:9b:13:f4:48:6c:50:bc:c6:
09:36:65:a3:6b:d6:97:45:52:bb:d4:c6:0a:e4:05:
28:51:e3:36:61:21:bf:fc:cc:4f:19:33:18:15:3c:
05:4b:da:14:d2:66:b6:36:5a:b5:99:f1:2c:bb:25:
f0:4c:3a:4e:b2:cd:9a:6b:c4:0a:9f:86:49:70:14:
7d:e0:e5:87:94:3a:f2:a4:ae:42:b8:16:af:5e:b7:
a1:50:01:61:c3:91:bd:6e:94:eb:9c:3e:0c:6d:2c:
c9:19:57:5c:6c:a1:37:0c:63:05:fc:73:e6:57:37:
19:e4:b1:0d:6a:fc:e3:7f:48:09:41:7d:c3:c5:72:
f7:24:4c:8a:88:71:c5:0a:69:3d:6c:28:b5:f7:4f:
ff:01:f1:de:42:84:47:2f:37:97:c4:d0:4e:fb:cb:
f4:ee:c9:f4:0f:d7:85:b1:50:68:ca:96:41:4a:db:
4e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:55:F9:DB:A8:81:79:CD:16:92:86:A4:C2:9C:14:39:58:FB:80:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C161CA088F8911EF94A02EBA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.150.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:e2:33:18:da:e8:0a:8b:12:3c:a4:fc:50:b1:85:60:20:8e:
20:e1:85:ca:b2:8b:21:89:4a:03:f1:ef:0d:a3:a4:ab:cd:74:
ad:28:58:4c:2c:b4:2a:be:0b:59:09:a7:1f:ad:12:a1:30:58:
e4:f6:46:b1:fd:a1:78:37:ef:b3:3e:18:b4:8c:bf:fe:a6:bb:
58:fd:55:9b:89:33:92:03:3c:c2:67:f3:68:2e:39:4c:2d:3e:
c4:d1:b8:80:24:50:61:74:2a:b6:05:ae:ab:30:3c:b5:66:c8:
c0:e6:18:fd:27:de:64:e9:9a:9b:b7:0b:90:13:ba:4c:91:a4:
8c:8b:28:94:46:59:e1:8a:23:fc:a7:f0:a2:30:44:2e:40:76:
93:a1:ed:ff:1f:4b:74:63:b2:b2:54:d7:63:14:97:6e:c0:de:
e8:1c:21:05:8a:27:7d:f6:7b:fe:f7:51:35:82:f4:7e:33:72:
78:48:4d:cf:13:67:66:cd:83:ae:a5:16:ab:fe:35:69:70:af:
40:95:c7:bf:22:40:a5:cf:cf:be:a4:f7:df:60:30:81:b4:4a:
cf:0c:bf:05:5c:e4:37:29:e0:87:45:bd:94:03:c7:a0:ba:fa:
6e:1b:19:6c:2c:eb:fa:6f:49:b4:21:c4:6b:52:7d:01:15:7d:
92:fe:21:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:46 2024 by rpki-client on console-fra.rpki-client.org