Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EE52132A8C5911EFBE8886A2762E951A.roa
File: EE52132A8C5911EFBE8886A2762E951A.roa (raw, json)
Hash identifier: HjT/lUigwZ9apaofSJ61eLKsx6DUgUujLsgQZaaAJyA=
Subject key identifier: F0:1C:6C:C7:EF:2E:21:FD:E3:10:4D:A2:DA:6F:E8:51:E6:6D:C9:05
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C5AF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EE52132A8C5911EFBE8886A2762E951A.roa
Signing time: Thu 17 Oct 2024 07:32:15 +0000
ROA not before: Thu 17 Oct 2024 07:32:11 +0000
ROA not after: Sun 19 Oct 2025 07:32:11 +0000
asID: 135386
IP address blocks: 156.249.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50607 (0xc5af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 17 07:32:11 2024 GMT
Not After : Oct 19 07:32:11 2025 GMT
Subject: CN=6710bd7f-82ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f7:a5:0f:34:23:3e:cf:ce:48:a3:d8:28:bc:
89:fd:0a:17:46:31:2b:bf:35:0f:ff:76:7f:12:1f:
bd:ae:2c:4d:9e:34:8f:12:1f:ce:47:ad:e7:24:a5:
08:4a:a5:5c:d2:57:8b:51:21:89:24:68:7c:84:68:
fe:b8:45:23:de:3a:0d:d8:98:96:49:e4:ed:b3:6d:
94:25:7f:7d:55:2e:7d:07:25:55:23:7f:09:3d:39:
2f:95:7a:01:51:91:33:c1:b3:13:e7:70:41:c4:10:
85:36:5d:29:78:6b:d7:5a:ca:d0:28:61:87:b7:0a:
a3:31:46:74:84:2a:6c:1d:31:64:6f:c9:e5:64:06:
ac:82:ad:e0:1e:17:79:41:f0:5c:01:b4:90:0d:ae:
64:61:8b:0b:96:07:e0:99:db:43:4f:2b:93:9a:55:
8e:4d:54:28:ed:25:d4:76:93:6a:d2:31:64:d8:70:
85:f9:ef:91:19:2e:3d:03:d5:56:18:00:1b:71:37:
0b:25:72:c1:98:f6:95:45:22:a4:db:a2:9b:e7:bf:
98:06:ed:7d:fa:42:0f:5e:04:7e:f3:f5:bc:04:f3:
81:af:b5:c3:ab:aa:83:b7:b0:78:47:45:80:ab:1f:
f4:b6:6a:f1:99:33:3d:70:8b:e6:74:f1:24:b7:d0:
de:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1C:6C:C7:EF:2E:21:FD:E3:10:4D:A2:DA:6F:E8:51:E6:6D:C9:05
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EE52132A8C5911EFBE8886A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.17.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:7c:ae:9c:04:f9:82:e3:bb:ee:97:aa:5b:4a:60:c2:3c:53:
02:fa:22:16:3f:03:28:0a:ef:97:9c:19:64:9d:ca:92:4b:1d:
e0:6a:6f:46:34:91:e3:30:c0:94:a7:df:4f:0a:9b:47:80:ae:
5c:c7:92:10:7d:21:dc:ee:a6:be:1a:70:c3:fa:0e:8b:a9:61:
c2:68:88:3d:1b:5c:ed:19:7c:66:b5:d5:31:57:2d:61:a9:1b:
c9:d6:8d:3e:b1:9e:06:b2:d5:98:fc:06:eb:34:df:e5:53:82:
89:7b:df:cc:eb:aa:9d:38:4d:f0:aa:92:f5:4a:a4:5d:3a:be:
d5:60:76:0f:91:16:b1:3d:29:c9:29:4b:36:9b:2d:7f:a5:67:
a2:76:b0:8c:b1:bd:c4:a4:2a:43:b2:c7:79:5d:c8:b5:99:dd:
84:f8:54:69:f6:62:d2:1f:fc:68:c3:69:3a:e7:09:fa:3f:ed:
b1:f6:62:f6:3e:17:48:9e:21:d3:a2:f4:0a:c6:d5:e5:f8:14:
ad:12:f9:c8:dc:00:94:19:6c:59:91:1a:d4:ae:c1:28:24:9a:
1d:bb:23:a5:44:06:b9:1b:b3:31:8b:bf:5f:0f:cb:d7:c7:ec:
50:7d:54:7d:50:4c:40:09:39:04:17:58:10:65:89:c5:57:d0:
8f:de:8b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:53 2024 by rpki-client on console-fra.rpki-client.org