Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4514240ACCBA11EF92886C71762E951A.roa
File: 4514240ACCBA11EF92886C71762E951A.roa (raw, json)
Hash identifier: r6OyWASEg5grHBD6ru5uiEoxXGg+0e1I81NESzb34UE=
Subject key identifier: BE:50:F0:0B:CF:A4:9A:6A:F2:C2:77:9D:EF:1B:79:EE:3C:8E:89:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FA06
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4514240ACCBA11EF92886C71762E951A.roa
Signing time: Tue 07 Jan 2025 05:43:07 +0000
ROA not before: Tue 07 Jan 2025 05:43:03 +0000
ROA not after: Mon 13 Dec 2027 05:43:03 +0000
asID: 17561
IP address blocks: 156.233.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64006 (0xfa06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 05:43:03 2025 GMT
Not After : Dec 13 05:43:03 2027 GMT
Subject: CN=677cbeeb-d325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d1:b1:b7:07:d4:66:67:15:b9:b5:9e:2d:1b:
ed:78:cd:66:92:3d:7f:70:5e:69:7b:91:93:2f:81:
da:60:6c:ab:5d:07:fc:fc:58:52:38:e1:6f:26:bf:
1e:da:8c:af:3b:1f:be:5e:70:40:4c:d6:62:b1:bb:
cf:59:9b:23:fd:bb:6c:28:3a:b4:a2:d0:00:e8:27:
fe:9d:8c:de:ea:cc:0c:e4:e4:48:ab:57:b1:28:7b:
7b:aa:7f:fc:cb:a5:45:46:ff:bb:38:dc:58:52:fb:
10:4f:4b:61:01:ad:eb:c1:b0:44:5c:e5:0e:6e:24:
6e:a4:af:61:16:f3:e4:63:14:53:0f:b6:a9:81:1a:
ed:05:42:78:53:3a:22:3b:1d:09:d4:6c:69:aa:91:
06:e9:72:8f:39:06:02:cb:76:23:bd:3d:f5:fa:ad:
64:de:55:e6:28:f1:34:19:b8:c3:8f:4d:d7:06:05:
aa:b1:62:03:4c:6b:1d:6b:b1:c6:4d:13:6d:63:ae:
a0:f9:88:0c:00:de:ad:b8:97:48:2d:ad:c7:32:52:
a8:3d:4a:7b:16:e6:34:9a:37:59:cb:81:51:15:c0:
bf:b8:b9:f9:36:3d:1e:2b:d6:2f:da:c4:9d:97:90:
5f:d3:7d:14:42:e6:8c:b4:aa:7c:52:45:ef:e2:db:
f1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:50:F0:0B:CF:A4:9A:6A:F2:C2:77:9D:EF:1B:79:EE:3C:8E:89:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4514240ACCBA11EF92886C71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.13.0/24
Signature Algorithm: sha256WithRSAEncryption
48:9a:09:71:7a:4c:f9:b2:e4:bd:38:c8:7b:8a:b0:15:8d:61:
98:d4:ff:b3:30:33:ba:2c:cb:1e:9d:8e:0b:63:bc:b2:6a:97:
28:e9:2d:f6:fb:ba:73:c1:3b:e9:1c:ba:2e:95:1b:33:00:b7:
c4:32:54:59:99:bb:4a:a4:c3:4b:79:04:5e:56:50:8c:84:6c:
05:c3:4b:86:73:f3:2e:5e:79:fb:f2:3b:11:65:00:84:c3:35:
fc:53:b7:5e:0e:17:91:9e:47:64:4e:f2:d7:70:7c:b0:61:af:
fd:04:9b:28:66:f1:82:62:c5:4b:0f:c8:1b:86:e7:8a:76:36:
59:06:a9:94:a6:da:c6:ee:e7:dc:3d:a0:e8:1a:75:e2:70:9f:
ed:fa:df:57:48:f9:61:b6:0a:cc:81:c8:a8:48:ec:b3:28:88:
5c:aa:80:8a:d9:60:b4:20:6c:1f:a8:91:05:17:d7:d3:44:3a:
61:b3:68:de:69:54:0d:c2:93:e5:aa:04:f5:fa:2e:6c:90:64:
85:16:50:92:b0:5f:34:af:d8:0b:ff:90:22:65:73:ae:2e:27:
10:89:72:a4:84:51:3c:79:77:de:cb:d7:7c:a3:2e:1f:ec:d2:
39:96:5e:fc:d0:fb:88:d3:bb:b4:4c:36:dc:cb:b9:40:93:66:
57:31:22:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:39 2025 by rpki-client