Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/56824A428D4411EFB3498568762E951A.roa
File: 56824A428D4411EFB3498568762E951A.roa (raw, json)
Hash identifier: V5qLUCLPd1I1Ls9ldAy5batoAH+ofIKo2Z5yPgURUDg=
Subject key identifier: FC:20:CE:69:45:5C:79:0A:B5:2D:0A:20:F9:5D:1B:BF:0A:90:2F:04
Certificate issuer: /CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Certificate serial: 29
Authority key identifier: 1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
Authority info access: rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/56824A428D4411EFB3498568762E951A.roa
Signing time: Fri 18 Oct 2024 11:30:12 +0000
ROA not before: Fri 18 Oct 2024 11:30:08 +0000
ROA not after: Wed 18 Oct 2034 11:30:08 +0000
asID: 37680
IP address blocks: 155.93.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.mft
rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41 (0x29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Validity
Not Before: Oct 18 11:30:08 2024 GMT
Not After : Oct 18 11:30:08 2034 GMT
Subject: CN=671246c4-9844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:36:48:59:0b:85:b5:40:27:bb:30:a4:9d:c1:
56:13:f3:17:85:de:d7:1f:a3:c3:2f:e0:3f:ca:bc:
7e:52:0f:53:16:90:93:78:0f:1a:3c:97:0d:37:44:
35:45:72:62:7a:1e:94:9d:65:ac:45:38:e5:c9:3d:
d9:8e:0a:31:c2:d0:0b:53:44:29:ba:43:88:41:e2:
94:05:93:4e:c5:a0:2b:27:0c:c6:df:3d:dc:c8:bd:
ab:4c:1c:af:2e:7f:02:fd:5b:b0:27:2e:fc:20:c5:
b5:75:95:3d:96:ab:6b:bc:46:04:ce:3a:4d:b0:70:
12:12:a0:cc:f8:fd:69:71:81:02:c3:c2:e0:f7:e6:
7e:4f:1d:2e:85:1c:71:17:8d:cf:b7:61:46:5f:da:
db:d9:5a:8f:3f:28:0f:fc:ee:9e:28:f4:44:ce:89:
e0:90:ae:6c:6b:d0:55:03:01:f2:27:a3:f8:11:c2:
37:42:a1:f0:21:9e:a1:0d:74:28:64:b8:fe:f4:18:
76:d6:40:75:f6:ad:1c:88:a8:d5:e8:55:b1:17:bf:
55:51:92:1c:fd:07:e0:c9:fc:ca:1d:66:a5:8c:1a:
fc:84:25:80:8c:61:4c:6c:7f:ed:82:4a:cd:18:4b:
e9:80:d7:29:56:f0:e4:19:18:3a:ea:0d:88:ec:49:
d8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:20:CE:69:45:5C:79:0A:B5:2D:0A:20:F9:5D:1B:BF:0A:90:2F:04
X509v3 Authority Key Identifier:
keyid:1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/56824A428D4411EFB3498568762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.93.191.0/24
Signature Algorithm: sha256WithRSAEncryption
28:05:06:5e:ae:10:11:78:cd:0e:bf:be:07:ce:d0:cd:2e:89:
6d:f3:1c:d8:c6:61:74:0a:f5:3e:06:b4:ee:d7:8a:2d:95:bc:
c0:5f:b7:ff:27:c6:9e:6c:31:4e:fe:64:78:15:0e:6d:93:27:
00:83:1c:14:89:c6:58:79:84:68:df:88:7a:88:fd:c8:57:fc:
07:79:db:26:e8:3e:00:1c:fd:00:df:e3:6d:ce:2b:3c:c5:18:
f2:2e:a3:2b:00:c8:9b:1d:76:e0:70:8e:1f:ae:80:18:95:15:
e4:58:4a:38:ac:01:25:82:07:1c:cb:0c:11:2c:8c:1d:4d:2a:
be:11:d3:26:cf:9b:78:f6:c7:d8:35:d6:03:bc:1f:85:8f:41:
ec:8f:88:57:01:ee:ce:e8:d3:a0:28:a1:99:be:8d:73:56:d8:
b0:d4:5a:7e:94:b7:37:9c:d7:69:1c:47:b9:48:63:d4:3c:c9:
0d:92:2f:23:49:97:8e:44:35:1a:01:24:fa:fb:1f:ac:45:f0:
29:10:26:c5:b4:62:d7:98:48:12:0a:78:a6:b1:a0:6c:6e:13:
58:29:cc:d5:f5:1a:ad:8f:16:10:13:05:38:c8:ec:6c:cf:4f:
05:5b:5d:73:8c:72:ff:71:35:9e:46:aa:9e:fe:06:f1:4d:fe:
c5:ed:10:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:52 2024 by rpki-client on console-fra.rpki-client.org