Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/190D006A9AB111EFAA360287762E951A.roa
File: 190D006A9AB111EFAA360287762E951A.roa (raw, json)
Hash identifier: 1ZRr7ZmlJS7fGC7vo8qDo6TZjKYGPcOEEuT4asTLm6M=
Subject key identifier: 9A:E9:D6:C8:8D:28:15:CB:45:93:BF:DF:0A:EC:C4:EE:7F:C4:A0:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CDC8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/190D006A9AB111EFAA360287762E951A.roa
Signing time: Mon 04 Nov 2024 13:31:29 +0000
ROA not before: Mon 04 Nov 2024 13:31:26 +0000
ROA not after: Tue 03 Dec 2024 13:31:26 +0000
asID: 139646
IP address blocks: 156.255.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52680 (0xcdc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 13:31:26 2024 GMT
Not After : Dec 3 13:31:26 2024 GMT
Subject: CN=6728ccb1-803b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:de:29:46:eb:18:45:2b:fb:91:bd:75:4d:1b:
9e:cd:4d:f4:fd:97:b3:f9:aa:2a:27:13:98:7c:32:
07:3e:b1:a6:a2:f3:c4:0e:97:49:30:d6:ad:66:77:
91:1f:b6:ba:ab:fd:8c:9e:62:63:a2:67:71:1f:39:
88:1b:8a:5a:e6:c6:9c:09:1e:a2:24:2d:c8:0c:05:
69:3e:6d:da:30:f8:a8:60:00:65:bd:90:2f:d9:b9:
bc:55:17:ad:a4:a8:b2:2f:39:f4:e3:39:8c:7f:4e:
66:bc:48:36:cb:23:7f:7e:76:0e:40:ed:9c:ca:eb:
12:29:b5:2a:a2:26:5d:21:30:59:4d:20:8d:f3:07:
6a:d8:66:3b:5e:ab:17:fc:44:c3:fb:70:67:52:b2:
13:ec:93:0f:c4:15:0d:ad:13:09:eb:97:17:05:40:
68:a4:c2:b0:f4:5a:f3:c0:98:38:a5:67:f8:47:ec:
8e:75:2e:41:57:a9:9b:c2:95:d9:8b:ee:8c:e6:c0:
aa:59:55:a6:ab:b3:7f:ed:ae:25:32:da:17:4d:26:
2e:68:c1:5b:b3:54:24:c5:1e:fd:fa:02:fe:06:8a:
7d:90:d6:ee:19:2f:ba:44:d0:59:d9:5b:3b:36:5b:
58:ab:46:ad:2a:5e:eb:3d:ff:18:d6:62:61:01:2d:
2a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E9:D6:C8:8D:28:15:CB:45:93:BF:DF:0A:EC:C4:EE:7F:C4:A0:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/190D006A9AB111EFAA360287762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.0.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:48:95:e5:42:3f:a7:ed:69:37:88:6a:6d:48:c2:bf:27:6b:
0a:a9:3d:f5:97:14:16:a0:a0:60:25:78:4d:32:91:9b:65:aa:
6f:75:3d:8a:98:30:5e:a7:2c:49:c9:cd:1b:43:4a:67:58:91:
85:a3:88:0b:80:0e:79:d2:42:52:6e:a8:b2:1c:05:d4:1f:d2:
2a:e9:21:1e:b0:75:bb:1b:27:ef:90:c5:7f:aa:56:b0:19:da:
f4:cd:0e:5f:83:76:c1:4b:68:3d:24:4b:0c:82:e0:73:7a:6b:
a7:9d:27:90:d6:fc:ed:d7:45:cf:7c:b7:75:71:be:b6:5a:31:
a5:8c:05:b1:7f:2f:c4:dc:80:63:7f:fa:e5:b7:46:9f:e4:be:
35:12:b8:29:19:6e:4d:59:72:c0:0f:3e:63:7e:e5:0a:16:cb:
1a:29:cc:e9:f8:f5:6c:85:49:ae:7c:3d:7d:2f:10:58:dc:0e:
1b:43:73:c8:83:d1:00:3e:52:d5:c3:29:a3:ff:ec:47:07:38:
4e:0a:e4:7e:2d:97:2e:17:4f:a1:db:46:eb:c7:70:7e:fe:b4:
eb:44:c8:be:f3:c9:77:b7:29:7b:30:f9:01:8f:ca:a8:da:0b:
57:6b:25:b5:06:5c:d8:6f:8a:df:b7:14:1a:c3:63:66:31:be:
fb:b6:94:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:20 2024 by rpki-client on console-fra.rpki-client.org