Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29FCF6AEA4BC11EFA2A56575762E951A.roa
File: 29FCF6AEA4BC11EFA2A56575762E951A.roa (raw, json)
Hash identifier: CNWAM7viH+BUkIjxRdfNauGgqP1/ZsgRxRdB0cQJPEg=
Subject key identifier: C4:A2:38:4F:8E:D7:4D:10:D7:77:AE:6E:DB:5A:3E:C6:A3:C3:05:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D459
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29FCF6AEA4BC11EFA2A56575762E951A.roa
Signing time: Sun 17 Nov 2024 08:15:54 +0000
ROA not before: Sun 17 Nov 2024 08:15:50 +0000
ROA not after: Wed 18 Dec 2024 08:15:50 +0000
asID: 213993
IP address blocks: 156.253.234.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54361 (0xd459)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 08:15:50 2024 GMT
Not After : Dec 18 08:15:50 2024 GMT
Subject: CN=6739a63a-84bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:05:c9:00:b4:d1:ac:77:19:a9:34:65:22:19:
78:bb:ba:d1:9f:b8:27:66:ce:bc:1c:15:67:26:76:
ea:28:67:34:02:a9:e1:54:d9:07:a1:51:fb:4e:1f:
69:94:a9:37:b7:f9:f5:51:71:08:a7:fc:6d:10:0c:
a1:40:b4:af:55:57:7c:b3:3e:fa:d1:da:ce:cb:2d:
ee:4e:ce:de:a7:a1:61:4f:4b:c6:c5:26:47:2e:07:
37:4d:6f:f4:32:c6:94:94:16:46:8e:e7:71:59:3d:
ee:8a:ce:93:3c:08:b3:60:88:ad:5d:21:fd:fd:3d:
c8:b6:1c:22:65:cc:99:78:ae:80:c4:3b:6d:98:e0:
77:d8:60:3a:e4:57:62:86:c8:1f:ac:f7:ec:4d:60:
fe:f7:f3:3a:23:ac:9a:aa:10:58:78:6e:74:e4:5b:
4d:48:58:f7:17:3a:b4:f3:a3:b8:f6:8c:05:42:93:
1b:e2:af:39:e8:e9:d5:eb:ac:68:82:45:79:0a:37:
02:da:5b:08:9b:24:39:58:7a:e2:6d:d8:dd:76:c2:
37:9b:b3:a9:ef:4a:5a:08:dd:ce:f8:34:d5:b6:9d:
23:74:83:c6:e5:f2:d3:f0:c5:12:7b:89:bf:29:47:
98:ac:4d:7d:8e:e6:80:0b:48:f7:01:5a:d7:03:11:
b3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A2:38:4F:8E:D7:4D:10:D7:77:AE:6E:DB:5A:3E:C6:A3:C3:05:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29FCF6AEA4BC11EFA2A56575762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.234.0/23
Signature Algorithm: sha256WithRSAEncryption
69:23:a0:51:ce:fb:44:ed:f2:81:c1:73:3f:38:0b:47:b1:b5:
5e:dc:a8:16:56:ff:fc:2a:47:a2:4e:27:b8:63:63:41:b7:44:
09:ac:ab:42:da:53:fa:2e:43:e3:63:0d:2e:92:1a:99:ff:12:
2f:fc:ca:e1:27:a0:1a:e5:79:c3:5b:9f:21:08:e0:3a:14:7a:
21:21:9b:80:8d:3f:73:e0:1a:c2:7a:48:c1:91:e2:15:d8:0f:
bc:cb:aa:6b:e8:66:d1:f9:f3:70:44:72:61:fe:89:2e:d0:37:
1e:aa:0a:3a:60:d4:e1:09:a3:38:47:54:e1:90:20:00:2c:cf:
7d:cb:fd:26:22:77:2a:a1:0c:1d:d2:3e:cb:50:79:30:6e:cb:
66:4c:6e:05:b6:9e:d7:b3:f2:b8:93:82:3a:12:d0:a8:fb:43:
24:75:47:97:8b:97:ce:63:53:d1:dd:5a:76:49:a8:db:c2:c5:
41:1f:36:af:fe:10:d5:7f:01:53:f2:25:79:7e:c2:00:90:aa:
67:86:0a:a6:a1:0b:71:0c:98:e1:98:da:8a:2a:2f:6d:ba:1a:
cb:20:e0:54:20:00:f8:07:52:7e:9a:74:f5:d3:37:45:77:95:
77:29:35:e1:95:58:26:ba:10:8c:54:f0:4e:0f:57:a8:f9:75:
69:b9:ac:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:24 2024 by rpki-client on console-ams.rpki-client.org