Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07694096038811EF82C0EF2C017001B1.roa
File: 07694096038811EF82C0EF2C017001B1.roa (raw, json)
Hash identifier: /fwOJogbHEhkL8P7y+37IDpg1vslThEVXeUHgZci5nw=
Subject key identifier: AF:D0:E5:9A:76:EE:71:87:B4:8C:8B:1D:81:DF:D0:E7:D9:FF:8B:69
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85B8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07694096038811EF82C0EF2C017001B1.roa
Signing time: Fri 26 Apr 2024 04:47:05 +0000
ROA not before: Fri 26 Apr 2024 04:47:01 +0000
ROA not after: Mon 03 Jun 2024 04:47:01 +0000
asID: 135097
IP address blocks: 156.226.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34232 (0x85b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:47:01 2024 GMT
Not After : Jun 3 04:47:01 2024 GMT
Subject: CN=662b31c9-128d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:db:99:95:05:c6:7d:ac:67:b1:e0:ae:a5:d5:
f8:49:06:6e:14:85:b5:a1:1e:11:19:44:c6:3f:aa:
b5:33:73:7e:60:0f:62:42:71:9c:16:c1:13:47:c7:
c0:dd:05:02:93:1c:a3:b9:e1:8e:f1:4e:99:3f:41:
aa:bf:a5:1f:f2:e0:79:ec:74:53:5c:e9:10:b2:b4:
df:33:eb:d4:54:4c:e6:d6:26:ff:4d:7e:dd:0a:9b:
f5:48:03:59:7a:6d:98:da:b2:50:d8:84:02:f2:51:
2a:0c:e1:bf:da:db:50:93:01:a6:4f:12:48:74:a8:
e4:cc:9c:23:8b:4a:94:3c:f0:00:38:87:e3:07:e0:
12:f1:71:c0:1b:cb:e4:a3:7c:4d:f2:35:1a:7a:44:
72:c7:06:ab:98:a4:67:c8:9b:d3:6f:5e:69:a4:11:
b8:5d:57:e4:de:7b:d8:35:70:67:04:bc:d9:06:b7:
d0:58:e9:fc:15:94:4f:6c:0e:a4:b6:9c:1e:7d:17:
c3:a8:55:b0:c9:4e:34:92:5e:5e:1e:ef:ce:e2:84:
eb:fa:60:08:d1:fd:7e:4d:93:35:31:46:e3:2d:bc:
d0:5a:ff:02:d7:18:92:1b:38:7f:c1:95:98:4a:33:
a5:04:e7:57:ee:7e:98:98:47:13:b2:3b:2e:31:60:
ae:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D0:E5:9A:76:EE:71:87:B4:8C:8B:1D:81:DF:D0:E7:D9:FF:8B:69
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07694096038811EF82C0EF2C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.64.0/18
Signature Algorithm: sha256WithRSAEncryption
55:02:50:5f:61:0b:8c:7f:fa:e5:87:bb:bd:70:81:26:89:32:
99:38:fd:a5:82:59:90:bb:1d:04:90:a5:2c:39:4e:7f:01:c4:
76:51:2a:ca:7e:59:9a:e4:80:50:d5:17:9a:06:b6:51:73:49:
ea:e8:93:76:6a:86:36:d4:f8:7c:ac:9f:7c:54:bb:bb:d1:c6:
64:3e:5a:2b:77:fe:d3:ca:0f:33:61:23:2d:6f:1a:34:33:02:
27:db:01:99:31:51:3a:a6:c5:84:0e:cc:b0:1e:28:92:65:3a:
ec:c5:bd:4a:da:72:b1:b0:2d:70:ac:9b:d7:da:a3:95:da:92:
e5:74:46:b5:81:b6:01:f1:a6:f1:7b:e4:f2:49:2b:74:13:82:
af:08:45:3d:5a:7f:27:94:cb:c4:19:c9:b5:94:43:18:65:46:
7a:a0:6b:da:d5:49:a4:8b:3c:5f:35:fd:e6:29:04:9f:86:a3:
b5:96:54:60:a7:ec:11:63:f8:72:83:fd:16:00:08:ab:e4:d6:
fb:0b:65:10:a5:3c:bb:e5:a7:22:c2:f4:6a:4c:ab:85:f9:6f:
6f:c5:37:59:e3:32:e1:aa:6f:76:ce:a0:70:91:96:9b:72:5a:
6d:b9:b3:d5:49:a6:54:d7:f3:d1:63:a8:ac:bf:cc:d8:0a:ff:
f0:a2:20:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org