Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E847BB2A26011EFBB3A6890762E951A.roa
File: 0E847BB2A26011EFBB3A6890762E951A.roa (raw, json)
Hash identifier: GlOkkjq7piyAh7y8v1ISOGwv1MtrWCMewfp1JwDqzAU=
Subject key identifier: 74:8A:EF:AD:19:B2:CB:9A:26:85:76:6C:C2:1C:6C:B7:1F:E8:B3:D0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D293
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E847BB2A26011EFBB3A6890762E951A.roa
Signing time: Thu 14 Nov 2024 08:11:32 +0000
ROA not before: Thu 14 Nov 2024 08:11:28 +0000
ROA not after: Wed 27 Nov 2024 08:11:28 +0000
asID: 61112
IP address blocks: 156.231.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53907 (0xd293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 14 08:11:28 2024 GMT
Not After : Nov 27 08:11:28 2024 GMT
Subject: CN=6735b0b3-854b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6f:84:29:6c:26:3d:af:af:97:f6:4b:bd:8b:
66:bc:8e:d5:a0:60:32:b4:36:38:e2:be:d7:3f:d8:
49:ef:0f:9f:ec:9a:fa:51:ec:41:bf:d0:df:23:4e:
c7:60:d4:d2:1e:4b:b0:72:0b:b4:29:34:b2:ad:6d:
a6:8b:38:98:d1:67:c6:f5:3e:9b:0d:60:01:a3:3d:
ed:43:27:99:fa:53:5a:7d:b2:f3:8b:eb:83:2c:ec:
ba:4e:e1:0d:aa:d7:31:5e:8f:fc:fe:b2:6e:09:26:
98:63:1a:63:36:b2:3c:99:09:20:3e:17:6f:04:b3:
07:9c:34:ae:b4:7d:5f:70:3f:a3:cb:c1:54:56:b9:
ae:6d:e4:44:a1:81:1a:3d:84:d2:2d:ec:9d:9c:97:
4f:81:36:af:a5:84:2d:6d:4e:8f:7c:19:11:23:9e:
26:d8:73:e8:c5:9c:cb:a6:17:0a:93:be:8c:85:b8:
7e:4a:b8:30:6a:79:60:5b:16:a2:b5:98:1d:3a:a8:
6a:d0:39:cb:b3:bd:3d:71:ed:58:0b:71:fb:62:e4:
09:f6:7b:e5:bb:13:d3:68:43:c4:43:0b:33:b7:bf:
81:b0:72:48:3b:46:ed:9b:e7:73:b6:b1:14:1d:1e:
00:11:1d:9f:d1:bc:ec:30:ad:a7:91:cd:d6:83:51:
7d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8A:EF:AD:19:B2:CB:9A:26:85:76:6C:C2:1C:6C:B7:1F:E8:B3:D0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E847BB2A26011EFBB3A6890762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.116.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:23:05:f0:e4:71:b6:54:ec:ff:d4:5e:7b:6f:0f:1b:1d:f8:
37:35:ad:ab:03:93:3c:bc:5a:e0:dc:7a:14:ba:98:1e:90:c4:
00:07:26:9e:36:9a:4b:af:14:ac:2e:32:65:dc:69:ff:c4:d5:
79:fc:01:04:a2:c6:ba:49:34:47:1e:e9:86:b7:4c:e9:63:52:
1b:f5:f7:07:32:70:65:3e:f8:f5:94:59:20:b1:02:56:e9:ec:
d5:97:1d:a1:af:ca:75:61:40:59:da:e3:22:48:3c:ce:6c:37:
5f:89:61:f6:80:d6:bc:d7:aa:23:05:d5:48:24:2e:86:af:b6:
fe:b8:01:bd:bc:16:e7:b9:33:cc:25:8b:ff:70:d3:0e:7b:7f:
7a:95:f5:15:38:ce:c6:4e:16:39:18:98:ad:6a:9b:10:fa:d8:
dc:ee:bc:48:c3:54:b1:94:1f:a3:47:ae:7f:76:a3:29:cb:d9:
94:63:8c:49:10:68:0a:ed:96:53:14:c9:60:dd:73:ce:14:00:
f9:03:cb:5d:0a:e5:15:ab:b5:21:8a:b5:74:f5:c3:5f:2d:16:
01:a3:ff:79:87:8c:84:cb:22:97:2e:ca:76:b8:a0:9a:dc:e1:
a2:5a:9f:b3:25:47:dc:e0:84:cd:2e:9d:78:6e:f2:34:8e:63:
ec:fd:cb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:19 2024 by rpki-client on console-ams.rpki-client.org