Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4201B50C983511EF9F054B5C762E951A.roa
File: 4201B50C983511EF9F054B5C762E951A.roa (raw, json)
Hash identifier: L2JMAtT2tXRCzAzNCWRZP5H0/ji/GUxn964EQZrJt/A=
Subject key identifier: DC:4B:BA:10:75:01:46:79:84:49:7D:37:74:48:F7:FB:19:3A:C4:2C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB7F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4201B50C983511EF9F054B5C762E951A.roa
Signing time: Fri 01 Nov 2024 09:39:58 +0000
ROA not before: Fri 01 Nov 2024 09:39:54 +0000
ROA not after: Sun 24 Nov 2024 09:39:54 +0000
asID: 142062
IP address blocks: 156.232.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52095 (0xcb7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 09:39:54 2024 GMT
Not After : Nov 24 09:39:54 2024 GMT
Subject: CN=6724a1ee-203c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fa:68:07:3a:7e:04:58:18:cc:c2:68:1b:4a:
b2:41:1b:03:da:38:b8:78:f8:93:f6:c2:0e:fc:9e:
54:5d:b6:91:f9:b3:86:c1:70:e9:32:c8:f1:ae:ea:
a8:4d:7b:ae:31:c6:cc:60:e4:4e:6d:d5:52:3e:6f:
2d:00:a0:9e:c6:34:05:83:b9:98:f3:43:52:90:e1:
5f:d1:a9:f2:fd:eb:b6:3d:97:2e:74:c7:60:a0:d9:
39:14:67:98:e7:0c:89:73:b7:91:65:aa:7e:a2:4b:
80:69:f0:d4:28:87:5b:d0:61:30:84:bb:59:53:e3:
c9:1a:51:05:e4:21:e3:a0:94:6d:10:54:65:f6:b1:
c6:7e:6a:df:52:e3:21:45:39:78:3e:17:89:c7:5a:
c9:c2:b7:d2:56:aa:d4:97:53:30:27:2b:bc:d6:8b:
7d:da:9c:93:c2:a2:6e:69:13:28:61:97:b7:9e:bd:
01:4d:e9:5e:9e:f3:7f:4b:62:0e:1c:97:59:99:2c:
07:58:a7:05:f5:3a:cf:0b:07:68:bf:6b:1a:a7:70:
99:12:e2:cd:e4:b5:db:1c:e6:ec:89:db:09:57:90:
d2:8d:c4:f7:7f:d5:48:ce:b6:e3:45:b0:f3:c3:7c:
c6:98:33:a8:19:dd:de:e2:da:a3:f6:ad:26:a1:6d:
04:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:4B:BA:10:75:01:46:79:84:49:7D:37:74:48:F7:FB:19:3A:C4:2C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4201B50C983511EF9F054B5C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.32.0/19
Signature Algorithm: sha256WithRSAEncryption
8c:a0:2a:bf:f9:ad:11:d2:77:a9:39:c4:e7:01:53:4f:30:15:
12:24:b8:1d:55:ce:e4:c6:58:43:a5:de:25:a7:79:18:f2:47:
25:e1:05:a0:fd:b1:68:8f:8a:ab:d8:ef:2d:a2:6d:f4:47:d5:
83:d2:c5:b8:04:c7:ff:ed:b5:4e:f5:d4:96:12:e1:bc:41:8f:
62:15:dd:16:b8:32:d4:63:69:22:f0:9b:33:ee:b4:89:01:dd:
d9:37:38:ff:7c:e2:22:a4:06:97:aa:7d:88:70:dc:59:2f:45:
52:8d:5f:56:fb:fe:a9:ec:0d:a9:94:1e:22:bc:7c:1e:72:90:
74:9b:bb:a8:51:8f:77:59:c8:04:eb:ac:da:53:20:96:7a:d9:
6e:b8:d2:77:6b:9e:37:16:a7:2d:ba:1b:55:e0:00:41:7f:28:
f0:4e:e8:88:6e:b7:d5:8d:57:f8:b7:4c:33:fc:39:c7:58:44:
1a:65:8a:98:1d:e9:7e:5d:7e:d4:ba:5a:b7:f2:f4:ab:96:ae:
c2:17:d9:74:c0:0a:72:0d:39:76:80:bd:5c:8b:d2:47:84:93:
5f:98:cb:65:0c:24:db:52:70:cb:7b:27:c6:66:8b:f0:b6:1b:
8e:33:ae:77:7e:a8:ed:36:ed:03:0f:06:04:9f:75:6b:f4:09:
db:41:c9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:27 2024 by rpki-client on console-ams.rpki-client.org