Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CAF78AAA2C811EEBC749F2DD25BE465.roa
File: 2CAF78AAA2C811EEBC749F2DD25BE465.roa (raw, json)
Hash identifier: 0f642SnRBIfM+cB/UOMKDfTMcjzBF3bj6ZohPo3Kkkg=
Subject key identifier: 4C:4B:CB:1B:76:5C:9C:28:F8:D1:E7:10:BC:55:0D:44:44:D2:C7:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 58D8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CAF78AAA2C811EEBC749F2DD25BE465.roa
Signing time: Mon 25 Dec 2023 01:51:52 +0000
ROA not before: Mon 25 Dec 2023 01:51:49 +0000
ROA not after: Mon 13 Jan 2025 01:51:49 +0000
asID: 139057
IP address blocks: 156.225.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22744 (0x58d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 01:51:49 2023 GMT
Not After : Jan 13 01:51:49 2025 GMT
Subject: CN=6588e038-310f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:09:5a:a7:4f:cf:83:bf:04:66:d0:a0:8e:88:
88:fe:fb:ce:f5:b0:f0:da:48:f1:3c:85:71:ea:4a:
7b:86:da:ef:65:a7:92:fb:2d:dc:cb:9b:03:7b:a2:
78:a5:22:4c:99:5e:59:1f:5e:70:f2:56:43:ba:34:
98:82:2c:d8:cf:35:2f:d0:1b:3a:e6:07:11:dd:5c:
b4:8f:e2:f5:dd:9a:22:e1:45:27:50:a4:c4:04:4c:
23:54:e8:ec:64:6d:89:81:4a:81:71:51:92:b4:e7:
d0:6e:68:52:e2:c0:79:65:3f:a5:e4:ee:da:bf:73:
b9:79:b2:91:c3:ae:43:79:f0:85:ab:39:a4:ba:fe:
bd:31:2c:fe:89:c7:45:3b:82:93:db:79:cc:22:5f:
b2:4b:45:f0:21:ea:d0:79:c1:87:8a:c2:f9:be:6b:
5c:26:ae:ea:86:de:5c:75:e8:a0:c9:69:2a:97:cf:
d0:f6:27:de:1a:9f:48:e1:53:42:34:2e:a5:64:cb:
7f:50:6e:d1:01:82:8d:6b:24:fb:52:63:07:fb:76:
92:8e:72:ae:51:15:82:53:42:f8:1c:cd:0b:3b:aa:
ea:94:b0:18:c9:b0:bf:80:ef:6d:7b:ee:5b:40:02:
f4:14:29:34:f6:a0:d0:12:6a:00:74:51:ee:8b:e7:
ee:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:4B:CB:1B:76:5C:9C:28:F8:D1:E7:10:BC:55:0D:44:44:D2:C7:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CAF78AAA2C811EEBC749F2DD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.103.0/24
Signature Algorithm: sha256WithRSAEncryption
52:26:49:7b:c9:e2:da:93:d6:f5:b2:6b:83:2f:1c:18:ea:a8:
f5:67:e3:ee:eb:5b:a8:53:28:c4:79:08:51:9a:60:2a:35:50:
1a:8b:2c:bf:29:aa:bf:c9:5e:b0:36:9b:ea:5f:27:9a:ac:88:
13:17:dd:08:8d:78:a0:f0:f9:36:c4:d5:98:57:eb:88:c9:9e:
d7:b4:5a:ce:b9:2e:d2:75:ab:5d:15:eb:25:64:31:8b:3f:47:
e5:fb:8b:e9:90:37:27:65:1d:23:b1:ca:f4:07:0c:2d:fa:42:
62:d7:84:77:1d:c9:7b:99:54:90:9c:4a:fb:8f:68:b5:78:69:
f2:28:37:c8:68:2b:45:aa:30:b8:98:84:f7:98:34:f0:3c:78:
d2:6c:db:e6:05:db:4e:7b:ba:d6:e0:21:83:03:81:7d:f4:19:
a9:80:e5:d7:56:58:fd:1d:9f:91:b2:e2:ce:9e:ef:71:01:8c:
b9:7d:73:ab:eb:11:2a:cc:d8:d9:ad:36:0e:21:eb:ee:54:37:
d1:aa:c4:31:ea:89:95:a1:73:f8:fe:1d:c2:f6:5a:07:b2:43:
a7:89:92:cb:19:11:a3:e5:bf:8b:3f:65:68:b0:d0:64:25:ed:
d9:7e:a3:0a:34:e7:f7:e6:e2:c3:05:69:cf:f7:17:2f:a2:ff:
af:d0:30:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 01:58:02 2024 by rpki-client on console-fra.rpki-client.org