Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFD13A5A29EE11EFA9BE4AEE7CDC24C2.roa
File: EFD13A5A29EE11EFA9BE4AEE7CDC24C2.roa (raw, json)
Hash identifier: oi8pFAa1gdeiBSC/WvprDll3O3UFnNCoAWRG2JTMNqE=
Subject key identifier: AB:3C:B3:B5:91:94:36:E1:E9:7C:C1:A5:FA:0C:BF:7C:0D:3C:20:6D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 91A7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFD13A5A29EE11EFA9BE4AEE7CDC24C2.roa
Signing time: Fri 14 Jun 2024 01:39:27 +0000
ROA not before: Fri 14 Jun 2024 01:39:24 +0000
ROA not after: Mon 16 Jun 2025 01:39:24 +0000
asID: 152885
IP address blocks: 156.229.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37287 (0x91a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 14 01:39:24 2024 GMT
Not After : Jun 16 01:39:24 2025 GMT
Subject: CN=666b9f4f-5bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8a:c9:4c:26:09:46:d0:92:e3:a9:99:cd:ae:
e7:8e:2e:c3:d0:e2:51:ce:ff:35:d2:6b:d0:58:95:
47:0e:b7:bf:ef:05:f4:78:67:63:c8:40:64:5e:6e:
90:4e:67:52:ca:6d:5c:39:e2:ee:75:fb:08:77:a4:
d9:15:53:63:74:39:34:c6:dc:87:91:86:6a:55:8c:
19:7d:09:45:9c:2d:a8:fd:68:05:c7:e0:f6:97:f3:
14:2d:a2:2e:8b:ca:a0:5d:9e:19:67:de:5b:a0:30:
ab:be:0a:ed:84:c3:d2:40:86:8d:99:18:90:0b:59:
9b:27:3f:40:43:63:7c:bc:da:40:4f:a2:d3:f0:85:
96:05:c9:49:34:2e:3b:ac:f5:c9:de:e6:a8:79:e4:
63:2a:5c:7c:77:87:50:ca:cc:68:ba:bb:ee:9f:9c:
61:29:75:ed:1f:6a:91:ee:b7:42:26:35:97:97:82:
b2:0c:03:93:68:b5:76:48:b4:db:e5:61:15:64:28:
13:e8:95:2a:fa:8e:ba:cf:ad:e0:9c:65:60:82:69:
ef:8e:43:a8:38:5b:97:c5:bf:35:93:14:1f:e4:7f:
f6:06:ff:b2:03:6d:d8:c0:16:56:44:37:b7:cc:41:
54:35:83:5f:7a:b3:f2:d8:b9:46:4d:d1:c8:0c:84:
f9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:3C:B3:B5:91:94:36:E1:E9:7C:C1:A5:FA:0C:BF:7C:0D:3C:20:6D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFD13A5A29EE11EFA9BE4AEE7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.50.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:41:85:70:f9:db:c7:3f:e2:99:ac:f0:fd:6f:bb:e7:b1:f1:
07:e7:bc:f5:4e:ec:fb:de:01:03:b0:33:f9:f4:f8:5d:50:14:
d8:63:b4:bd:7f:94:88:38:33:43:6e:52:96:77:e1:84:40:99:
8d:40:27:36:42:9f:3b:49:03:4c:a1:c3:27:6d:62:19:1c:0b:
a9:a0:07:f2:5f:0f:bb:0e:e6:64:30:10:36:1f:e0:2b:39:8f:
87:fc:3e:22:fb:1b:72:95:69:09:bd:3c:14:13:88:ac:c2:b9:
a9:c1:7a:de:5d:33:9c:af:ff:0e:a7:02:79:ce:27:4d:f1:6f:
92:72:49:9e:13:f4:11:db:c6:31:1c:21:d7:04:0d:90:9a:bc:
fb:ba:ac:3a:35:71:eb:50:ca:0b:29:14:c9:b5:34:b1:f9:b4:
a2:b9:f5:d4:1b:db:b5:a8:24:43:7b:39:0a:ed:11:85:27:7a:
7e:23:22:05:0c:cf:f1:7a:0b:72:5d:c9:32:08:02:1d:90:a4:
cb:d7:01:ec:66:a7:57:9a:75:3c:e4:4d:1f:f1:21:a3:77:f8:
dd:65:1f:e7:90:d1:6b:ad:38:ec:74:68:73:90:e4:7c:67:14:
a6:3f:63:d4:84:27:24:ef:d7:a0:f4:bf:ea:f3:3f:dd:cd:75:
7d:a8:80:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:56 2024 by rpki-client on console-ams.rpki-client.org