Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2BCE036A44F11EFABAF4643762E951A.roa
File: E2BCE036A44F11EFABAF4643762E951A.roa (raw, json)
Hash identifier: yAFiv6rxWnFVAnBeRmPCXzAL2Kv0t5yXgryQKfJjQTU=
Subject key identifier: 3F:CB:A2:FA:5D:64:C4:ED:D0:8D:10:B5:B3:20:B9:C2:E4:FB:49:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3C4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2BCE036A44F11EFABAF4643762E951A.roa
Signing time: Sat 16 Nov 2024 19:20:49 +0000
ROA not before: Sat 16 Nov 2024 19:20:43 +0000
ROA not after: Mon 25 Nov 2024 19:20:43 +0000
asID: 9009
IP address blocks: 156.238.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54212 (0xd3c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:20:43 2024 GMT
Not After : Nov 25 19:20:43 2024 GMT
Subject: CN=6738f090-21e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fd:20:70:89:7f:23:2a:a5:6e:e0:4a:f2:42:
91:37:5b:bf:72:91:a7:49:89:1e:f6:02:ff:99:a8:
7b:71:63:b7:11:4f:9c:2d:91:71:c1:c5:bc:4f:40:
14:3f:40:b7:12:13:e6:02:30:d5:b3:15:7d:ad:b5:
01:f0:72:ac:d5:43:59:ac:4d:0a:aa:49:87:40:c3:
32:f2:ba:bb:59:46:68:b6:aa:16:a2:88:6d:10:6c:
2c:77:43:2f:69:28:51:4b:45:b4:b3:45:f0:ad:b5:
c4:ac:6b:41:9f:07:08:bb:d8:f2:56:a4:64:29:9e:
61:cd:20:f5:94:b0:db:bf:5d:67:73:10:99:f5:a9:
85:e8:9a:45:22:b2:fe:92:48:a4:cf:18:ca:b1:d0:
ec:b7:d0:39:ad:1f:66:c9:64:0b:5c:42:65:66:b8:
36:0d:ce:cc:5a:97:61:a5:cc:5b:d4:ad:ed:0a:97:
eb:4b:85:74:44:f8:e9:6a:a8:12:d6:99:4b:18:75:
9e:56:f8:74:ea:26:68:cc:58:2b:1a:27:28:c7:81:
cb:dd:38:7f:40:b9:1e:4d:ca:fe:b7:48:81:1a:d0:
9a:c7:6e:2d:8d:4b:ae:9a:2f:87:45:12:8d:7b:db:
de:7e:8e:a3:aa:4e:cd:81:bd:5e:b4:0d:f0:86:ec:
40:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CB:A2:FA:5D:64:C4:ED:D0:8D:10:B5:B3:20:B9:C2:E4:FB:49:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2BCE036A44F11EFABAF4643762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.4.0/22
Signature Algorithm: sha256WithRSAEncryption
70:a6:93:46:db:59:76:87:0f:78:5b:77:ed:39:2a:80:3f:9d:
ad:7e:ad:f8:4c:ee:4e:f7:31:e6:15:ea:cd:c5:04:8a:21:1f:
07:1c:86:3e:68:cc:f4:17:34:aa:97:77:f7:e4:a7:63:36:fe:
73:a8:2d:3a:9a:cc:69:56:da:4b:5c:db:a5:88:b5:97:85:58:
6c:e2:75:77:e5:71:73:51:d5:1a:7d:fe:f2:73:23:05:8f:e3:
34:c7:92:4b:a0:ae:0e:74:23:20:ae:10:de:f1:76:6e:d6:94:
73:11:56:53:33:d8:7f:ed:74:19:fd:99:02:8d:78:92:ac:80:
9d:95:59:8f:a7:ef:e4:70:ba:b2:07:24:03:8d:dd:cd:85:fc:
1e:4a:aa:d4:88:57:ad:24:74:0a:1b:1e:5a:17:d6:0a:22:39:
c7:80:b0:c4:82:fc:0b:06:d6:bc:ac:99:83:1a:a4:5e:9d:fe:
79:d2:2b:26:f7:01:10:b4:00:ad:84:94:16:b8:0b:f8:8d:12:
4a:4e:bd:83:4b:33:d3:d4:7c:94:5b:ef:82:7f:4e:14:2f:bd:
85:a8:fa:59:94:f6:d7:54:c9:20:f6:3b:a8:97:12:14:82:12:
c2:1b:f8:f5:ea:0e:9c:ff:27:3d:30:0f:55:e5:11:75:85:80:
af:f1:56:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:53 2024 by rpki-client on console-ams.rpki-client.org