Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F764EE1E499811EF9DA80643762E951A.roa
File: F764EE1E499811EF9DA80643762E951A.roa (raw, json)
Hash identifier: q4nnRk1m2i+SpEu4U77RZ2+56BJaq6RI9MvKnkNbQBg=
Subject key identifier: 79:09:89:F1:C1:ED:F7:11:19:A7:8D:29:06:A4:58:30:6E:77:E8:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9F25
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F764EE1E499811EF9DA80643762E951A.roa
Signing time: Wed 24 Jul 2024 08:44:41 +0000
ROA not before: Wed 24 Jul 2024 08:44:37 +0000
ROA not after: Sun 26 Jan 2025 08:44:37 +0000
asID: 24875
IP address blocks: 156.249.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40741 (0x9f25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 08:44:37 2024 GMT
Not After : Jan 26 08:44:37 2025 GMT
Subject: CN=66a0bef8-98e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ba:e3:ff:f8:21:69:aa:a4:78:72:34:72:4c:
41:fd:69:79:f8:73:fd:5c:6b:e3:22:0d:78:38:df:
84:bb:5b:37:04:04:09:fb:46:dd:ff:5f:28:3b:1d:
bf:a2:7e:d2:40:78:0e:80:22:d5:f0:25:40:40:42:
c5:e2:03:aa:f7:99:0f:cf:6a:84:74:d4:11:02:fc:
9d:01:f8:33:65:0f:d2:39:5f:a9:40:0f:66:ed:18:
10:d5:c3:b3:9a:be:90:3b:b0:2b:a9:c7:48:03:ee:
e3:df:9a:38:26:74:ac:ae:f6:91:83:45:02:4f:00:
30:88:88:3e:a5:c5:cf:21:ec:01:96:4f:23:7a:bd:
ae:54:6d:a4:e0:28:4f:eb:5a:13:de:2b:55:56:c4:
e6:2c:45:ce:a4:d6:4d:0a:4b:49:cc:a2:ac:89:7a:
75:96:94:26:ca:50:1a:65:34:69:3a:fa:a0:53:4e:
42:fd:9f:2e:45:63:15:3e:fb:54:f8:75:68:25:1d:
cb:9b:a2:b8:4e:81:99:2d:78:0b:01:61:05:0f:00:
1e:ee:26:a4:71:3d:46:e2:30:46:dc:bb:b4:f7:6d:
ef:90:01:6e:59:c9:d8:00:17:a6:ed:fa:60:9b:04:
82:5b:e0:8f:22:97:bc:9b:9e:11:e7:ad:5d:a7:0c:
d1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:09:89:F1:C1:ED:F7:11:19:A7:8D:29:06:A4:58:30:6E:77:E8:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F764EE1E499811EF9DA80643762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.18.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:9f:3b:a3:13:5f:13:96:71:59:43:6b:c5:81:17:59:cb:f4:
dc:b3:05:6f:ff:ac:5e:83:8d:5b:06:81:e0:7b:3f:d1:87:83:
40:84:33:2d:1b:a1:50:fc:8a:0a:4e:ad:56:51:5b:01:5e:b1:
1d:5d:41:92:79:68:f6:44:18:6d:24:8b:cf:41:3f:ee:59:8e:
97:bf:63:35:2f:23:08:e0:88:81:68:e9:54:49:a5:d2:62:2f:
06:c8:34:70:d4:f3:12:12:5a:0d:3b:ec:20:3b:ab:f5:02:b7:
4a:f8:4c:ac:3d:37:f2:3e:2a:97:16:1e:30:d8:fe:be:ac:9a:
c1:c6:13:f6:88:b5:17:ca:67:f1:6b:2b:90:57:3a:77:79:75:
eb:a1:9f:c5:c7:91:ae:20:a5:a1:3d:57:5f:67:81:9d:ab:e5:
2f:c7:3f:b2:ef:49:57:7e:d0:ed:20:51:15:c5:6c:6c:8e:cf:
fe:bd:07:aa:1e:5c:d9:15:14:8a:f1:fd:f2:60:bd:db:e2:1e:
f7:5b:9d:f0:c0:11:59:f6:93:69:95:60:cf:dd:71:6e:8c:37:
34:71:27:37:cb:2c:aa:12:5e:2c:a8:06:26:73:2e:33:e8:9f:
d8:f0:40:af:d7:82:51:82:96:72:a1:d5:a8:f8:9b:31:ed:7d:
00:b2:18:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:57 2024 by rpki-client on console-ams.rpki-client.org