Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18C92C109B8711EF9B9EAE4D762E951A.roa
File: 18C92C109B8711EF9B9EAE4D762E951A.roa (raw, json)
Hash identifier: PuU0/QE8V04BflUVhq4dhdgX8493j/vVJxQDG/wPbjw=
Subject key identifier: 5A:02:22:C1:74:1E:9D:27:23:E4:6D:AC:7D:3B:33:89:EB:FB:8D:6A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CEC1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18C92C109B8711EF9B9EAE4D762E951A.roa
Signing time: Tue 05 Nov 2024 15:03:21 +0000
ROA not before: Tue 05 Nov 2024 15:03:17 +0000
ROA not after: Sat 08 Feb 2025 15:03:17 +0000
asID: 21859
IP address blocks: 156.238.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52929 (0xcec1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 15:03:17 2024 GMT
Not After : Feb 8 15:03:17 2025 GMT
Subject: CN=672a33b9-1e53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d5:47:13:98:ad:07:24:22:2e:d1:66:36:70:
32:49:b1:a1:55:c6:f3:b5:36:0e:f8:51:a8:4f:11:
10:eb:60:28:29:a4:2b:6b:fd:39:70:8a:5e:6e:9b:
5d:99:2f:21:e0:e0:f3:59:b4:9c:1d:18:ce:5a:cc:
a6:07:20:35:ae:9e:44:c6:74:3f:c4:45:b1:44:65:
a6:cc:4a:52:6b:98:02:e5:5a:e1:6d:bf:83:c0:c8:
7a:5b:85:da:81:cb:84:c0:8d:f6:17:09:9c:81:73:
69:55:98:40:be:4c:15:64:dd:a3:22:be:2a:24:3c:
70:43:0f:71:98:8b:57:b4:00:72:4f:e4:30:d1:8a:
6d:74:c0:83:a6:30:23:4c:77:26:2c:d0:f4:08:f2:
14:50:2e:1f:2f:19:f8:cd:72:1a:ab:cd:d8:95:d9:
d2:b6:12:8a:02:16:0b:b4:c6:52:d3:a5:38:a7:72:
69:ee:0a:64:c5:fd:b3:e7:45:db:1d:22:1b:d4:9d:
b4:e4:62:46:32:21:1c:87:d1:c3:a0:50:fe:75:4e:
fe:96:40:36:c2:3b:0f:eb:b5:e6:2d:dd:99:31:e5:
9e:3c:17:fc:89:cb:6e:e0:6f:17:a9:93:3a:5a:d8:
95:1d:f7:0a:3a:57:2f:5e:13:4c:9c:e5:a5:ed:14:
a1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:02:22:C1:74:1E:9D:27:23:E4:6D:AC:7D:3B:33:89:EB:FB:8D:6A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18C92C109B8711EF9B9EAE4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.113.0/24
Signature Algorithm: sha256WithRSAEncryption
61:62:24:89:41:09:f5:1a:af:13:2b:28:8e:c9:ae:a8:49:6c:
ff:03:74:c8:2a:15:ae:62:97:c0:f7:15:ba:10:2e:0b:08:ab:
fa:ca:5d:dd:82:89:1b:e0:8b:27:97:0f:ec:3b:4b:9a:11:0c:
ed:f2:5c:7b:9d:71:2e:fd:eb:8f:fa:75:41:b7:f9:da:99:48:
9a:04:67:b3:38:a1:67:10:50:9f:75:18:d2:08:f6:a1:9e:40:
2f:72:78:8c:11:13:cf:ff:fe:ba:72:a7:4b:f2:55:0e:f1:50:
2a:36:23:d0:74:70:5e:b7:88:08:bc:41:54:0a:b5:25:02:53:
7e:53:08:d1:6a:f9:54:8d:e0:78:c3:22:87:78:17:7f:ef:b1:
fd:e2:a5:2c:05:18:6c:97:bc:36:c2:fc:d8:1c:38:0a:01:10:
6c:46:ef:db:87:db:96:03:38:fe:7b:d4:de:0c:f5:95:49:d4:
b1:fe:0c:29:2f:fd:02:eb:70:dd:68:c8:8a:ee:f7:ff:7d:13:
d5:52:0d:ba:e8:e7:e4:f4:9e:82:62:90:2b:1d:5d:ba:f4:da:
f8:b9:3d:c6:a0:6c:a7:33:90:ef:53:af:bc:06:6d:38:0a:b6:
1f:c1:ce:1e:51:da:df:57:70:e0:8d:57:17:16:ed:14:d9:ed:
07:9a:f2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:21 2024 by rpki-client on console-ams.rpki-client.org