Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1676718091E011EFBE202173762E951A.roa
File: 1676718091E011EFBE202173762E951A.roa (raw, json)
Hash identifier: QyqaEV/blRvzTZnTyjwj9aYK/g0HVv4z117w+14QRDI=
Subject key identifier: 5D:D4:BF:8C:12:01:BB:18:DF:5E:04:9B:5F:FE:EF:18:00:0C:AE:AC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C838
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1676718091E011EFBE202173762E951A.roa
Signing time: Thu 24 Oct 2024 08:15:11 +0000
ROA not before: Thu 24 Oct 2024 08:15:07 +0000
ROA not after: Sun 29 Dec 2024 08:15:07 +0000
asID: 134823
IP address blocks: 156.234.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51256 (0xc838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 24 08:15:07 2024 GMT
Not After : Dec 29 08:15:07 2024 GMT
Subject: CN=671a020f-8e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2e:07:ca:b5:e5:f2:00:82:0f:02:06:69:c9:
54:ff:56:a9:10:ea:fb:65:22:c8:47:76:e0:14:f3:
9d:2f:b0:d2:4a:cb:97:df:99:04:58:b4:d0:d1:2e:
b2:eb:88:7d:30:a4:25:b0:44:80:ea:cd:2b:e7:f9:
8d:f6:aa:49:35:e8:cc:f0:7b:f5:92:ca:88:2f:96:
29:ac:1e:c8:6a:f4:f4:f1:2c:0e:15:63:a8:9f:98:
9a:51:d2:76:1b:e7:eb:a6:c4:5b:7c:25:00:cc:d2:
b6:d0:bb:e5:e8:71:a4:61:7c:9c:d5:cb:48:a4:1f:
a5:a6:9a:a5:a9:e4:81:b4:25:17:a2:67:1e:0d:de:
ae:49:d1:17:c1:fd:07:94:82:42:88:04:9e:5d:ad:
14:a7:36:8f:9b:84:49:be:88:64:84:c7:c2:19:a2:
fe:24:e3:34:45:de:7f:8d:30:61:7d:15:ec:96:cf:
12:46:40:d5:0b:eb:ad:d9:6a:4d:30:78:15:22:0f:
e6:28:94:d1:66:84:1b:f3:16:8a:02:44:2c:92:f4:
72:d0:71:12:48:be:77:6b:dc:0b:80:52:51:9d:1b:
5a:6e:45:fe:13:64:b0:89:a0:78:22:da:b8:76:28:
d5:91:86:cb:df:2d:3d:ff:50:61:1a:6f:b5:b0:e3:
38:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D4:BF:8C:12:01:BB:18:DF:5E:04:9B:5F:FE:EF:18:00:0C:AE:AC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1676718091E011EFBE202173762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:da:f3:c3:be:6a:9a:ab:74:86:f0:41:18:c2:06:87:f8:3c:
44:c5:a3:2c:3c:10:e4:2c:4b:7b:5b:8e:8b:96:e9:a9:44:3f:
f2:5b:ef:b7:3b:21:6d:02:25:69:58:54:b3:f5:6f:df:82:67:
b8:b8:a8:2e:d5:de:94:e7:a2:ca:52:70:80:e3:0b:83:00:2e:
e2:69:c7:20:12:b2:75:d1:11:8f:85:80:6b:b9:ea:b1:ca:c7:
2d:eb:e7:b5:a8:6c:c6:10:bf:3e:4b:32:77:ed:c4:af:c8:c0:
3a:87:a6:fc:06:4f:bc:be:95:6e:ef:23:4c:11:07:14:ad:2d:
3e:ce:2a:61:3f:dd:57:02:e2:e5:40:ca:bf:47:d6:97:1e:20:
7c:72:64:b5:e1:cf:d9:7f:2c:aa:ba:54:88:52:80:25:98:b4:
11:3f:f7:ae:0e:f0:e6:b8:04:45:06:83:1a:4e:44:3f:c2:f1:
24:98:fd:84:2b:7d:42:30:d5:dc:75:8c:f8:fd:a9:dc:d3:d8:
52:53:b9:d6:2f:ae:c3:51:2b:7e:dc:d6:7d:b0:a1:b4:bb:d2:
26:63:46:ab:5f:8b:a2:6e:6a:b0:05:1f:d2:83:c3:85:dc:4d:
49:91:59:62:e3:4e:39:71:a3:14:99:83:77:5a:14:54:f7:2c:
7b:e4:63:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:20 2024 by rpki-client on console-ams.rpki-client.org