Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB6F9D8C92B011EFBFECAA96762E951A.roa
File: EB6F9D8C92B011EFBFECAA96762E951A.roa (raw, json)
Hash identifier: YxD+MTczVqAcjL0BaHRd7TCZlUicNbE5JWmtHL3XBt8=
Subject key identifier: 97:3A:0C:2F:DA:01:48:FC:77:73:EA:4F:19:BD:92:88:AA:B2:64:81
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C8CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB6F9D8C92B011EFBFECAA96762E951A.roa
Signing time: Fri 25 Oct 2024 09:10:03 +0000
ROA not before: Fri 25 Oct 2024 09:10:00 +0000
ROA not after: Mon 25 Nov 2024 09:10:00 +0000
asID: 5068
IP address blocks: 156.224.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51407 (0xc8cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 25 09:10:00 2024 GMT
Not After : Nov 25 09:10:00 2024 GMT
Subject: CN=671b606b-07c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b6:98:61:3b:90:4a:9c:04:f0:13:61:c1:d4:
ec:c5:d2:ce:f8:ab:7c:b6:fc:36:61:3a:b9:b6:eb:
51:e4:bf:00:e5:fc:c2:ca:6e:3f:1f:8a:7f:54:1b:
e2:a0:b0:94:53:9b:20:1c:6b:07:7a:93:48:22:28:
8f:1b:82:b3:5a:61:d0:40:5d:aa:d9:31:6a:b4:29:
28:15:cf:85:58:59:20:07:54:b3:74:69:22:df:17:
d3:0d:63:1a:54:19:c3:e4:a1:b0:c2:4d:65:ec:ce:
61:a5:2f:65:87:2a:ca:bd:d1:f0:20:6b:5d:44:fd:
f2:fc:90:c8:b0:ad:39:e9:f6:6d:45:fc:be:02:d7:
eb:71:e7:d1:c0:cd:97:8b:38:6f:7a:aa:33:07:b4:
cc:13:73:ab:b4:ae:2c:e0:82:8f:18:59:05:9e:1e:
80:90:62:d1:69:ba:9e:10:ef:6e:dc:d3:cf:9b:a1:
c4:bf:67:d6:14:f1:47:0f:c0:3e:a1:4e:4b:62:83:
d0:d8:ce:93:1f:5c:d2:9d:bc:57:95:ec:df:bf:1b:
92:73:79:85:4e:5b:98:8d:ab:f6:18:aa:74:3b:81:
60:cf:e3:b9:7d:4e:f8:46:2c:1b:ba:a6:b8:c9:96:
11:2c:96:5c:9d:da:39:47:1e:de:8f:af:6f:e2:5e:
17:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3A:0C:2F:DA:01:48:FC:77:73:EA:4F:19:BD:92:88:AA:B2:64:81
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB6F9D8C92B011EFBFECAA96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.92.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:fb:73:14:17:03:2b:c3:c4:d7:72:e5:83:da:7e:95:00:e4:
7f:24:1c:cc:65:27:ef:25:20:7c:c2:35:11:e1:d0:a7:aa:9f:
6a:3e:da:de:3f:df:40:8d:d4:4c:99:48:26:a9:9d:46:b5:e8:
9e:65:a2:b2:0e:40:83:ba:38:ea:b0:35:a2:fe:df:18:3d:fe:
22:5f:6c:6e:a7:f8:39:1f:ac:e9:21:d3:8b:73:1c:fb:1c:1f:
52:fc:50:9c:f6:19:bc:a7:e2:98:26:6a:20:24:2e:8a:31:06:
b8:90:44:11:46:f7:4d:93:43:fc:3c:c2:61:68:81:08:95:33:
07:26:d0:d3:77:92:c2:f0:40:29:90:69:42:0b:81:b9:dc:14:
f4:b6:71:10:d2:34:bc:a3:08:73:e7:fa:df:91:bf:03:5e:c4:
16:f9:c7:6a:80:1b:fe:39:63:95:37:45:41:d7:84:43:8d:27:
7c:a6:d6:8f:1a:21:05:bb:10:c9:2b:b8:72:d6:14:ee:c7:68:
36:48:10:20:af:20:a4:13:bf:60:f2:2a:7b:df:cb:44:4f:82:
65:72:b1:cf:1d:e1:5a:04:75:a2:d7:41:95:8f:3d:95:f9:35:
97:60:71:10:5d:da:dc:4c:70:9e:2e:9c:a2:16:da:ec:67:5f:
84:79:67:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:52 2024 by rpki-client on console-fra.rpki-client.org