Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0F180934038411EFB2607A0F017001B1.roa
File: 0F180934038411EFB2607A0F017001B1.roa (raw, json)
Hash identifier: rf8efhM/vVEtcaMoyX8JgZ2iol8UCwyq/jII6Lyvagk=
Subject key identifier: DA:4F:DF:D5:37:42:E4:F8:56:C9:62:1E:6B:87:2F:96:47:F1:C4:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 858A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0F180934038411EFB2607A0F017001B1.roa
Signing time: Fri 26 Apr 2024 04:18:40 +0000
ROA not before: Fri 26 Apr 2024 04:18:36 +0000
ROA not after: Tue 03 Sep 2024 04:18:36 +0000
asID: 131685
IP address blocks: 156.234.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34186 (0x858a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:18:36 2024 GMT
Not After : Sep 3 04:18:36 2024 GMT
Subject: CN=662b2b1f-3af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:23:bd:37:19:9a:78:38:d7:1e:4e:35:d2:c5:
64:0f:fc:f5:f7:8a:e9:06:40:56:ba:4e:f8:e7:7c:
26:91:12:ae:e0:ff:10:32:86:b7:09:ed:9a:05:fb:
be:43:8d:ec:89:53:c4:4e:81:24:28:44:27:1f:64:
1d:c9:c4:d3:59:a1:d0:8d:11:85:be:51:80:f4:b8:
4e:0c:8b:58:07:c3:d0:6a:db:17:a3:6f:fe:e5:67:
31:d4:19:f0:4a:8c:3a:e8:73:36:76:fd:cb:b7:8d:
51:33:04:2c:52:41:d2:81:2a:b4:b5:76:90:06:49:
17:cd:72:ee:20:d7:ec:5d:5a:9a:3b:8b:64:12:d7:
d8:68:ba:df:bb:08:cf:8d:6b:99:c8:1b:5a:ed:37:
0c:22:3c:51:cd:ff:ef:3f:ad:82:9f:e2:31:c6:ab:
02:aa:52:f6:ce:6c:19:91:4a:6f:e0:28:34:3f:4e:
5d:62:8c:94:7d:b0:62:2b:dd:a9:07:9f:f6:85:76:
d0:61:52:49:bc:de:23:3d:d5:df:cb:5f:e0:66:89:
73:21:56:b9:75:ed:9b:ff:07:20:78:b9:6d:82:b1:
5e:69:86:7a:da:bb:56:15:e5:1a:be:b5:f0:6e:47:
b5:cc:50:64:8f:e6:71:f6:a7:8c:d9:58:81:db:b1:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:4F:DF:D5:37:42:E4:F8:56:C9:62:1E:6B:87:2F:96:47:F1:C4:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0F180934038411EFB2607A0F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.24.0/24
Signature Algorithm: sha256WithRSAEncryption
27:39:0a:b9:a6:3c:6e:e6:c6:37:84:07:b0:56:06:24:d8:3e:
aa:af:9b:1d:83:4e:24:41:7b:e8:ca:dd:da:4d:f3:db:a3:96:
08:c0:f0:09:8f:43:36:6a:69:80:2d:15:31:9c:3a:b6:0e:2c:
17:cb:b1:f7:97:49:a8:37:7d:49:9c:cf:90:53:32:bd:c6:7b:
9d:b3:12:e8:89:c7:cc:52:34:44:4f:d2:74:5b:c9:13:cc:db:
1b:ef:39:d1:bb:15:3b:94:81:c2:c0:7c:ab:9a:ed:a6:4f:4d:
d2:33:8a:d9:fb:81:23:87:28:1b:ef:a8:89:01:5d:e3:f7:b9:
7b:bb:b7:3c:73:4b:1b:3c:72:dd:b4:28:5b:f0:f2:df:1e:61:
2f:b4:89:a9:c1:a7:89:f4:bd:8a:be:8d:e2:29:19:2c:32:22:
5a:27:62:be:6c:22:09:4d:e9:40:ef:cf:09:ba:19:58:48:54:
b9:86:3c:40:9f:05:2f:4f:79:8d:4a:3c:18:14:82:49:b7:dd:
9e:ba:c0:c1:76:03:11:1c:64:45:c4:50:ae:69:51:2c:0d:f2:
e0:5a:21:e5:66:2e:56:36:c2:a6:90:cf:bf:48:a8:25:18:b1:
49:79:2e:04:eb:c5:c2:44:ea:68:a3:09:a0:f8:cb:78:1d:6b:
07:27:0d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org