Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D0DDE190344B11EF9E663487762E951A.roa
File: D0DDE190344B11EF9E663487762E951A.roa (raw, json)
Hash identifier: JvYmp69AoKvIZydAXZWqGdapRdcoKTD6eZD2bBWqpHs=
Subject key identifier: CB:F3:D6:F5:65:BC:EB:08:48:CF:1F:29:76:A6:DF:46:D7:4D:A0:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 95A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D0DDE190344B11EF9E663487762E951A.roa
Signing time: Thu 27 Jun 2024 06:09:30 +0000
ROA not before: Thu 27 Jun 2024 06:09:27 +0000
ROA not after: Mon 30 Dec 2024 06:09:27 +0000
asID: 984
IP address blocks: 156.249.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38310 (0x95a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 27 06:09:27 2024 GMT
Not After : Dec 30 06:09:27 2024 GMT
Subject: CN=667d021a-815a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8b:d1:1e:13:43:e4:1c:60:94:1b:70:2c:73:
37:dc:2e:ce:5b:a8:f5:7f:a8:5d:98:f6:89:62:91:
f4:78:a0:84:75:20:ed:a1:36:e0:5b:95:68:9a:5d:
5a:25:8c:c0:6e:dc:fe:27:a8:9b:73:38:76:69:78:
e5:ce:48:10:7d:09:69:7d:a7:6f:c5:52:8d:61:86:
43:cf:41:3a:b3:88:16:90:6f:5c:10:5f:d2:1a:a7:
f8:56:9a:5d:af:05:e0:de:b6:72:9a:6f:ab:5b:9a:
a3:da:3f:79:72:36:ec:71:ca:45:77:ae:51:0a:7f:
8a:cc:01:2f:4a:78:bc:a2:fe:11:68:20:f8:2c:b4:
66:b7:f5:45:4c:82:23:fb:45:07:93:4d:33:5e:1b:
33:36:74:cc:d7:82:e7:b3:68:71:9c:bd:24:a9:6b:
c9:56:9f:cf:67:a3:47:58:9d:e6:7a:74:7d:d2:51:
76:80:a9:99:24:52:bb:46:f1:60:85:f4:d8:25:e1:
bd:c5:54:34:33:db:0d:6d:f7:bc:db:9c:13:49:d6:
c1:8f:b0:96:1c:cf:b5:b7:c9:fd:04:69:3c:f6:dd:
fd:3b:29:9c:9b:22:fe:77:82:0c:60:32:08:f7:8f:
ac:b6:dc:fc:2f:22:cc:1c:18:4c:d2:20:0d:35:85:
4b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F3:D6:F5:65:BC:EB:08:48:CF:1F:29:76:A6:DF:46:D7:4D:A0:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D0DDE190344B11EF9E663487762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.64.0/18
Signature Algorithm: sha256WithRSAEncryption
09:76:ee:6f:43:1d:32:d6:16:f4:5b:b5:0b:2b:94:2b:b9:29:
aa:20:61:63:b5:16:c5:e7:f0:99:d5:21:57:82:18:31:2b:f8:
1d:ff:2f:8f:8a:08:20:8d:16:20:2a:f5:4b:49:57:84:2c:73:
59:4f:23:ab:7d:ab:5c:9b:e6:29:8c:df:d1:76:30:e7:d7:65:
36:b1:c6:f5:8f:5d:64:03:4f:57:49:73:4e:ae:64:4a:98:18:
cb:36:54:6b:71:02:1a:a9:6c:66:ff:33:4a:ce:d3:da:32:f6:
b8:09:e7:c2:a7:77:fe:41:3a:2a:a5:1b:36:ce:a4:64:40:08:
d3:ef:20:4e:df:f5:c6:a2:29:80:9c:54:6b:6a:15:1d:d0:9e:
87:41:f8:8e:86:3a:08:54:e5:33:4d:42:86:80:24:9b:29:75:
78:84:ce:6b:54:7d:9d:bf:b7:71:ec:b5:9d:54:be:be:b4:01:
ab:06:95:3b:7a:ea:fc:c6:e7:9f:60:12:f8:d3:5c:38:c5:39:
8a:1f:ce:a5:e5:11:83:ba:9f:a7:d4:06:6f:51:6a:04:03:13:
72:de:e2:48:1d:2c:ef:a5:7d:1e:fa:43:08:1f:62:97:57:58:
94:6d:bd:6b:e5:40:c5:51:63:c5:02:fc:83:e8:b8:cc:ee:46:
58:2d:8a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:48 2024 by rpki-client on console-fra.rpki-client.org