Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4AD59D6A4CA11EF8B92E951762E951A.roa
File: E4AD59D6A4CA11EF8B92E951762E951A.roa (raw, json)
Hash identifier: 4E6DlLEDHbFoFnmFhpJouhJ3+Nu9KYxJwvXHGKQSLa4=
Subject key identifier: C9:88:DF:47:B9:52:E3:A7:3D:28:CF:C8:D2:6D:0E:47:49:A0:87:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4C3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4AD59D6A4CA11EF8B92E951762E951A.roa
Signing time: Sun 17 Nov 2024 10:01:20 +0000
ROA not before: Sun 17 Nov 2024 10:01:16 +0000
ROA not after: Mon 25 Nov 2024 10:01:16 +0000
asID: 5650
IP address blocks: 156.255.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54467 (0xd4c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 10:01:16 2024 GMT
Not After : Nov 25 10:01:16 2024 GMT
Subject: CN=6739bef0-e29e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:68:fa:24:8f:08:ce:1e:76:46:31:9f:cc:ff:
d7:f7:08:07:41:68:76:25:10:7a:92:cc:31:36:32:
ae:1d:2a:49:55:a5:f3:d3:3f:ad:e5:1a:5d:77:71:
cc:85:db:06:2a:32:38:02:4f:7a:03:5d:e5:5f:44:
e0:6a:16:99:e0:98:5c:e4:dd:c5:45:a9:3b:5d:a8:
c5:c5:a5:8a:12:af:d7:da:f3:e2:a9:ba:e0:26:91:
04:8f:73:bc:3f:d5:15:97:6a:ed:fd:ea:7f:8d:90:
22:27:4c:cb:1f:4d:55:3b:4d:6f:b8:a2:21:8e:59:
0b:b3:dc:17:86:19:06:ee:44:9a:74:96:9d:6b:6a:
c0:07:aa:f8:70:39:26:51:d9:3a:37:01:08:46:ef:
13:58:09:d7:2d:14:b5:da:44:df:ab:c6:f8:4a:cd:
2e:31:b0:98:85:a8:ac:c7:3a:65:89:31:56:03:df:
01:87:55:36:32:04:23:f9:5b:65:29:81:55:64:a3:
d2:4f:7e:81:41:e6:73:0e:9f:0c:47:6e:3b:37:90:
58:f5:69:43:80:7b:44:27:02:98:dd:3e:ff:0c:d3:
81:b7:a1:32:26:3e:e9:05:17:15:b8:9b:93:e0:dc:
e3:e4:66:88:9a:ce:4d:e9:5e:9d:80:37:d7:85:4a:
e2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:88:DF:47:B9:52:E3:A7:3D:28:CF:C8:D2:6D:0E:47:49:A0:87:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4AD59D6A4CA11EF8B92E951762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.16.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:b7:fe:3c:f6:30:81:c6:c0:c2:92:94:db:d2:e4:a3:df:49:
f7:57:91:f6:29:34:13:92:d9:5a:e5:c3:50:af:99:0f:84:b5:
f5:54:a2:6c:59:da:82:5d:98:8b:55:cf:6c:67:85:5c:e2:b4:
c4:eb:6f:06:7e:92:30:97:1a:27:48:ed:0f:69:d9:b4:9e:37:
80:89:3b:1a:39:56:f8:0e:89:b6:6a:7b:79:c0:fc:9c:e3:38:
b2:dd:05:5b:f5:fb:c7:43:4c:30:96:a3:26:93:1e:91:df:b3:
a3:52:9d:8c:83:bc:86:b3:79:8d:32:53:b1:7e:66:61:2f:9d:
b8:93:7a:87:e9:af:d6:52:3f:e3:d3:39:90:7c:2d:c0:05:2c:
cb:b5:08:6c:f9:59:44:47:b3:8b:8b:b0:56:dc:94:5a:2a:b5:
bc:c9:dc:70:b7:69:93:38:0a:f4:33:ab:55:02:3d:7a:2a:61:
bc:1f:86:04:71:73:65:45:f1:fb:33:c5:1a:f6:e8:e6:51:ca:
fb:1a:75:fd:31:54:1e:c6:d1:34:e3:97:bd:5d:c0:78:a2:da:
21:a9:2f:85:f3:4c:1a:b9:40:35:b1:ee:13:c6:78:bc:07:5c:
b3:8f:7d:1a:2b:4f:74:1f:af:70:40:7b:ba:46:5d:26:6e:02:
fd:56:2a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:54 2024 by rpki-client on console-ams.rpki-client.org