Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F40043F49AB011EF8207F586762E951A.roa
File: F40043F49AB011EF8207F586762E951A.roa (raw, json)
Hash identifier: joWnQvSbLV8u9s71Q7ymkruSgAhsEWrfb9FQ84+wcBU=
Subject key identifier: D6:3A:E6:F2:9C:FC:85:61:64:4F:92:CD:E2:AB:9D:9D:D4:38:8E:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CDC6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F40043F49AB011EF8207F586762E951A.roa
Signing time: Mon 04 Nov 2024 13:30:27 +0000
ROA not before: Mon 04 Nov 2024 13:30:23 +0000
ROA not after: Tue 03 Dec 2024 13:30:23 +0000
asID: 141883
IP address blocks: 156.246.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52678 (0xcdc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 13:30:23 2024 GMT
Not After : Dec 3 13:30:23 2024 GMT
Subject: CN=6728cc73-2b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3e:37:1e:6c:87:7f:ad:0b:b2:b7:eb:28:ea:
2c:8d:9a:c0:f3:72:c3:e6:3a:9c:2b:44:cc:81:15:
55:19:47:f9:93:0c:ab:7f:52:0e:b2:18:6a:b4:75:
ac:4f:3a:b9:0e:e7:05:31:9e:88:ca:a1:46:ff:9f:
07:c7:a4:6f:ff:a8:3c:0e:02:9f:ef:c5:7c:71:b4:
3c:cb:97:71:fa:0b:40:90:05:e9:a6:b0:91:88:9d:
08:8f:85:e0:81:bc:77:2b:72:e4:83:31:21:52:13:
b6:04:83:f3:8c:a3:32:d5:b8:bf:58:60:40:67:e5:
8c:9b:cd:a4:51:04:b7:42:e0:ab:db:c3:57:13:4d:
7f:7b:3d:cb:6e:5b:bb:e1:e3:87:88:bf:da:83:fb:
2c:3b:bb:c2:61:21:44:11:28:0d:2a:43:4b:4e:8c:
2d:d5:b1:b4:c3:07:2e:13:f9:bb:48:57:3e:2b:1d:
e0:0a:0e:87:9e:67:44:8a:72:a2:6c:45:65:d2:f1:
ff:88:7d:f1:a2:79:63:22:c9:10:56:f9:30:d8:a8:
e4:43:bb:17:7b:67:fc:8a:44:f7:62:78:4a:d2:b1:
ff:4e:62:48:e8:38:bd:ce:a4:3d:2a:47:da:6c:ad:
de:10:a6:75:a1:1e:c4:2c:83:9c:fb:22:da:8c:71:
85:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3A:E6:F2:9C:FC:85:61:64:4F:92:CD:E2:AB:9D:9D:D4:38:8E:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F40043F49AB011EF8207F586762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.16.0/23
Signature Algorithm: sha256WithRSAEncryption
00:97:fb:6a:42:62:7b:a6:17:71:fe:2e:4d:08:0b:cf:a1:e2:
14:86:10:86:91:e3:a4:76:c3:3d:77:7f:a3:14:c8:c9:13:ac:
56:86:d6:21:72:7d:ce:76:4e:81:0b:9e:24:66:4b:79:79:cf:
6a:60:07:cb:bb:c2:a8:63:6a:f6:63:6f:5a:be:b4:ca:8d:67:
93:df:d4:29:06:18:ce:6e:90:a6:a5:3d:b7:c8:45:29:67:71:
61:a0:27:12:fa:7e:d3:8b:06:42:5b:cb:f6:d7:78:ee:cd:ab:
aa:06:5f:85:b4:9c:b1:99:80:40:d9:72:0a:3c:2b:c5:5e:3d:
a2:15:98:72:50:dc:87:56:d3:38:83:a9:ea:5e:ef:43:36:3e:
f2:85:02:01:80:67:d8:2e:d7:58:48:cd:b6:4a:c5:7c:6f:4d:
57:8b:60:aa:a7:cf:5c:a4:7b:d6:fd:24:16:ce:9f:ac:0e:20:
9f:7a:41:f6:6b:aa:08:58:46:04:79:db:84:06:9b:3d:91:90:
57:2c:f1:bf:9a:d6:52:60:c3:ad:f2:c6:ae:a4:11:01:f0:07:
7c:b6:7a:db:c5:70:2a:f2:29:53:a8:12:0d:f3:7c:6a:b8:44:
7a:0b:ce:cd:0f:8f:7a:da:68:ae:2c:01:3d:b5:ac:38:72:07:
8b:fe:13:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:56 2024 by rpki-client on console-ams.rpki-client.org