Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/F0025BDA8D4411EF84E7856C762E951A.roa
File: F0025BDA8D4411EF84E7856C762E951A.roa (raw, json)
Hash identifier: n8jqqogDIhlXdheheIcW0DF5qFiOOUSxPi18xvRCYrc=
Subject key identifier: DA:65:79:18:58:5F:FF:FD:B2:D4:92:92:D3:82:95:69:55:83:7A:A6
Certificate issuer: /CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Certificate serial: 2B
Authority key identifier: 1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
Authority info access: rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/F0025BDA8D4411EF84E7856C762E951A.roa
Signing time: Fri 18 Oct 2024 11:34:30 +0000
ROA not before: Fri 18 Oct 2024 11:34:26 +0000
ROA not after: Wed 18 Oct 2034 11:34:26 +0000
asID: 37680
IP address blocks: 155.93.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.mft
rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Validity
Not Before: Oct 18 11:34:26 2024 GMT
Not After : Oct 18 11:34:26 2034 GMT
Subject: CN=671247c5-9b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:83:24:c6:4c:14:ad:aa:e9:79:63:f8:fa:91:
22:3f:be:03:bd:d1:c3:4e:68:d0:fa:a8:eb:7f:5f:
c5:44:23:60:0a:7b:5f:e8:a7:97:93:94:73:5d:3f:
14:22:93:f3:7c:3c:bc:c2:91:ad:b6:b1:5e:d7:e8:
dc:60:6a:c4:93:c8:d3:40:d8:58:14:22:91:8a:d8:
4c:cd:46:1b:2d:d4:53:9c:8b:2f:34:29:65:37:fe:
dc:25:cf:81:bf:10:55:87:05:60:95:8c:0d:bb:52:
b0:9e:09:df:49:f6:0d:4b:6f:bd:70:59:0f:9b:78:
ce:93:86:eb:97:43:f7:26:e7:e5:00:6f:d7:28:9c:
db:61:90:21:b5:aa:f5:d8:fc:fd:18:d4:f5:a2:22:
ab:a6:10:dd:94:b4:79:ff:a7:2c:ab:3d:1e:3c:33:
63:15:7c:9d:59:1f:7d:b7:70:54:97:07:a4:4e:5b:
db:a3:cf:de:18:fe:4d:38:83:d3:4c:8f:fe:06:27:
ca:4b:bc:3c:15:7a:b2:c6:c0:c1:6e:44:71:f1:59:
fe:a4:a7:e4:30:96:39:a0:44:05:30:78:f8:56:d3:
8a:fb:20:4e:ff:b2:a8:43:89:36:91:78:c3:b8:85:
59:90:55:d2:7a:bb:07:9f:0f:14:28:e8:ff:a5:fa:
31:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:65:79:18:58:5F:FF:FD:B2:D4:92:92:D3:82:95:69:55:83:7A:A6
X509v3 Authority Key Identifier:
keyid:1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/F0025BDA8D4411EF84E7856C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.93.192.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d0:e7:44:06:43:a3:b3:26:8c:40:cb:ef:a2:0c:46:ad:4e:
3c:22:0a:55:65:5c:ac:47:74:41:ea:cd:d6:68:19:e7:dc:e3:
48:9d:5b:68:08:31:2e:b7:35:6d:b2:ba:9d:2d:3c:c5:dd:11:
5e:d3:24:1c:e3:68:db:95:5f:2a:4f:be:b4:c1:9d:5a:b7:c2:
0a:f7:66:54:b0:c6:34:96:15:e1:4a:e7:2c:17:c1:76:17:e5:
95:f1:b3:cb:6f:84:06:59:22:cb:75:c8:5f:61:57:2d:21:f6:
91:a6:d9:2b:3e:e0:44:10:dd:56:83:bf:dd:78:a1:e9:63:3a:
29:12:ea:70:a0:f0:1c:d6:9f:a8:1c:9d:49:51:f7:5e:c7:52:
bd:f1:58:65:db:58:28:57:71:53:b2:44:0b:66:ae:d2:e4:78:
94:1a:fa:34:57:d9:eb:23:44:35:b9:b5:cf:6a:ca:bc:d9:80:
51:48:c2:2c:1f:90:68:86:f3:a1:a2:97:88:f8:52:f1:14:dc:
39:c9:86:98:08:66:e9:b6:0a:66:93:bc:7c:e2:b2:d4:eb:d7:
f5:79:08:25:a7:ed:99:d2:9d:10:f7:24:fe:05:02:6c:92:15:
34:08:dc:83:4b:8f:77:3a:43:ff:97:7c:e7:b3:ef:1d:5f:aa:
e0:09:75:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:27 2024 by rpki-client on console-fra.rpki-client.org