Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5EAC8EAB0F911EEBC1AA951775412E6.roa
File: D5EAC8EAB0F911EEBC1AA951775412E6.roa (raw, json)
Hash identifier: u1p39z0W7cM4q7/g5hO34ZjQiDLMSv6rhHJeBQN58+Y=
Subject key identifier: 01:5A:0B:62:4E:45:F9:16:E6:7D:3E:C8:6F:D0:F7:FC:16:AB:04:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5FE2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5EAC8EAB0F911EEBC1AA951775412E6.roa
Signing time: Fri 12 Jan 2024 03:22:38 +0000
ROA not before: Fri 12 Jan 2024 03:22:34 +0000
ROA not after: Thu 09 Jan 2025 03:22:34 +0000
asID: 151206
IP address blocks: 156.240.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24546 (0x5fe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 12 03:22:34 2024 GMT
Not After : Jan 9 03:22:34 2025 GMT
Subject: CN=65a0b07e-68b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ec:4f:1a:d3:17:0f:4d:33:98:13:5c:e2:9a:
0c:69:1c:b9:7a:7c:b3:0e:c5:cb:9b:25:4f:13:7c:
62:6c:7a:41:76:06:1b:6a:e1:96:1b:95:e5:e1:45:
38:34:23:f1:14:ab:c0:e7:1c:48:cb:7e:5c:59:d4:
41:10:f8:8a:18:d2:a8:05:52:08:fb:8d:57:dd:6c:
6e:7e:fd:0a:99:74:4c:6e:09:cd:1c:7c:84:47:87:
59:20:b1:b0:d5:cb:c3:7c:4f:1e:1b:86:1e:28:d6:
f9:ed:42:70:ac:0c:1e:e3:e5:30:51:3e:7e:59:a9:
1c:79:b5:66:08:cc:13:f7:80:4d:da:4a:ff:da:d7:
25:25:8d:44:cc:3f:4c:95:d5:ae:0a:d2:61:66:db:
65:1e:c8:c4:5d:50:c4:ff:aa:5a:54:0c:7d:58:7f:
93:6c:c7:8a:f8:d1:3f:70:d4:01:aa:32:70:85:c1:
26:38:73:fb:6a:c0:36:7c:c3:a8:f2:7b:67:d7:48:
84:15:d5:ad:35:66:75:6e:49:8f:16:72:06:50:85:
3f:24:a9:31:75:e0:89:eb:c8:e9:89:6a:a8:c2:3e:
71:06:a2:05:b5:4e:4e:fb:a2:bb:31:b5:50:f9:7a:
ab:d2:d0:16:5e:1d:32:e5:46:bf:42:12:ef:ee:ee:
c7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5A:0B:62:4E:45:F9:16:E6:7D:3E:C8:6F:D0:F7:FC:16:AB:04:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5EAC8EAB0F911EEBC1AA951775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.72.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2c:b7:c6:97:b0:f7:96:3b:db:7d:b4:52:70:c3:ae:00:ce:
13:ad:9d:3f:29:53:8e:fa:56:c3:55:cf:81:a6:b9:8f:e3:c0:
5d:41:00:fe:b5:04:e1:0b:c6:68:32:4d:85:2a:d9:3d:78:19:
31:33:5d:a3:be:65:59:7a:19:c6:50:ba:99:f6:b5:eb:5e:c5:
b3:c8:c7:83:fb:70:f1:eb:5b:ee:61:6f:f4:c5:17:2c:fc:9a:
b5:b2:53:a5:ab:87:4e:e9:a6:a0:f6:4d:96:8f:50:46:fb:80:
8b:78:bb:dc:87:83:c8:62:3f:03:8c:9b:b2:c9:83:5f:5c:72:
50:fe:9f:04:26:bf:16:f0:df:c2:f2:4d:76:e6:bb:37:09:8d:
eb:3a:05:53:d9:dd:fd:8c:b8:51:66:d9:96:53:6d:e0:12:ff:
80:e2:e7:ad:76:2f:9a:3d:7f:80:b4:fe:8d:f2:e6:a3:d9:55:
c8:41:c2:31:c9:8e:8f:dd:4f:68:a8:22:8a:6d:a9:a0:b1:ec:
57:b1:37:49:91:47:62:15:42:6f:b7:f0:c2:db:f4:28:79:fa:
02:a0:8b:b1:ca:55:b6:d0:f5:31:c8:86:98:e0:b3:d6:fd:e8:
5c:fb:08:d1:15:b5:01:14:93:d6:84:57:f6:96:be:2f:53:76:
7e:5c:b5:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:49 2024 by rpki-client on console-fra.rpki-client.org