Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/104A553AA74111EF82638A41762E951A.roa
File: 104A553AA74111EF82638A41762E951A.roa (raw, json)
Hash identifier: 7ShyNbxuz9VmOtbc7GBYdw4cmFnBPIm/t42UDJwCjeI=
Subject key identifier: A2:27:08:CE:4B:7B:03:09:70:37:12:A0:84:38:31:DF:EE:B5:A0:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D63D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/104A553AA74111EF82638A41762E951A.roa
Signing time: Wed 20 Nov 2024 13:12:16 +0000
ROA not before: Wed 20 Nov 2024 13:12:12 +0000
ROA not after: Sat 30 Nov 2024 13:12:12 +0000
asID: 44559
IP address blocks: 156.246.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54845 (0xd63d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 13:12:12 2024 GMT
Not After : Nov 30 13:12:12 2024 GMT
Subject: CN=673de030-bf36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4d:3d:08:ff:17:00:56:d1:0b:a2:ab:47:7c:
b0:22:fd:1b:b8:eb:88:76:d4:2d:c3:f5:a3:8e:03:
05:27:85:a5:d5:ed:58:47:dc:ee:23:a6:9f:7c:c6:
29:18:af:33:bd:d1:51:5f:fa:e9:f2:97:de:d0:39:
41:9f:ef:e7:09:50:2f:e7:c4:a5:26:bd:0e:39:33:
83:37:1d:ce:13:19:77:08:d2:29:dc:b2:fe:42:92:
49:52:07:af:fa:2a:bd:1b:9b:80:4c:e8:aa:30:7c:
f2:ca:14:5f:82:33:e1:35:e3:d9:02:b0:6f:8a:55:
a2:13:61:ea:2c:bf:05:08:e0:20:f6:a8:13:34:aa:
48:59:08:41:18:e2:d6:59:a8:88:0e:ab:23:ee:11:
8e:47:63:70:e6:0b:e7:92:f9:c4:3a:3f:e9:56:78:
4c:47:25:bb:80:0d:38:bd:ab:aa:15:62:26:8c:23:
fd:fd:17:8a:a9:7d:6e:98:6a:52:65:9a:f3:e2:c0:
e6:7f:7c:15:3e:77:7c:02:4c:34:9e:3d:95:bc:7b:
fe:c8:57:5b:e9:f3:8c:96:fb:05:a5:2e:e9:c2:cd:
3b:ba:82:b6:d6:fc:75:5a:89:be:0b:4c:62:76:e5:
23:c6:9d:be:7c:f3:d7:2b:1f:ae:0a:e5:f4:a3:96:
c6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:27:08:CE:4B:7B:03:09:70:37:12:A0:84:38:31:DF:EE:B5:A0:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/104A553AA74111EF82638A41762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.160.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:11:d1:e8:7c:c9:ea:59:f7:8d:bd:9f:3a:f5:a6:80:60:9c:
b0:d3:b7:6a:a6:c0:16:1f:af:07:8a:67:e2:9c:ff:3a:09:94:
ca:76:49:23:ea:29:ec:42:1f:59:88:37:b9:0b:ab:ea:6b:be:
1b:0f:75:ec:bf:21:e4:ef:a2:6f:22:94:3b:87:e1:5b:8a:88:
ad:13:f9:c2:ac:05:a1:0b:a4:1d:8f:74:6f:38:96:77:b8:2b:
04:23:99:09:59:bf:25:ba:fb:65:96:67:ee:39:fe:51:2e:a6:
0a:b2:aa:9a:c6:f7:2d:6a:7b:a5:67:4c:41:87:37:db:8a:5a:
dd:fe:99:e5:11:87:55:e2:29:66:08:6f:41:19:5b:53:7b:40:
70:9f:48:a2:d2:0f:73:17:1a:20:a3:02:25:99:4d:01:78:f9:
fc:16:eb:72:ff:23:a3:f6:9e:85:84:41:6c:68:3f:5d:80:e2:
c1:d9:98:05:53:37:c3:e5:14:7e:88:9f:cd:de:87:c8:6f:39:
40:fb:8d:d0:82:c0:a7:f1:bb:ed:31:97:41:5b:3d:c9:4d:a6:
96:73:dd:89:76:24:14:3b:c8:01:c5:20:34:a0:16:83:2a:42:
ef:2d:c6:53:a0:6b:96:fe:4c:be:70:94:44:5a:d4:46:ea:02:
cf:8c:5e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:18 2024 by rpki-client on console-fra.rpki-client.org