Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45F74A32390811EF8B9DF542762E951A.roa
File: 45F74A32390811EF8B9DF542762E951A.roa (raw, json)
Hash identifier: phzaeppHWDkECze8GtFlYhMRw9G2i/kRyRJrwvO0OGU=
Subject key identifier: 7C:C6:1A:58:EC:8E:70:7E:BF:00:40:A8:82:C5:74:E3:7A:B6:D9:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 97A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45F74A32390811EF8B9DF542762E951A.roa
Signing time: Wed 03 Jul 2024 06:48:37 +0000
ROA not before: Wed 03 Jul 2024 06:48:33 +0000
ROA not after: Sat 21 Sep 2024 06:48:33 +0000
asID: 142286
IP address blocks: 156.253.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Sep 2024 00:16:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38822 (0x97a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 3 06:48:33 2024 GMT
Not After : Sep 21 06:48:33 2024 GMT
Subject: CN=6684f445-8cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bf:6c:1b:42:a2:9b:22:03:f9:fd:00:02:93:
04:9b:d4:aa:7a:9e:cc:ef:7b:ad:0a:d8:8b:1c:86:
9e:75:04:fb:1b:87:3a:c1:50:39:be:e6:e7:82:e8:
2b:75:67:57:79:1d:ce:91:15:d3:7d:7c:49:20:b3:
d2:44:5d:d8:f9:1e:be:b6:07:1f:e7:98:ca:5e:ae:
18:9e:92:48:8b:51:58:bf:2b:15:ae:d6:b6:61:26:
07:f7:21:a8:0b:4e:bd:71:b8:00:85:6c:42:d8:71:
bd:a0:9f:41:a6:98:cd:db:57:46:4d:39:b7:e6:0d:
1b:7f:02:f7:c7:3e:e7:2c:5c:f6:a9:9d:83:b6:c6:
be:ae:74:12:aa:23:ba:88:c0:7d:ba:44:72:a9:bc:
20:e4:76:c0:b9:42:b6:34:9f:db:5f:6b:a5:55:f6:
b7:21:70:80:80:26:46:b7:28:26:ba:cb:51:11:b0:
d9:a6:83:da:8e:d3:10:2b:e6:ab:6c:02:d0:77:4a:
0e:db:66:93:1d:ee:2b:a9:f2:ef:18:9b:a1:87:f0:
3c:ee:86:67:17:6d:80:10:e7:fa:a7:83:53:93:90:
fe:b0:d4:71:4e:f4:b2:d5:9c:a2:d3:0f:9d:0d:fb:
f9:70:1f:b3:9c:0e:4c:bf:b9:9b:39:50:1d:45:c5:
62:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C6:1A:58:EC:8E:70:7E:BF:00:40:A8:82:C5:74:E3:7A:B6:D9:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45F74A32390811EF8B9DF542762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.64.0/18
Signature Algorithm: sha256WithRSAEncryption
82:be:e4:63:2e:ff:97:c1:c7:17:c3:2c:ec:76:6e:ef:72:b2:
cd:e1:76:01:31:35:54:06:d5:fe:41:a0:d9:b3:ae:f6:f6:95:
0b:2d:d5:0f:00:4b:10:56:8e:92:1f:10:83:50:d7:88:8b:06:
f4:a7:a8:28:9e:4a:f6:57:35:4d:46:50:fa:a5:20:f6:9e:18:
80:e7:53:5b:ca:04:53:b0:cf:46:a0:a2:7f:75:2e:f4:8a:32:
d7:8a:ae:e3:36:96:96:42:36:69:b9:f9:d2:a7:23:af:a9:9e:
1f:6b:6e:0a:d1:7b:ef:4f:2e:79:35:03:a9:21:4a:46:a4:4e:
75:00:96:8a:58:e7:a0:e7:58:60:61:88:f5:1e:ef:33:f0:d6:
8d:00:b5:69:71:37:50:05:9f:4c:2f:a3:58:66:95:4a:5f:b3:
30:d5:6e:9e:86:27:28:2f:9a:42:7c:a9:10:9f:68:61:05:99:
c6:75:68:76:ae:86:b4:8c:0d:18:6d:74:a0:11:b1:c6:bc:1c:
17:ca:79:c4:4b:fc:ad:08:12:c6:08:7c:2b:fb:fa:3c:74:e4:
fa:b8:4a:ee:cf:ad:9d:69:07:aa:b2:3a:c2:d8:d4:b4:87:d1:
03:20:82:a8:29:ac:3f:f0:8f:f2:cd:45:45:99:04:d5:3b:40:
0b:9a:81:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 10:38:31 2024 by rpki-client on console-fra.rpki-client.org