Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BE39FC044D811EF8216A975762E951A.roa
File: 2BE39FC044D811EF8216A975762E951A.roa (raw, json)
Hash identifier: pQAksc3nH5TwJN8FJogXkDALEcR4xAW953UH+8W/v1Y=
Subject key identifier: EF:05:20:0E:5D:E1:1A:F9:17:0C:80:CA:D2:75:3C:7E:E4:C9:CD:B6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D49
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BE39FC044D811EF8216A975762E951A.roa
Signing time: Thu 18 Jul 2024 07:34:31 +0000
ROA not before: Thu 18 Jul 2024 07:34:28 +0000
ROA not after: Sat 28 Sep 2024 07:34:28 +0000
asID: 132839
IP address blocks: 156.242.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Sep 2024 00:16:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40265 (0x9d49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 18 07:34:28 2024 GMT
Not After : Sep 28 07:34:28 2024 GMT
Subject: CN=6698c587-527c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6e:ef:e0:76:c4:57:e7:5e:02:c7:06:b0:ed:
fd:18:ec:66:ec:d7:fe:25:04:58:8c:c1:cd:5d:6f:
c6:5b:1f:08:23:bf:93:3b:3d:77:63:2e:b5:3b:1c:
a0:3a:d8:fe:de:20:96:da:15:bd:b1:e7:2e:22:e3:
07:11:96:59:86:ac:58:94:a5:95:6f:5f:ab:c4:7b:
c7:c4:22:5b:64:71:02:3a:60:38:96:59:f5:00:df:
2f:87:ff:e3:20:35:52:15:fe:ca:b7:81:52:3f:76:
c7:a7:ca:26:7e:59:cd:0c:16:41:11:91:ba:1f:72:
7d:bd:a4:07:8f:2d:96:95:86:6e:df:b8:72:0e:52:
c1:08:eb:84:a5:e1:ec:69:d9:01:99:86:c2:8d:56:
71:a6:6a:08:db:cd:bd:0d:23:f1:4b:fe:62:5b:c8:
cc:6b:3b:3d:f9:4a:b9:e0:89:04:84:7f:29:14:39:
ec:be:a7:68:c4:36:f7:f5:c1:a3:63:26:b9:72:52:
53:a3:5a:e7:15:d2:f3:bf:48:6f:d0:52:6f:35:5d:
38:24:58:40:9e:24:f0:5d:d9:52:7f:b4:51:5c:8a:
52:db:98:a2:c1:6d:49:8c:aa:ba:15:fe:12:6d:1a:
b8:6c:05:38:c6:60:ed:4a:93:a3:48:8b:74:00:4b:
29:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:05:20:0E:5D:E1:1A:F9:17:0C:80:CA:D2:75:3C:7E:E4:C9:CD:B6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BE39FC044D811EF8216A975762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.160.0/19
Signature Algorithm: sha256WithRSAEncryption
58:7d:dd:7d:fa:d3:9e:46:0a:69:11:86:32:b6:25:c2:6c:fb:
6e:38:8b:48:47:54:2f:47:e7:85:1c:49:aa:14:5d:af:b7:6d:
22:df:42:f1:97:32:9e:f2:e6:45:ff:f6:f2:ae:cd:ae:2a:a9:
15:50:e1:8d:b1:e4:03:0f:71:e6:ad:33:e5:87:9c:9f:77:1a:
b0:82:73:76:dd:7c:f9:a7:93:b7:d5:23:ad:2f:a9:54:e7:5c:
d4:8a:3c:e0:35:fe:48:5b:d4:f5:c7:fa:e7:d1:67:4c:81:ad:
67:33:06:11:cf:ee:49:ca:df:4d:10:07:f9:3d:93:0d:91:b3:
24:a8:36:a1:1b:ad:75:46:6d:ab:c7:e9:e6:97:42:38:69:22:
dc:ff:19:87:1f:97:d9:21:b8:d4:dd:13:8c:c5:3a:2c:d2:e2:
91:64:ef:61:b3:28:20:80:6a:70:45:13:cf:50:54:5d:99:e0:
7e:ff:0c:bb:80:34:19:92:7f:dd:56:73:a9:05:07:79:93:2c:
d8:74:ba:ad:6d:2e:3e:d8:43:89:6f:11:d0:b3:a2:9a:fc:bd:
b2:32:b1:f9:35:5f:07:29:a4:b6:c9:35:fa:13:00:0e:9b:92:
72:cd:00:79:e6:aa:b9:09:f5:a4:f3:09:72:e5:5f:0c:4a:08:
83:f1:19:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 10:38:29 2024 by rpki-client on console-fra.rpki-client.org