Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03EDE3AAC50711EEA3E79AB6775412E6.roa
File: 03EDE3AAC50711EEA3E79AB6775412E6.roa (raw, json)
Hash identifier: eMDq9AFk2bk7yfkwhCCF6QRgxyNJUTfYGSP+CDlVsIA=
Subject key identifier: 72:CA:BF:23:36:10:CE:4D:5A:7B:EF:5E:80:8F:D6:D4:99:60:FC:82
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6D2E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03EDE3AAC50711EEA3E79AB6775412E6.roa
Signing time: Tue 06 Feb 2024 15:47:22 +0000
ROA not before: Tue 06 Feb 2024 15:47:18 +0000
ROA not after: Thu 13 Jun 2024 15:47:18 +0000
asID: 212238
IP address blocks: 156.235.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 20:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27950 (0x6d2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 6 15:47:18 2024 GMT
Not After : Jun 13 15:47:18 2024 GMT
Subject: CN=65c2548a-4f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:99:2a:a5:b9:69:d3:70:2b:73:34:4c:55:79:
74:ea:4f:7c:02:3c:d1:7d:05:57:a7:2b:b6:dc:56:
ff:65:bd:3c:ac:1b:9d:7e:cd:d5:83:d9:4f:e1:01:
2a:6d:04:24:a6:d0:3d:bc:19:02:68:37:98:86:bf:
e1:3d:dc:76:f6:68:4f:d9:2a:3b:7d:b7:ba:8f:11:
d1:21:44:df:63:79:d6:12:ca:cb:ce:33:23:35:9e:
2c:bd:dc:90:6e:84:42:6a:cc:3d:4c:6e:cf:ee:67:
2a:a9:55:b5:d0:fa:72:b3:d8:30:2e:43:32:91:d0:
e4:42:bf:f4:7c:5d:d5:d4:45:ad:ef:2a:93:98:ab:
30:4b:dd:e9:82:13:98:c3:5f:59:33:7b:5c:94:26:
e7:af:14:cd:a0:b3:df:59:5d:a4:41:02:f3:6a:06:
05:3f:b9:86:6e:5d:87:1c:9e:ca:c7:47:fd:8b:6b:
91:10:66:43:dc:9a:44:56:55:4d:21:c0:bf:8c:f8:
07:38:ca:b9:05:c9:aa:3f:48:59:9a:25:0e:ce:a1:
53:d8:87:70:a6:21:c0:cd:ad:61:42:2f:b5:6d:21:
f4:33:5f:44:ed:dc:6d:d2:07:1e:33:e2:88:b5:8f:
96:fc:82:6d:c7:c1:50:c3:e5:68:9c:cc:a6:4f:8c:
12:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CA:BF:23:36:10:CE:4D:5A:7B:EF:5E:80:8F:D6:D4:99:60:FC:82
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03EDE3AAC50711EEA3E79AB6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.53.0/24
Signature Algorithm: sha256WithRSAEncryption
12:5c:1d:e9:41:cd:c8:17:8a:a9:2b:4f:74:3e:89:45:8a:a4:
97:db:d2:d8:77:42:28:fd:ea:20:04:c8:7d:3c:db:64:da:9c:
f7:5b:01:1b:08:a5:e4:72:7f:e5:f3:e3:6a:4a:c2:d3:ef:33:
cc:01:08:8b:cd:7a:55:62:1f:c5:b4:bb:e7:25:7b:e9:d1:32:
1d:0d:8f:07:ff:69:f9:5b:4f:86:56:87:a5:da:d4:d9:23:da:
d0:7b:1c:9f:36:b4:79:15:dc:0d:34:0f:8f:0b:c2:b6:b3:0b:
68:cd:94:fd:03:a4:04:89:c9:04:43:0a:5b:7e:4c:2f:da:86:
7f:d4:64:98:78:cc:f3:67:49:33:02:0c:76:32:b6:d7:2e:c4:
bc:91:fc:ac:52:04:b5:18:bb:7f:2e:7d:5c:d3:c3:37:25:aa:
f4:83:3e:93:0c:f0:88:90:bb:79:78:fc:c6:31:b1:e0:83:d3:
d1:4c:dc:5c:2a:20:09:b4:b6:4d:4b:87:9c:4e:1e:3b:95:b3:
4b:8b:68:16:3c:1b:d6:00:90:79:36:c5:6a:eb:c3:bc:01:bf:
d6:f4:df:a0:16:8a:a2:3a:68:5f:4a:89:38:8e:23:f6:a4:ea:
d0:57:50:fa:fd:9f:63:f2:f5:99:22:5c:de:da:43:3a:54:4c:
c5:ae:83:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 00:02:15 2024 by rpki-client on console-ams.rpki-client.org