Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/362A8DA45EF011EF9597B88B762E951A.roa
File: 362A8DA45EF011EF9597B88B762E951A.roa (raw, json)
Hash identifier: vmK5JJjKHhSpGGv8uuXyC2oNmNWI90akfoHKFJHzjhA=
Subject key identifier: D6:02:B0:1E:BD:3B:53:5F:5D:B3:A1:16:F8:0A:0A:87:4F:05:52:16
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9D2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/362A8DA45EF011EF9597B88B762E951A.roa
Signing time: Tue 20 Aug 2024 12:32:07 +0000
ROA not before: Tue 20 Aug 2024 12:32:03 +0000
ROA not after: Tue 27 May 2025 12:32:03 +0000
asID: 399077
IP address blocks: 156.251.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43474 (0xa9d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:32:03 2024 GMT
Not After : May 27 12:32:03 2025 GMT
Subject: CN=66c48cc6-8b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:be:2a:0f:4a:1d:d5:bd:66:bf:33:79:48:fc:
4c:39:06:f6:79:2e:54:cc:4c:67:c9:52:9c:fc:49:
2d:23:a7:0b:2c:6b:72:97:73:5a:5e:84:c7:24:de:
7f:1e:58:0f:e2:4f:04:f6:5b:de:8a:cf:59:38:7a:
e6:97:67:23:58:50:62:fc:73:71:0e:8a:43:57:2f:
78:77:2f:77:a5:99:bc:f3:a7:0f:ce:cc:91:d0:6f:
be:cb:5f:66:9a:6b:1d:7c:c3:af:26:9e:c5:e1:9c:
3c:b4:7e:13:62:f4:a5:08:05:22:bd:2b:fd:81:13:
e0:83:fe:ab:55:43:cb:55:1d:49:97:54:70:cc:46:
a4:67:be:ab:22:0e:ed:6f:70:0f:e2:ef:6a:a5:dc:
03:ed:b3:01:a8:18:42:53:c0:25:dc:fc:6b:41:e6:
f5:fb:88:b8:73:af:d9:f7:ea:e7:82:ea:9f:b9:bc:
ba:74:ce:05:40:91:1c:4c:70:35:37:03:b8:04:6a:
01:78:42:49:4b:67:a5:c2:a0:7b:67:45:91:8a:d5:
f6:72:aa:95:31:b3:c9:47:a5:36:3f:40:7d:c3:e7:
1a:55:8b:09:d9:1b:1d:5d:cf:70:e4:a6:28:09:11:
0c:83:68:9b:80:c1:e6:b5:25:ac:db:a3:20:e5:20:
ff:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:02:B0:1E:BD:3B:53:5F:5D:B3:A1:16:F8:0A:0A:87:4F:05:52:16
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/362A8DA45EF011EF9597B88B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.38.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:8a:a1:ef:d5:e6:76:a3:65:92:b6:e4:29:63:7e:e1:07:c8:
1f:a2:57:da:75:fd:25:d1:e6:2a:12:9e:f3:1f:1f:ec:f0:f0:
a6:c8:48:cc:9c:29:30:b7:9a:7d:e5:74:ae:0c:63:60:ff:2d:
f7:35:5d:aa:8e:92:f3:51:47:83:96:50:b3:ec:54:37:4e:80:
e0:da:42:b6:eb:a1:cd:d6:34:c2:3a:f1:48:76:bf:2f:9f:ff:
bd:08:05:6d:ec:6e:e9:16:2b:e4:57:dc:e6:bb:63:f9:51:a3:
a5:d1:e4:2f:26:5a:3d:4d:92:c3:14:85:25:5d:bc:cb:7e:a4:
59:3d:bd:79:82:e2:72:64:a8:bb:8d:37:db:18:86:8a:84:6e:
2f:b7:2c:99:64:79:27:45:a6:26:99:6e:f1:2a:13:aa:da:65:
f4:56:71:38:4f:27:59:92:1c:03:74:d5:8d:68:e3:e6:77:72:
1a:ee:fe:7a:f8:3e:3f:29:a6:aa:21:ab:a4:53:93:68:bc:af:
b7:50:8b:be:46:c6:d2:dd:18:f5:5a:6f:df:a7:1f:9d:24:9e:
8e:92:e4:3b:21:87:4b:fc:97:1d:19:ff:22:9b:a5:8d:f2:03:
0c:21:f7:76:34:73:ef:d5:2e:46:9d:69:b0:8f:f0:3f:50:af:
b0:75:7e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:25 2024 by rpki-client on console-ams.rpki-client.org