Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D878AEC696B111EF81CC9950762E951A.roa
File: D878AEC696B111EF81CC9950762E951A.roa (raw, json)
Hash identifier: 5/r15AS24YmzsPWxRCeO2c6pmpJynUm7xY/x6xgzMtU=
Subject key identifier: EA:B7:D9:A2:CE:41:D9:9A:BF:94:6C:33:75:8D:0D:1F:1C:AC:2D:ED
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CA31
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D878AEC696B111EF81CC9950762E951A.roa
Signing time: Wed 30 Oct 2024 11:26:46 +0000
ROA not before: Wed 30 Oct 2024 11:26:42 +0000
ROA not after: Wed 04 Dec 2024 11:26:42 +0000
asID: 142062
IP address blocks: 156.242.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51761 (0xca31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 30 11:26:42 2024 GMT
Not After : Dec 4 11:26:42 2024 GMT
Subject: CN=672217f6-3b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:0e:78:bc:a2:2d:29:8f:43:d4:14:01:eb:2f:
ab:81:97:93:94:22:32:15:89:a5:d9:77:b6:1b:44:
4f:5c:b6:81:42:c0:b9:4f:df:bd:dc:7b:65:53:33:
a2:48:02:7d:2e:16:65:ac:d2:ff:98:c4:34:86:1a:
d8:28:da:56:a6:bc:21:de:a1:27:c6:e0:c7:e3:1f:
bf:8a:3d:40:bf:3b:41:f6:74:fa:c1:3a:9b:e9:23:
5d:78:17:a9:6d:fd:2d:a6:18:ab:4f:51:a2:ac:98:
99:7f:4f:4b:ae:2e:d2:62:b4:4a:be:6e:fa:1a:cc:
2f:fc:37:82:ab:6a:c5:3e:d9:dd:94:69:5d:cc:65:
b9:64:18:e6:91:cf:47:db:bf:c4:3c:12:26:75:66:
32:18:33:00:04:2c:c6:da:43:f3:e1:60:e8:f0:ea:
55:10:8c:25:7e:37:e8:6a:8a:b6:64:f5:5b:65:57:
a6:99:93:b2:5e:f5:bc:a2:42:d9:05:2c:6e:af:81:
85:ec:d8:b4:09:07:77:8b:78:9c:d4:f9:a8:1c:97:
29:d8:da:ff:24:95:00:cc:7f:80:f2:87:55:c9:43:
0f:c4:44:9f:47:72:ba:4f:0c:d9:d4:ed:84:da:3b:
72:f3:69:99:f1:1b:72:ad:a9:5f:62:68:51:9c:e2:
d5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B7:D9:A2:CE:41:D9:9A:BF:94:6C:33:75:8D:0D:1F:1C:AC:2D:ED
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D878AEC696B111EF81CC9950762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.32.0/19
Signature Algorithm: sha256WithRSAEncryption
12:2d:e9:58:f7:db:e3:25:a6:ea:30:a3:17:18:95:5e:6b:d9:
7f:df:4b:1d:a0:44:59:3a:ae:76:14:5e:9c:a3:b0:00:20:54:
8a:47:e3:e9:b5:4f:ef:53:2d:8a:c4:7f:66:8d:2d:c4:38:1b:
d0:39:90:5f:ad:8e:5e:19:c9:29:f0:15:a5:5c:d8:ab:e5:f9:
c1:e2:ff:f6:cb:14:a7:ef:5f:96:06:b7:8f:7e:e3:48:e2:b7:
6c:2c:b1:ce:aa:2a:08:96:c3:e9:31:d4:02:a0:03:f8:46:42:
07:ef:bb:c5:0a:15:ae:08:b3:31:11:bc:a9:04:c0:1b:b6:3f:
f2:62:9c:21:b4:51:4e:23:9a:fd:df:9f:61:3e:4f:6f:94:bb:
c1:c0:18:6c:e8:76:86:6a:41:48:c3:c6:c6:48:25:3b:29:f4:
46:eb:44:45:2f:74:82:f0:f5:74:10:35:a6:15:0d:42:0f:dd:
93:c8:e0:9b:a6:9f:8b:43:de:da:71:c2:3f:5f:a5:52:fe:86:
94:cf:32:3d:51:af:cd:35:6a:8e:77:28:27:8a:9b:8c:da:0c:
9c:68:d1:63:4c:03:60:de:48:4c:00:80:8f:c3:03:38:7c:d1:
55:e5:e1:62:98:3e:f9:ef:bd:5a:ec:60:e7:04:35:9d:b1:91:
75:0c:41:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:52 2024 by rpki-client on console-ams.rpki-client.org