Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFEA73E25EF211EF83F0909D762E951A.roa
File: EFEA73E25EF211EF83F0909D762E951A.roa (raw, json)
Hash identifier: KQl5kkyevtXNSJlSMkDOQhda73V16PNUDz2oBomZIHM=
Subject key identifier: 9E:73:0E:3D:FA:AD:69:F0:28:23:03:50:E7:D3:B3:0E:F7:7F:1E:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9FA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFEA73E25EF211EF83F0909D762E951A.roa
Signing time: Tue 20 Aug 2024 12:51:37 +0000
ROA not before: Tue 20 Aug 2024 12:51:34 +0000
ROA not after: Tue 27 May 2025 12:51:34 +0000
asID: 399077
IP address blocks: 156.251.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43514 (0xa9fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:51:34 2024 GMT
Not After : May 27 12:51:34 2025 GMT
Subject: CN=66c49159-3616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:e3:c7:11:51:02:bb:b4:79:90:d0:b6:dd:
a9:b7:c0:8d:fc:3f:18:51:f2:05:15:96:88:5f:6d:
ab:4b:ba:59:ea:b1:d9:2e:53:4c:96:d6:fd:09:63:
89:1f:66:99:54:4b:7d:7d:a0:97:d8:de:a7:03:9f:
4f:84:82:20:50:cc:91:12:6a:b3:51:f6:98:c8:3a:
da:21:68:3f:e0:0e:ad:4b:c4:e2:3d:2f:98:a7:d6:
f5:ad:17:34:4f:ea:2f:83:60:ad:b1:6a:33:ae:78:
64:e3:49:70:8a:e2:78:e2:31:0b:c9:94:67:d7:35:
d5:59:40:0e:42:a0:0b:19:c8:96:cf:a5:2d:aa:c7:
d8:68:5a:9b:5a:aa:0d:e3:18:48:21:d4:92:50:9e:
70:aa:ac:41:8f:e0:41:e2:1f:2a:73:9e:6a:ea:69:
cd:c5:b2:5f:17:a9:e2:a1:e8:97:76:fa:19:6e:be:
1b:33:d5:bf:b2:d5:58:22:61:57:47:67:a8:8c:c3:
82:6f:ea:99:06:ac:ed:c0:98:31:6f:c5:28:a6:2d:
c2:0d:08:f8:1d:41:57:d0:7c:7c:21:86:e7:7e:51:
dc:e9:67:70:85:1e:f5:15:f2:04:28:0a:26:18:87:
d3:52:70:95:10:33:51:1f:db:ad:9b:db:11:63:0a:
87:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:73:0E:3D:FA:AD:69:F0:28:23:03:50:E7:D3:B3:0E:F7:7F:1E:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFEA73E25EF211EF83F0909D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.18.0/24
Signature Algorithm: sha256WithRSAEncryption
10:6d:a6:71:7b:f9:e3:4e:a0:91:43:4c:2a:46:2c:63:6c:de:
18:62:30:5f:96:a7:d3:84:11:e6:2d:de:4b:0c:35:0c:39:3b:
62:df:49:11:82:e1:c8:17:d3:36:2c:71:a5:98:67:9d:e7:97:
3f:4b:e2:c8:16:6e:43:66:0a:74:e0:64:76:3c:ec:19:c6:04:
b1:ce:39:57:6c:38:43:92:d9:f0:e3:14:87:6e:31:05:81:b0:
69:95:30:ae:cb:7e:ca:4a:1d:77:cc:48:70:bd:20:25:74:89:
62:9d:58:d2:33:e5:11:07:af:5b:e0:2a:6d:c4:04:8d:e9:58:
85:d2:51:70:0d:a7:6c:fd:17:1a:fd:4c:0c:ee:4a:46:9d:a4:
23:75:48:15:9e:78:e7:c6:10:99:91:d1:8f:8a:b2:8c:2d:50:
02:df:aa:42:75:7a:ce:fc:6a:25:8b:2d:b3:24:bf:67:e0:9d:
d0:f3:29:ab:fd:38:04:26:df:59:bf:96:f9:9a:a2:89:73:1b:
1a:ec:4b:08:e1:d3:f9:5d:51:e8:39:e9:07:ab:02:ec:8c:11:
b8:a2:e3:5b:65:e4:7a:b1:de:39:27:14:00:9f:4b:58:1e:19:
4e:56:98:79:53:0f:0f:9b:fd:24:e0:6e:fa:76:b0:e1:4f:e4:
7f:fa:a3:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:56 2024 by rpki-client on console-ams.rpki-client.org