Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0768B9E0CCD911EE807566AF775412E6.roa
File: 0768B9E0CCD911EE807566AF775412E6.roa (raw, json)
Hash identifier: qqspwc9MFO/xOkdToGTGDYRIfgwRZkct5qcNH9yrGpM=
Subject key identifier: 6B:02:07:1D:E8:34:FB:CB:CF:CA:3D:43:A2:D3:1E:96:DB:52:15:7B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7145
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0768B9E0CCD911EE807566AF775412E6.roa
Signing time: Fri 16 Feb 2024 14:38:20 +0000
ROA not before: Fri 16 Feb 2024 14:38:17 +0000
ROA not after: Sat 17 Aug 2024 14:38:17 +0000
asID: 265844
IP address blocks: 156.245.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28997 (0x7145)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 16 14:38:17 2024 GMT
Not After : Aug 17 14:38:17 2024 GMT
Subject: CN=65cf735c-3b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e0:a6:8f:d3:a3:b5:e6:fa:04:cd:ea:08:36:
14:57:3d:5f:47:2b:a0:ea:12:3c:5c:c9:a4:54:fd:
55:15:6d:0c:7a:2b:a9:f5:a7:78:21:be:16:a8:c1:
96:0b:80:c9:a6:b9:a6:2f:ff:2c:f3:86:87:d2:a6:
fe:f0:07:0c:2c:58:fa:ea:b8:31:4a:7b:01:65:c7:
2f:34:0c:41:d6:a9:d5:a3:8a:a6:7f:98:ff:7d:19:
75:3c:18:5c:a8:1d:ae:b3:db:f9:56:e2:6e:f9:12:
e8:5e:c7:92:f7:02:70:48:0a:ee:53:b0:84:bb:eb:
11:b0:f8:f6:05:48:3d:ee:af:82:d7:c8:27:97:fa:
07:23:01:ee:5b:d0:74:76:82:d6:07:12:4a:0e:1e:
d7:25:1d:80:70:6f:2f:ee:4d:2f:16:b1:4d:a8:36:
f4:40:d4:59:44:28:c6:03:3c:b2:91:4b:52:76:4d:
95:9a:5e:bf:d7:a4:e0:0b:64:b5:9a:00:d2:19:4f:
5c:ed:c3:42:eb:f3:f7:22:d6:a2:5b:d9:08:27:b7:
0a:3b:26:e9:0e:dc:e5:19:fd:16:44:b6:7b:f5:4a:
3e:f2:b7:b9:ef:8b:6b:65:1c:35:90:97:22:bf:1b:
d9:c0:05:50:75:d5:55:5e:4d:94:bf:0f:02:80:20:
06:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:02:07:1D:E8:34:FB:CB:CF:CA:3D:43:A2:D3:1E:96:DB:52:15:7B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0768B9E0CCD911EE807566AF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.0.0/24
Signature Algorithm: sha256WithRSAEncryption
86:df:ff:b1:ff:89:f5:57:24:93:9e:75:bf:95:1b:a3:d7:e5:
1e:13:5d:3c:5b:cb:be:b3:0b:b5:70:5f:54:eb:33:87:c8:b3:
ab:f3:92:e8:5a:09:45:c9:84:a4:a2:1d:ea:03:9c:7f:2f:9d:
22:fb:06:c7:c8:57:74:fa:9a:9d:a5:ef:cb:c1:52:bc:32:aa:
3e:33:f3:61:11:cb:2f:43:77:0f:05:cc:44:c8:2e:95:48:2d:
73:66:e9:ef:0a:63:91:cf:1b:bb:68:eb:3d:63:3b:c2:b7:57:
43:5e:24:34:ee:f0:3f:8b:57:76:cc:99:3a:a1:9b:db:b9:8e:
38:fe:09:56:65:84:4f:06:b6:3e:24:cd:6e:56:d1:70:12:88:
65:0d:63:c9:5c:33:00:e0:9a:55:e7:7b:1a:9c:f3:4d:99:02:
13:e2:3d:f2:ed:a4:c9:72:7c:d2:a3:40:cd:e6:1a:33:2a:b4:
79:fd:4a:db:1a:c8:f6:ab:f5:20:c5:c4:a6:c8:ba:c6:bc:ea:
12:fc:6c:0a:a0:cd:ad:5a:91:30:70:e8:52:85:3c:cf:d6:ce:
5f:c8:23:d4:1e:30:67:79:76:bf:1b:c5:fd:85:5a:61:0c:ee:
30:db:78:69:13:91:38:3c:3f:2d:e4:64:40:dc:b2:35:b2:5f:
c5:fd:7e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org