Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30FE8C32030011EF9761FF5A017001B1.roa
File: 30FE8C32030011EF9761FF5A017001B1.roa (raw, json)
Hash identifier: Y5HxhX7a29KEQNkHrdkmPUvQSP09EbIDImRyvLQh6Us=
Subject key identifier: E3:B2:FD:FD:C4:B8:7E:AE:B9:2F:F7:CF:DE:75:1E:4E:E3:F4:6B:6A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8549
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30FE8C32030011EF9761FF5A017001B1.roa
Signing time: Thu 25 Apr 2024 12:34:43 +0000
ROA not before: Thu 25 Apr 2024 12:34:39 +0000
ROA not after: Mon 06 May 2024 12:34:39 +0000
asID: 5065
IP address blocks: 156.252.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 12:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34121 (0x8549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 12:34:39 2024 GMT
Not After : May 6 12:34:39 2024 GMT
Subject: CN=662a4de3-e211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0d:f2:f5:f2:fe:08:d1:dd:ef:94:42:08:bc:
fc:89:c4:e9:35:be:28:85:a0:d5:15:07:6a:72:cb:
1a:66:32:9f:7c:f9:1b:23:aa:14:eb:c7:11:db:b6:
94:ed:c6:e3:b9:ff:04:fe:d0:84:4a:1f:2b:d3:c0:
ad:e8:12:95:45:c2:54:a1:dc:57:af:7a:39:ec:86:
b0:2a:f1:bf:8c:54:cd:b6:c5:38:c4:c6:29:e5:c8:
52:35:16:ec:c6:91:99:38:7a:e9:ee:6b:5d:ef:31:
c4:40:13:28:47:d6:8e:a8:4b:1b:b1:40:08:9e:ce:
2d:b3:6a:c2:a4:c2:ad:6b:8b:d6:54:1b:29:58:f1:
6c:f5:5d:e4:4b:86:71:7c:72:6e:97:11:b5:b8:55:
cc:9e:70:15:b6:63:b8:0a:c2:44:73:ec:75:4c:3b:
05:0c:94:5a:9f:f9:a6:c3:ee:7a:8e:82:58:6c:13:
31:6a:2e:b1:b4:32:e4:3f:b0:14:e5:5c:2a:50:02:
31:f0:f5:bb:41:a3:92:3f:da:1b:9b:1d:83:42:49:
b2:22:03:87:32:64:2a:0d:83:de:28:c5:10:65:82:
ac:98:94:46:6c:e8:da:a1:33:59:95:14:2a:5e:c2:
c1:3b:6c:47:42:8b:e6:4c:ab:13:65:13:fe:e2:e2:
4f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B2:FD:FD:C4:B8:7E:AE:B9:2F:F7:CF:DE:75:1E:4E:E3:F4:6B:6A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30FE8C32030011EF9761FF5A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.24.0/22
Signature Algorithm: sha256WithRSAEncryption
35:6d:47:30:29:20:1a:e1:4c:3e:c5:41:dd:c9:5c:fa:aa:18:
ca:05:3b:8b:b4:33:07:11:d1:44:de:ea:03:7f:df:ad:6d:cd:
24:cf:1a:0c:81:8a:08:86:26:e6:bd:58:36:e6:1b:3b:21:4e:
66:08:8b:24:63:68:ce:a9:da:2b:95:f6:46:7b:a7:53:32:76:
de:02:fc:f0:e5:c8:8c:27:7c:5d:18:02:61:0b:3d:17:fa:e7:
6f:28:ae:44:16:31:06:5c:69:25:e3:8f:9a:e7:22:86:37:03:
fe:90:8b:89:e5:71:72:91:dc:e6:bf:49:ae:5e:85:b9:63:c7:
d7:d8:88:d2:98:cc:fd:7e:f1:ae:6f:4b:9c:c9:0f:93:db:80:
80:b9:df:35:9c:66:51:b2:9e:14:1f:2d:32:f6:04:ef:e2:b1:
d6:f0:fe:33:ed:bb:38:95:b8:65:f6:6a:f9:e2:0c:88:b7:73:
cf:02:12:22:84:5c:d7:bd:86:93:fa:25:48:82:47:31:f6:6a:
4a:c5:12:21:3f:72:b5:0b:68:c6:fa:b6:ec:0a:c4:8a:18:99:
42:be:c3:94:82:91:5c:9d:54:72:14:61:e0:18:38:9e:a9:f2:
91:c8:66:02:51:06:b9:9c:e3:d8:5d:43:c6:11:57:95:69:22:
fe:cb:7c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org