Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30C79B90A2CB11EE933F7136D25BE465.roa
File: 30C79B90A2CB11EE933F7136D25BE465.roa (raw, json)
Hash identifier: JcS1ceoo7gipCsMGFvHhzUidhxbAtos6V8gcNIZzndk=
Subject key identifier: 58:1F:1A:B2:20:5F:0B:F3:EE:2C:14:83:24:88:2B:ED:B4:87:2D:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 58FA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30C79B90A2CB11EE933F7136D25BE465.roa
Signing time: Mon 25 Dec 2023 02:13:27 +0000
ROA not before: Mon 25 Dec 2023 02:13:24 +0000
ROA not after: Mon 13 Jan 2025 02:13:24 +0000
asID: 139057
IP address blocks: 156.251.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22778 (0x58fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 02:13:24 2023 GMT
Not After : Jan 13 02:13:24 2025 GMT
Subject: CN=6588e547-1f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dd:50:62:d5:de:a1:0a:40:b9:cb:82:cc:8c:
83:67:3b:50:fa:5b:bd:51:f7:aa:a9:a0:f2:1f:c5:
a8:9c:b6:c6:14:82:67:97:f1:63:b0:4d:75:31:7f:
f7:b5:2d:8e:d9:b0:fc:0e:a5:18:d3:61:58:35:c2:
e2:ba:58:ad:1b:5c:83:64:a3:98:ef:c0:d4:bf:f4:
98:07:cc:2e:df:ac:22:4c:22:89:d3:50:53:70:8b:
2f:95:e5:2f:4a:0b:12:e4:6a:78:9e:fe:e2:88:49:
9a:a0:33:66:3d:c3:f8:a2:93:4b:95:e3:a3:96:df:
37:1c:e7:6d:84:61:f0:d1:18:13:75:97:d1:33:d7:
04:2e:3f:b1:02:38:18:5b:35:bb:45:8e:52:f6:98:
ad:ef:41:8a:7d:62:18:e8:d9:74:39:fc:11:97:07:
7a:02:58:2e:bd:16:e4:67:23:75:32:86:06:f3:5f:
72:cc:ce:0b:91:62:3d:e3:3d:9b:9e:de:a4:ff:00:
11:ae:ab:88:08:4e:cf:8b:52:fe:0f:aa:e4:21:90:
97:d7:91:de:9d:7c:4d:85:07:a4:ff:a6:23:26:11:
36:8e:f6:39:5b:af:93:4f:3c:fb:f5:46:3a:17:93:
30:b8:62:a2:f1:6a:c2:79:58:d5:e0:06:62:9e:48:
4f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1F:1A:B2:20:5F:0B:F3:EE:2C:14:83:24:88:2B:ED:B4:87:2D:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30C79B90A2CB11EE933F7136D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.67.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:3f:01:b0:f1:75:c1:09:35:a1:40:27:19:a1:74:1c:fb:e8:
ce:30:19:73:a0:b5:6b:28:60:87:e8:c4:3b:0a:9b:9f:a4:2d:
93:a0:e9:a4:88:49:b8:04:60:c3:71:73:87:05:79:47:18:aa:
43:d0:87:6d:64:eb:03:0b:52:3e:a5:98:b5:86:c0:da:9a:34:
69:8d:a1:b2:a3:58:bb:58:f6:ff:6f:2b:bc:d3:aa:f7:86:f3:
b6:61:e1:f8:fb:ba:85:f8:ba:f8:9c:d7:2a:4a:57:5d:f3:c5:
54:7c:90:6f:b9:ff:46:32:42:29:cb:62:c9:94:15:59:7c:69:
db:17:2f:83:66:25:72:6a:0c:a2:37:5b:11:eb:26:6a:79:e0:
01:18:9c:8a:c7:7a:c4:75:4a:a6:90:29:04:11:42:b4:d6:4e:
12:63:4a:87:69:ff:a1:9d:90:85:65:e8:11:5e:18:b0:30:12:
9d:59:32:6a:2e:0f:03:90:c0:98:1b:bd:78:4a:bf:94:95:91:
47:5b:b1:2d:fd:ee:39:73:5e:ba:ed:b1:29:a2:ee:d2:e4:49:
ed:f0:5b:e6:1b:e9:e1:21:3a:1d:76:22:15:44:51:33:d9:bd:
f0:0e:b7:24:6a:cf:96:24:a1:0a:2b:52:fd:21:39:03:5c:98:
1d:78:7a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org