Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1D827289B7D11EF99282A92762E951A.roa
File: E1D827289B7D11EF99282A92762E951A.roa (raw, json)
Hash identifier: LBOVB0noJcJhfXc888IxB7v5L1NRmDDVMVXIG9TidTE=
Subject key identifier: C5:F3:EF:7F:F3:7E:4F:96:2B:38:B9:98:2C:4C:82:25:9C:A7:74:59
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CE87
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1D827289B7D11EF99282A92762E951A.roa
Signing time: Tue 05 Nov 2024 13:57:23 +0000
ROA not before: Tue 05 Nov 2024 13:57:20 +0000
ROA not after: Mon 13 Jan 2025 13:57:20 +0000
asID: 4766
IP address blocks: 156.239.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52871 (0xce87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 13:57:20 2024 GMT
Not After : Jan 13 13:57:20 2025 GMT
Subject: CN=672a2443-635d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:71:5e:d8:79:ba:8d:de:7b:6e:31:6e:f9:80:
38:35:c0:95:d4:71:16:70:17:9b:88:17:8f:30:b7:
f4:8e:23:9f:2e:53:db:09:d7:c5:6e:0d:d0:db:ae:
cb:86:f5:53:86:c1:72:ed:5a:de:33:e5:99:8f:5a:
46:05:88:22:bd:94:f6:48:d6:25:15:c6:1c:81:39:
71:e2:8b:b4:b8:e5:18:aa:8c:1a:9e:35:ac:a1:6f:
79:b3:4b:71:a8:b1:ea:00:93:25:ae:72:bf:5f:58:
50:a8:85:2f:e7:e7:9b:12:f5:77:ff:bd:09:b7:43:
64:e4:fb:46:19:e7:36:e9:f2:1b:e3:3c:26:d7:ed:
20:98:5d:33:03:20:ed:e5:06:bd:92:d2:16:b3:11:
02:cf:70:8b:5c:b0:3f:31:63:40:fe:08:ae:af:db:
2c:79:78:0a:c7:a9:db:39:07:8e:72:85:fd:df:d4:
e5:2e:3b:69:26:3e:6c:d3:76:f2:11:00:d3:61:2a:
91:47:58:32:4c:13:97:08:f6:95:e6:02:53:90:56:
7e:d1:e2:b6:6a:19:ee:5d:31:f0:9b:8e:de:e5:2a:
6c:ec:9f:4c:8f:16:8c:cc:8d:e2:ee:30:ff:f4:43:
ae:8e:0a:de:60:1e:6f:a9:84:d6:af:56:9d:7a:95:
93:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F3:EF:7F:F3:7E:4F:96:2B:38:B9:98:2C:4C:82:25:9C:A7:74:59
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1D827289B7D11EF99282A92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.19.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:1c:b7:8b:10:78:f8:37:0c:88:7e:25:29:88:f6:ee:9d:96:
17:af:12:a6:6d:df:f6:92:56:c0:74:a6:6b:c0:5e:f0:20:f5:
a0:3c:f4:8a:10:89:85:89:66:6c:71:3f:8b:3a:a5:e3:a2:4c:
e1:bb:a0:44:d6:a8:76:09:fe:4e:2e:1d:92:3d:87:08:51:95:
ba:5f:e1:1d:8c:57:dd:a4:c5:33:92:16:d4:1c:3e:1c:b6:37:
29:5b:d7:0b:51:f7:30:b3:73:34:bf:1f:ff:fb:12:0c:59:fd:
08:da:32:32:86:00:aa:c1:fb:fb:b6:1e:4b:29:0f:91:61:e1:
5e:d4:60:e0:61:06:eb:d9:d6:1d:99:9c:c8:89:db:46:17:41:
cf:b8:95:71:a1:1a:15:73:9d:f4:f3:c3:bc:b7:68:49:3f:6c:
a9:f9:ae:15:36:f3:77:df:a9:b7:f9:74:23:16:44:d9:a7:9b:
22:0a:5c:8e:81:41:6b:82:a4:4d:1c:f2:71:2f:70:f9:d5:0b:
e8:7e:e4:8c:b3:f8:c2:eb:4b:d6:12:3d:d8:29:26:a0:fa:2d:
8c:2f:f1:39:8f:07:36:a3:10:df:1e:af:68:aa:cb:8b:00:c8:
d4:29:aa:9a:a3:9a:e9:0d:1e:51:c5:df:b4:e0:a0:4a:48:2d:
ca:c5:b8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:53 2024 by rpki-client on console-ams.rpki-client.org