Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5A06DECA4D311EF814EA68A762E951A.roa
File: F5A06DECA4D311EF814EA68A762E951A.roa (raw, json)
Hash identifier: mhpFi7EcJ9CCA0oI2YCNPiIcLUSW+yrKJsHe00EqAQU=
Subject key identifier: 56:A6:8B:8B:85:45:16:AC:D0:E0:15:CE:88:89:CB:3A:BE:74:BA:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4E5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5A06DECA4D311EF814EA68A762E951A.roa
Signing time: Sun 17 Nov 2024 11:06:14 +0000
ROA not before: Sun 17 Nov 2024 11:06:05 +0000
ROA not after: Wed 27 Nov 2024 11:06:05 +0000
asID: 39600
IP address blocks: 156.238.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54501 (0xd4e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:06:05 2024 GMT
Not After : Nov 27 11:06:05 2024 GMT
Subject: CN=6739ce26-cf6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2d:90:c5:bd:2f:85:0e:50:43:4a:67:5a:cc:
30:d3:f5:26:b0:cf:89:17:80:fa:1e:6a:97:7f:9d:
de:17:88:8d:5b:9e:d4:b8:c9:33:4a:1e:d4:4f:a2:
11:4a:86:a0:79:b3:bd:af:89:6c:94:64:11:bd:1a:
de:3b:44:e1:3e:c1:72:90:70:ae:db:58:d6:b5:ea:
75:ef:8c:b7:a5:a4:44:73:95:7d:72:99:28:4b:6e:
8a:c9:e9:f2:c8:e5:e7:8d:3a:18:ec:8b:ac:ab:88:
85:ab:9f:14:7c:f4:06:98:d6:83:0b:5e:2d:52:55:
8d:32:bf:e5:f8:56:41:e3:4f:55:98:71:3e:e8:c1:
49:7d:47:8e:34:3a:c3:df:07:e7:4b:3d:a9:5d:df:
37:66:b0:bd:57:20:b7:85:cd:b8:0c:d0:1a:45:f2:
64:de:88:3d:a0:12:aa:99:6c:a4:68:a0:6c:10:db:
99:8d:87:ad:89:70:36:7a:f9:d2:74:28:f7:f7:a2:
e0:9b:69:9e:68:06:ff:98:f8:00:ef:18:19:ed:f0:
0a:39:ca:21:73:9e:31:35:ce:61:f9:d3:eb:d0:d2:
21:66:d7:32:34:1e:d0:88:6b:4c:de:96:72:54:56:
5e:d0:1f:b4:3c:e0:6d:ac:23:ba:e7:3e:47:7f:ad:
a3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A6:8B:8B:85:45:16:AC:D0:E0:15:CE:88:89:CB:3A:BE:74:BA:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5A06DECA4D311EF814EA68A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.160.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:99:90:4e:84:14:f7:8c:e1:bd:aa:ef:e9:0a:33:23:c8:90:
13:89:b2:07:7e:57:73:07:b1:00:c4:d0:87:38:05:ef:40:ec:
a6:07:2d:3b:4b:c7:3b:fc:c0:e9:cb:2f:90:b8:93:89:ff:a5:
0a:fc:53:2d:d8:81:c5:f5:53:0e:33:65:13:57:03:f4:20:8a:
60:e0:09:01:ae:38:d0:e5:3c:c8:24:a2:a2:06:e3:63:a8:43:
53:36:b7:18:16:6f:f2:c4:eb:19:74:8e:0a:10:18:0b:06:6d:
95:77:f6:90:e8:f4:e2:c0:56:fc:24:cb:1d:3a:91:26:f7:ed:
3c:a5:60:1a:f4:fb:98:0e:a3:cf:f9:31:bf:58:10:0e:a3:96:
e8:63:b3:08:a9:43:8b:44:3f:ad:46:66:35:56:a3:13:4a:f9:
b1:82:e1:95:e3:32:89:61:9d:83:f1:d0:31:35:13:27:dd:6f:
58:ae:6d:bd:7e:e9:15:90:78:1c:b4:9c:61:02:f8:b0:fd:28:
ee:f9:f7:9c:c2:b2:d8:3c:85:6e:37:c8:c3:b2:7d:61:bf:73:
d3:4c:7a:e3:5c:4e:ad:78:a4:5c:d9:e7:ad:e9:a6:f0:5e:c4:
00:b4:20:5e:56:ec:5c:1a:d3:5a:dd:b0:3d:3d:86:77:fd:ad:
e7:0f:d6:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:57 2024 by rpki-client on console-ams.rpki-client.org