Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D12814FEABB111EEBC050BB8775412E6.roa
File: D12814FEABB111EEBC050BB8775412E6.roa (raw, json)
Hash identifier: qUW01DUciV1Estgg+7bFCV2xZSasbHbgy/qjcB+TqIQ=
Subject key identifier: 7F:43:F2:D8:55:4A:26:3E:61:A1:21:B7:A7:E7:20:8C:D3:E6:3F:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5C8F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D12814FEABB111EEBC050BB8775412E6.roa
Signing time: Fri 05 Jan 2024 10:04:30 +0000
ROA not before: Fri 05 Jan 2024 10:04:27 +0000
ROA not after: Thu 12 Dec 2024 10:04:27 +0000
asID: 4809
IP address blocks: 156.242.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23695 (0x5c8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 5 10:04:27 2024 GMT
Not After : Dec 12 10:04:27 2024 GMT
Subject: CN=6597d42e-02f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:40:eb:75:fb:de:d7:2d:9a:c6:00:65:e6:c0:
ab:e6:59:a1:6f:dc:d9:42:70:97:bb:9f:f8:2a:f8:
b7:e9:92:82:5c:4f:46:e5:af:16:72:a7:ed:a7:78:
db:4b:d5:fa:9d:39:5b:cb:b4:9a:6d:80:54:24:9b:
63:ef:4b:83:83:83:af:cc:3d:b5:ed:00:93:c0:3e:
7a:33:15:74:39:94:b3:37:1f:90:8b:5d:a1:da:19:
67:c1:ab:43:45:fc:e2:c0:1e:5a:f6:16:c7:88:f0:
a6:37:1a:34:72:d6:26:ac:62:12:0a:26:91:81:dd:
8f:23:4c:21:01:19:2e:9d:bf:a8:95:d6:d3:a5:89:
35:93:24:f7:c6:e8:56:8b:79:18:da:70:d9:1d:58:
77:27:8b:bc:7e:6b:ea:61:a7:49:8d:c9:88:dc:20:
e2:6a:1d:06:d3:0f:89:43:17:74:bd:16:c5:14:b3:
ed:bd:54:93:3d:84:64:3a:aa:74:df:f3:eb:ca:1a:
0e:90:c6:91:92:e8:42:a5:44:13:8b:0a:be:1c:b0:
4b:5c:ae:f9:9a:29:06:53:36:19:12:b2:4e:96:3a:
d0:ba:59:18:48:cb:d5:9e:46:73:4a:e2:11:05:03:
9c:d8:36:69:78:9b:aa:3d:61:71:15:1b:c8:84:73:
d4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:43:F2:D8:55:4A:26:3E:61:A1:21:B7:A7:E7:20:8C:D3:E6:3F:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D12814FEABB111EEBC050BB8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.4.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:41:35:5b:ba:41:87:92:f4:34:36:48:e4:8d:30:fe:68:78:
11:36:73:59:8a:fb:c9:b1:61:fe:d6:23:a5:3f:e8:05:15:f2:
78:39:e6:e1:88:dd:86:75:f4:bb:b4:44:c5:8f:27:09:cc:7c:
69:86:98:4a:2d:c5:bc:3b:02:46:93:8e:d0:db:3f:07:b0:f0:
32:2f:b4:89:60:20:54:3c:3c:1c:f6:98:3e:33:bb:92:03:e3:
b3:34:86:45:de:21:67:fd:8e:c3:3b:cf:41:08:ac:14:97:a1:
a6:ed:37:94:f6:c1:4a:27:3a:4c:25:e8:3a:69:a0:76:ab:2a:
06:10:55:e3:47:a0:06:f0:46:29:cb:a6:7e:34:d6:7a:aa:00:
43:5c:0c:3c:c3:ca:ea:3f:1c:12:43:58:15:6b:6a:67:88:ec:
d1:27:7b:81:1a:2d:ea:61:d2:71:c6:91:64:ea:9e:64:98:28:
ee:b7:56:db:45:58:e1:51:02:dc:57:76:42:0c:88:f4:bf:bb:
90:33:a4:52:0d:88:39:95:80:e4:07:cb:c9:1e:01:6b:aa:14:
a6:9e:fd:c0:1d:8e:37:e5:01:6c:92:25:73:94:5a:17:dc:de:
a6:3e:14:c3:0f:9a:73:50:30:33:ed:58:0f:47:f1:f8:3e:50:
56:ec:cb:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:51 2024 by rpki-client on console-ams.rpki-client.org