Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/B104EE44D53311EE8BE4F36C775412E6.roa
File: B104EE44D53311EE8BE4F36C775412E6.roa (raw, json)
Hash identifier: RqxwUBj2Bc+OGaTDdk4x7to8RcdRWFqstSwOVMh1no8=
Subject key identifier: D2:7C:7E:A9:97:D2:B5:A6:D6:19:35:BA:E8:57:DE:31:00:5B:09:D4
Certificate issuer: /CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Certificate serial: 0185
Authority key identifier: 93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
Authority info access: rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/B104EE44D53311EE8BE4F36C775412E6.roa
Signing time: Tue 27 Feb 2024 05:47:28 +0000
ROA not before: Tue 27 Feb 2024 05:47:25 +0000
ROA not after: Wed 27 Feb 2030 05:47:25 +0000
asID: 327697
IP address blocks: 139.26.152.0/21 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.mft
rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389 (0x185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Validity
Not Before: Feb 27 05:47:25 2024 GMT
Not After : Feb 27 05:47:25 2030 GMT
Subject: CN=65dd7770-e632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e9:72:aa:8a:1a:ac:e6:06:78:80:ed:33:18:
48:1f:15:02:02:12:59:83:76:7f:31:b2:56:12:dd:
99:a3:fd:1b:ba:28:60:72:95:76:b1:2f:75:37:4d:
f9:97:a1:69:9e:6d:ca:16:0e:bb:0c:c9:a2:a2:5e:
51:f5:c4:78:5e:09:76:ac:e9:63:d9:49:97:6f:ad:
2b:a1:73:7e:36:5c:ab:23:5b:1c:04:06:92:c1:e8:
1b:ca:c9:75:1e:87:59:60:0d:5a:20:12:31:89:0e:
06:22:44:dd:78:cc:3e:7a:03:bf:cf:93:73:84:94:
1e:8f:de:7e:21:04:f9:2a:ef:0b:91:1c:e2:0b:f2:
21:88:15:73:63:c3:76:77:a5:5c:8d:ad:31:64:6a:
be:83:21:19:9f:53:47:d1:85:9b:19:da:c7:12:7b:
04:69:38:d4:06:5b:e3:73:b9:57:f2:3c:79:41:4f:
f6:cd:c0:8c:7e:73:87:43:bc:e1:95:a2:1a:9c:5d:
33:55:c8:ae:05:97:7a:eb:a3:9e:1f:f8:96:5e:a5:
e9:0d:65:82:4a:cc:ef:b5:4a:83:dc:8e:68:70:09:
4f:d6:44:c2:ae:f0:12:40:91:f2:48:bd:8c:83:a2:
1b:ca:f5:c5:a1:62:3c:07:2c:c6:2e:c8:a3:6e:d8:
c5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7C:7E:A9:97:D2:B5:A6:D6:19:35:BA:E8:57:DE:31:00:5B:09:D4
X509v3 Authority Key Identifier:
keyid:93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/B104EE44D53311EE8BE4F36C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.26.152.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:13:5b:78:9f:ec:3f:fd:1c:5f:31:6b:be:b6:30:26:21:48:
8b:80:09:0d:a2:9f:fb:66:18:76:97:14:32:61:65:15:b4:06:
50:09:2e:7e:89:49:87:ba:d5:85:86:33:31:27:dc:0b:97:70:
ee:05:f7:77:eb:76:e6:32:76:b5:a5:df:0a:6b:74:38:2b:14:
c0:fc:ee:16:75:8c:3d:81:65:f3:ca:82:54:4d:64:cf:20:03:
37:d6:e0:c3:e1:cd:86:c5:5e:a1:68:35:26:60:5f:72:86:c4:
cf:7d:4d:66:ce:78:ba:bc:89:84:e7:29:c3:d8:4a:1c:7a:5d:
59:ae:d8:c8:eb:26:50:b6:fd:d3:85:84:a3:3b:20:9d:fa:b6:
00:c5:bd:c1:41:e4:e6:f0:d3:da:1a:07:52:5b:b9:bb:53:0e:
88:cd:01:4c:16:1e:06:65:be:85:5b:4e:07:a9:7b:02:cd:f8:
70:30:26:3b:be:1f:61:c9:98:a5:e9:11:bf:7a:98:88:40:04:
d1:81:b8:d1:80:1e:df:e8:ee:38:23:e2:51:1e:66:4f:bf:ca:
f7:d0:2e:93:92:40:31:18:8c:cc:3c:d5:9c:39:b9:9e:63:13:
b6:af:a6:7b:b8:8a:73:9c:4a:3e:73:4c:86:06:07:05:d1:45:
bc:7a:2e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 03:12:54 2024 by rpki-client on console-fra.rpki-client.org