Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1521745008EE11EE9AE934124AD9E6FC.roa
File: 1521745008EE11EE9AE934124AD9E6FC.roa (raw, json)
Hash identifier: uFI799V2/9MHkjiUp/RWYWJyQHR7CFbrhSeYsjdFH48=
Subject key identifier: 4E:E4:BF:D6:B4:C8:DD:18:5F:DB:31:B8:E9:8F:C7:C3:2C:BB:80:72
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AAB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1521745008EE11EE9AE934124AD9E6FC.roa
Signing time: Mon 12 Jun 2023 06:55:14 +0000
ROA not before: Mon 12 Jun 2023 06:55:11 +0000
ROA not after: Tue 28 May 2024 06:55:11 +0000
asID: 212552
IP address blocks: 156.255.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10923 (0x2aab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 06:55:11 2023 GMT
Not After : May 28 06:55:11 2024 GMT
Subject: CN=6486c152-575f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:bf:07:9b:6a:29:bd:ca:95:af:c1:d4:c7:16:
7f:7f:38:de:98:b7:a9:10:e7:7f:9e:72:c0:29:3e:
e9:cf:2c:4c:1a:d3:1a:55:d0:dd:21:53:80:2b:6f:
35:8d:b8:13:ab:69:d5:2c:a6:2c:9d:52:26:df:49:
a8:e2:07:f3:8e:a5:bf:a7:14:7b:32:98:03:43:4e:
87:d3:2a:23:16:d9:25:9a:cd:6c:b3:4b:92:c7:4a:
e6:69:a8:f7:5d:79:d2:86:f1:fd:77:cb:05:fd:74:
7b:7b:b2:7e:13:e0:09:74:37:68:34:10:12:a1:97:
76:14:f7:4c:1c:19:73:87:60:00:58:de:fc:d7:a9:
27:5a:ba:92:a2:fb:a0:77:0e:17:26:a0:d1:08:65:
0f:a7:81:a4:5e:ff:4f:7d:c4:82:d0:35:5d:9f:45:
25:38:18:09:eb:5d:30:56:d7:9d:b9:9f:b1:b4:c3:
e9:1a:a2:c1:dd:e3:ae:9e:dd:70:80:bb:c8:a1:a2:
a8:c5:0d:e1:a1:19:bd:1a:69:61:29:ce:38:17:49:
31:6a:7b:e2:fc:7b:5f:34:44:d9:ec:50:55:1c:74:
8a:cb:75:59:84:72:fb:b1:31:5a:a9:6c:09:a1:e6:
fa:45:af:3a:93:57:e8:e1:a0:e7:c7:9c:ff:ba:be:
10:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E4:BF:D6:B4:C8:DD:18:5F:DB:31:B8:E9:8F:C7:C3:2C:BB:80:72
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1521745008EE11EE9AE934124AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.1.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:e4:a6:e1:93:a0:2e:34:d9:7f:3d:8f:56:eb:ce:98:5d:16:
18:c1:58:4e:1d:15:03:17:b7:56:24:cb:11:fe:c9:49:6a:b1:
e6:f0:a4:55:f2:f2:f1:18:46:74:b9:db:3c:3e:fd:3c:ae:a4:
a9:2e:3f:9f:8e:26:55:72:50:3b:c4:17:49:a0:ea:d0:f3:b3:
79:77:b6:f9:a1:f5:88:6e:08:34:90:c3:a2:93:3b:30:b4:81:
c4:bf:9c:9d:c6:f3:ed:b4:b6:19:cf:41:08:60:a6:c5:7e:5c:
bc:da:fb:dc:d3:35:64:6c:9b:f1:de:28:48:4f:1f:72:7f:2f:
ac:58:2f:9b:a9:61:3e:63:b1:39:7d:75:89:bc:6b:43:79:e1:
89:f4:d3:6c:57:c5:36:91:47:de:aa:4d:8c:d3:8d:1d:e8:2b:
76:fc:2d:bf:79:f6:b2:02:19:16:10:b9:0e:68:7b:b4:7c:5d:
f1:91:9e:9b:40:c1:d5:96:ec:d6:f8:e2:ce:30:8f:3c:c2:84:
3e:80:f3:fb:7f:c9:ad:7f:1d:3d:92:42:f2:2f:e2:31:33:8c:
15:db:ec:6b:08:d4:23:91:59:27:8b:f5:5e:02:72:a5:82:0b:
00:6b:ba:af:b2:87:2f:d5:65:0d:9e:73:78:5f:9a:f6:3d:f1:
71:f0:0b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:05 2024 by rpki-client on console-fra.rpki-client.org