Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362BDD7/0906697C856211EFA57A1F9D762E951A/D60958CC856B11EFBE85FB5B762E951A.roa
File: D60958CC856B11EFBE85FB5B762E951A.roa (raw, json)
Hash identifier: Pw5u5L+ZQ+31t8q31EOek7HdK9TGe6sXHf0Pw/O4YD4=
Subject key identifier: 17:5C:F8:BA:FE:56:29:38:91:43:AE:CA:DC:DE:DB:1D:BB:D3:7C:B6
Certificate issuer: /CN=F362BDD7AR/serialNumber=5D56256A249D56475F0FE34A4284A64C522C0FB4
Certificate serial: 05
Authority key identifier: 5D:56:25:6A:24:9D:56:47:5F:0F:E3:4A:42:84:A6:4C:52:2C:0F:B4
Authority info access: rsync://rpki.afrinic.net/repository/arin/XVYlaiSdVkdfD-NKQoSmTFIsD7Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362BDD7/0906697C856211EFA57A1F9D762E951A/D60958CC856B11EFBE85FB5B762E951A.roa
Signing time: Tue 08 Oct 2024 11:52:47 +0000
ROA not before: Tue 08 Oct 2024 11:52:44 +0000
ROA not after: Tue 31 Oct 2028 11:52:44 +0000
asID: 327910
IP address blocks: 169.255.248.0/22 maxlen: 22
169.255.248.0/24 maxlen: 24
169.255.249.0/24 maxlen: 24
169.255.250.0/24 maxlen: 24
169.255.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362BDD7/0906697C856211EFA57A1F9D762E951A/XVYlaiSdVkdfD-NKQoSmTFIsD7Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F362BDD7/0906697C856211EFA57A1F9D762E951A/XVYlaiSdVkdfD-NKQoSmTFIsD7Q.mft
rsync://rpki.afrinic.net/repository/arin/XVYlaiSdVkdfD-NKQoSmTFIsD7Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362BDD7AR/serialNumber=5D56256A249D56475F0FE34A4284A64C522C0FB4
Validity
Not Before: Oct 8 11:52:44 2024 GMT
Not After : Oct 31 11:52:44 2028 GMT
Subject: CN=67051d0f-2bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c4:e0:db:ca:1c:3e:eb:13:c4:21:75:8f:3f:
84:b8:ce:4c:fe:bd:8c:87:7f:1a:ac:5a:3a:ec:96:
86:86:6a:17:a7:e5:ca:ab:63:6d:43:be:6d:1d:03:
31:2e:c0:c2:31:34:8c:28:77:27:6d:e1:77:88:62:
a3:54:4c:c4:ee:4d:8a:89:30:2b:d3:02:e8:46:60:
db:7a:ec:0e:03:09:be:6c:22:eb:ef:db:71:95:5b:
b6:fd:80:0d:89:88:43:55:d0:7c:9a:c5:69:00:a9:
3d:79:37:48:60:9a:49:0c:73:d9:46:a3:22:b4:65:
d5:6b:16:96:c0:d6:f6:ef:1e:98:af:cf:07:4a:da:
74:69:cc:da:ea:3b:fd:be:fe:8b:7e:47:80:20:00:
b7:6f:03:ea:ab:4b:e0:6d:b4:b7:5b:c9:a2:14:44:
70:d7:b2:94:b8:07:5a:a5:33:af:c0:65:85:0e:5b:
2e:97:85:c3:a3:a2:71:ae:4c:09:b9:ff:ab:ce:10:
19:9f:18:52:58:78:eb:99:8a:e7:60:77:6f:bc:c8:
4f:ca:6a:c5:68:34:85:3e:78:51:2b:f8:cb:90:4d:
be:76:ea:c6:9b:ab:33:ef:40:ed:e7:e7:ab:1e:a5:
36:d9:23:e0:13:36:93:c4:da:ea:69:84:82:3d:0c:
80:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5C:F8:BA:FE:56:29:38:91:43:AE:CA:DC:DE:DB:1D:BB:D3:7C:B6
X509v3 Authority Key Identifier:
keyid:5D:56:25:6A:24:9D:56:47:5F:0F:E3:4A:42:84:A6:4C:52:2C:0F:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362BDD7/0906697C856211EFA57A1F9D762E951A/XVYlaiSdVkdfD-NKQoSmTFIsD7Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/XVYlaiSdVkdfD-NKQoSmTFIsD7Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362BDD7/0906697C856211EFA57A1F9D762E951A/D60958CC856B11EFBE85FB5B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.248.0/22
Signature Algorithm: sha256WithRSAEncryption
13:7b:11:4c:f5:e5:13:58:8a:01:3c:72:40:69:c9:14:30:45:
dc:c6:a3:f2:fe:65:53:a2:fa:74:76:4f:29:aa:f4:cd:e8:e9:
05:e0:3b:3b:2f:a7:43:8f:83:5f:40:58:0b:62:99:9e:bd:b4:
75:a5:dd:75:b1:3c:6c:91:b9:92:ab:5b:ae:9a:b3:ee:84:0a:
af:10:93:ac:4c:c6:d0:52:cd:46:e4:6c:eb:d2:e1:58:fb:b3:
d9:b9:50:29:f0:a0:5a:d9:0a:07:7f:fb:7c:aa:4f:e0:f9:b0:
50:d9:11:11:d2:e4:66:97:18:6a:03:b0:7d:c8:22:6d:f5:3e:
da:12:b7:a6:da:3c:51:a6:aa:6f:11:29:9d:03:86:5f:61:b4:
e6:36:f4:12:3d:fe:ea:32:29:a3:40:73:9b:c1:2b:d6:9b:b1:
51:6e:82:1f:1c:06:7a:dd:1f:52:9e:30:ab:c0:35:ab:ea:8c:
b4:19:80:37:df:3c:80:9a:97:17:32:fd:5a:e1:b8:bb:7e:47:
b6:d4:d7:86:49:91:bf:7d:6c:93:fc:99:9b:84:c8:4b:3d:98:
84:46:34:e3:47:77:27:38:41:ab:1a:bc:2c:24:c2:dc:b1:b5:
72:2e:ae:53:da:72:aa:76:0d:6f:30:cb:f1:26:4d:90:77:fc:
63:b6:03:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org