Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA6405A4A2CA11EE9B008435D25BE465.roa
File: DA6405A4A2CA11EE9B008435D25BE465.roa (raw, json)
Hash identifier: icvTZos6SxXOHKxRiImKEDFkAa0jrdBr66+OWhwpvvo=
Subject key identifier: A3:57:99:B5:4A:30:A7:6E:6B:5A:24:E7:72:EA:6B:7C:A4:BB:09:5A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 58F6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA6405A4A2CA11EE9B008435D25BE465.roa
Signing time: Mon 25 Dec 2023 02:11:03 +0000
ROA not before: Mon 25 Dec 2023 02:10:59 +0000
ROA not after: Mon 13 Jan 2025 02:10:59 +0000
asID: 139057
IP address blocks: 156.251.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22774 (0x58f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 02:10:59 2023 GMT
Not After : Jan 13 02:10:59 2025 GMT
Subject: CN=6588e4b6-8314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7a:af:9f:56:dc:37:de:e0:64:2e:cc:82:60:
e6:a2:38:fc:ef:6a:b9:22:cb:47:4d:e0:cd:3b:b7:
fc:4f:9e:51:85:1d:d5:cd:61:63:a9:f1:a8:95:12:
33:94:78:8c:e3:13:45:b4:e4:fd:2e:b9:2c:bc:a7:
ab:a4:47:74:bc:3a:88:ba:3c:8a:60:b4:de:d7:d9:
15:71:aa:5e:11:e8:b2:ca:e2:8a:68:46:50:4e:c7:
91:33:bd:42:d6:85:0a:55:cb:fd:eb:fe:9d:c5:c9:
c1:1c:71:9e:d3:c1:04:0b:e2:33:dc:b6:7d:60:ab:
b1:03:1c:4c:7e:ac:cb:29:d6:44:04:1f:0a:7c:b6:
9f:9d:0a:76:83:90:6f:90:d1:a4:a9:1c:10:c7:be:
3d:90:08:cb:c9:09:ab:a1:e7:98:05:54:c5:55:40:
c8:19:7a:28:a6:db:14:cc:97:6a:87:8b:44:c3:46:
e0:96:09:35:f7:67:87:37:14:6e:f9:83:96:b6:c0:
a8:c7:ba:63:80:07:74:e3:38:b9:5a:38:59:f6:e8:
8b:50:91:9d:3f:b2:e9:7d:f3:ec:bf:90:09:0a:dd:
05:ef:47:0a:65:b4:47:2b:8c:11:57:9b:85:53:cf:
37:f1:50:6b:1e:43:f3:3c:57:de:19:c6:11:ba:6a:
82:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:57:99:B5:4A:30:A7:6E:6B:5A:24:E7:72:EA:6B:7C:A4:BB:09:5A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA6405A4A2CA11EE9B008435D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.77.0/24
Signature Algorithm: sha256WithRSAEncryption
91:d1:13:99:c5:57:64:2c:08:ac:18:52:e5:92:60:03:30:b5:
dd:27:99:a0:13:56:a4:ff:d1:60:bb:57:af:26:f9:a7:52:20:
a2:e4:00:50:31:b3:3b:c0:14:0f:ac:de:f2:2f:21:8d:bd:6d:
1b:17:8e:31:cf:cf:dc:43:a9:c2:73:bc:a7:a4:27:b7:df:05:
56:ac:16:76:00:e0:53:bd:f1:bb:b7:17:f9:b7:44:e2:2d:16:
99:39:d8:8e:b4:fe:e9:f9:f7:b0:0d:36:98:ff:e9:86:6c:4b:
8f:59:bd:45:9b:67:ea:42:d0:e1:27:24:ff:e1:eb:6d:92:84:
26:07:ac:ee:61:92:8c:34:47:74:1c:78:c0:67:e5:20:b8:40:
82:d6:84:70:73:0b:67:0e:92:fd:27:13:14:6b:3d:b8:a8:db:
db:49:70:aa:0d:ad:6b:dd:0e:a1:4f:77:72:34:78:fd:d6:76:
e9:01:4f:22:f6:5d:c8:56:de:28:15:e9:90:46:b4:01:e8:03:
d7:96:5b:ee:0a:85:6a:de:b3:ff:f7:48:e0:30:05:83:7a:f2:
16:46:28:56:7b:c0:0b:e4:42:56:6f:ed:f6:47:9e:d0:10:94:
3e:00:51:b4:06:58:c2:8c:e1:6c:ab:e9:91:63:c3:c0:1d:98:
20:e5:04:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:50 2024 by rpki-client on console-fra.rpki-client.org