Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCD2D9209B7E11EF85909998762E951A.roa
File: DCD2D9209B7E11EF85909998762E951A.roa (raw, json)
Hash identifier: XXVIOeg35v46p+Ok287wSSu/6vSFfiF15+yVcCKkRxg=
Subject key identifier: 3D:16:F6:EB:ED:31:23:74:8D:21:7C:18:03:29:AE:D8:F3:CC:A7:1B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CE93
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCD2D9209B7E11EF85909998762E951A.roa
Signing time: Tue 05 Nov 2024 14:04:25 +0000
ROA not before: Tue 05 Nov 2024 14:04:21 +0000
ROA not after: Mon 13 Jan 2025 14:04:21 +0000
asID: 5065
IP address blocks: 156.239.142.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52883 (0xce93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 14:04:21 2024 GMT
Not After : Jan 13 14:04:21 2025 GMT
Subject: CN=672a25e8-3084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f9:f5:59:30:66:5f:f4:c8:91:3e:5d:9a:73:
0e:94:7f:62:10:66:62:30:a1:8b:ee:84:78:61:c6:
96:09:80:97:90:2c:94:de:99:a7:7a:19:25:ae:51:
3f:1c:c5:47:ef:9a:57:6c:18:26:dd:f5:88:99:90:
3a:a2:0f:e1:d5:eb:7f:31:ac:79:2a:de:87:42:5a:
c4:c5:63:30:c5:e9:fa:fc:32:78:6b:fb:2b:2d:ea:
ee:ef:d2:86:68:d8:07:e2:98:ba:72:a9:04:a6:05:
06:39:29:81:f1:49:4f:bc:07:a5:b9:18:50:88:2f:
37:b9:47:fa:18:26:79:d2:f1:cc:1c:3a:18:44:d6:
0f:06:60:7d:2a:c5:d2:bc:76:ba:8a:66:ec:fc:c7:
3e:fe:46:0f:7e:7e:b5:78:8b:27:02:55:6e:a0:2b:
92:91:b8:c2:3e:5d:52:cb:48:41:65:e8:5a:c1:f1:
02:44:28:56:49:d9:ac:4e:14:ba:a1:1b:71:31:10:
89:77:bb:54:2e:04:07:1c:a5:27:92:af:2c:d4:47:
b6:a0:3c:4a:94:50:5c:be:34:b1:b2:2e:ea:98:0f:
db:ca:d5:89:6d:cf:fa:e6:a9:15:d1:b1:d4:cd:bd:
98:e3:74:42:60:86:e4:d5:4f:46:5b:95:1a:d8:f2:
7a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:16:F6:EB:ED:31:23:74:8D:21:7C:18:03:29:AE:D8:F3:CC:A7:1B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCD2D9209B7E11EF85909998762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.142.0/23
Signature Algorithm: sha256WithRSAEncryption
25:99:c8:c5:44:40:d5:0b:7f:b0:5a:42:4a:7e:7f:28:d2:67:
83:4c:0c:9c:30:77:96:2e:28:61:0b:b5:62:7d:b0:a6:96:ae:
f0:36:8e:47:e3:b6:c2:1d:83:49:a4:c7:ec:e4:87:3d:7f:bb:
81:2e:8c:f7:9b:19:24:ab:8b:9b:0a:fa:a1:ce:c6:1e:76:b8:
28:19:e0:b3:f2:32:4f:b4:a6:15:4f:27:e9:d9:a0:67:01:31:
62:78:25:36:b2:be:df:56:12:7d:1d:e3:52:2c:8c:4b:2d:67:
1c:bc:59:78:9f:68:ec:62:10:62:ce:cd:34:b7:98:d1:05:53:
14:66:40:c6:7a:a4:fc:d8:b5:77:40:63:cf:38:4a:d7:a7:d5:
46:36:76:01:9f:62:3c:8b:e8:8c:4f:4c:2a:42:61:e0:87:d2:
28:ed:74:49:79:fa:b6:60:2a:43:b8:e8:c9:f4:76:88:5b:d9:
c5:19:d4:0a:25:38:af:67:2f:c0:30:de:45:ce:19:13:db:1d:
4c:6c:9d:e6:b7:04:d3:31:84:68:fd:d2:1c:bb:f6:14:12:53:
1d:91:26:fa:9e:57:02:2f:99:7a:86:54:a8:ab:68:eb:c0:18:
21:00:81:78:07:9f:72:68:b0:2c:d2:04:a6:60:31:47:45:a2:
7b:4e:dd:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:53 2024 by rpki-client on console-ams.rpki-client.org