Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49567856A62D11EE89153C9B775412E6.roa
File: 49567856A62D11EE89153C9B775412E6.roa (raw, json)
Hash identifier: E4o/5+avvf/GT30Po4LICLNR85IaBYgtBQmPrKhSlQc=
Subject key identifier: 16:5A:9D:03:21:47:03:C3:03:B9:2D:1F:F0:60:6D:D2:2A:BC:E1:4A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 594D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49567856A62D11EE89153C9B775412E6.roa
Signing time: Fri 29 Dec 2023 09:33:13 +0000
ROA not before: Fri 29 Dec 2023 09:33:10 +0000
ROA not after: Mon 04 Nov 2024 09:33:10 +0000
asID: 5065
IP address blocks: 156.229.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22861 (0x594d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 29 09:33:10 2023 GMT
Not After : Nov 4 09:33:10 2024 GMT
Subject: CN=658e9259-a6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:12:b4:21:64:67:4c:01:1e:73:1e:cc:9e:3c:
cd:e0:61:91:9f:46:d2:bb:8e:0b:8d:e9:ae:5d:d5:
06:b0:25:af:14:cc:dc:58:ca:19:7c:9a:13:5e:db:
68:db:76:37:2f:3b:d5:3b:ce:bb:21:4a:3d:3f:70:
73:6a:e3:2e:fe:09:d0:29:4d:37:26:8b:b9:a4:57:
f3:fe:33:2b:66:e8:ff:93:fb:bd:4d:ef:a7:f3:9b:
3a:7c:82:14:e0:9c:f2:66:58:59:e2:b0:ce:1e:62:
81:5f:c6:ef:f0:d9:a1:e4:0d:37:50:12:98:5d:96:
12:03:8c:e0:3a:c9:14:bc:21:7d:d2:ac:c4:ba:4c:
09:d8:af:d9:f6:10:34:ee:f0:58:22:01:cd:07:a3:
09:b0:f8:3d:5a:b3:10:d8:5d:18:d5:7a:cb:94:61:
29:f6:f6:8f:1d:c9:f3:5d:8e:6e:0e:3b:8c:96:d5:
a0:23:76:a0:17:cb:e1:79:c3:56:46:9a:b4:f6:1c:
a2:20:14:97:9d:e6:77:55:90:53:e5:e5:30:49:45:
d9:b8:68:e7:8c:be:25:63:a2:4a:16:d5:6d:5d:83:
62:db:94:cd:50:15:25:a9:3e:08:69:3a:5c:85:6a:
b1:d3:c3:35:b2:f5:26:ae:fc:3d:2e:e6:37:9f:4e:
96:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:5A:9D:03:21:47:03:C3:03:B9:2D:1F:F0:60:6D:D2:2A:BC:E1:4A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49567856A62D11EE89153C9B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.62.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:2a:af:0d:24:77:99:2e:2e:22:24:66:1f:c6:4a:10:c2:c4:
10:03:b9:8d:b0:c1:8a:b2:6b:b8:7a:68:3d:98:b5:43:e3:8a:
ae:d5:2b:dc:ed:67:3a:c5:f3:c4:fc:51:dc:1e:70:85:d5:36:
e3:32:15:80:64:cc:1b:a6:c0:21:3c:0f:74:dd:2d:a4:ba:98:
5f:22:ad:18:f2:1e:ad:ba:c8:05:26:4d:85:46:8c:76:2c:2e:
12:59:a9:63:a0:4f:07:e3:62:8f:ba:51:d2:30:f3:30:75:b5:
d9:5a:59:06:0d:50:75:05:f8:db:a4:eb:10:b4:25:98:f0:ec:
0c:94:a5:90:23:9c:8b:7e:b8:6f:49:cb:6a:09:d6:70:db:a0:
92:ff:51:4c:c8:24:f5:ee:ad:a9:18:66:e6:80:8c:6b:fc:99:
e6:11:05:24:60:31:01:c9:a0:19:73:9a:7a:49:f7:b0:3f:5a:
f7:6e:88:19:dd:38:9c:75:0f:8d:af:4c:83:48:a6:ac:82:51:
8b:e0:46:78:1b:37:9f:73:6b:09:d5:05:e2:91:be:93:9a:fb:
54:c0:e7:6d:18:f6:c8:a3:e1:fe:cf:73:9d:c3:bd:48:20:6c:
a4:05:fe:d2:f1:82:d8:f2:6c:f5:cd:75:86:30:c1:30:fc:c3:
b8:89:99:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:33:16 2024 by rpki-client on console-fra.rpki-client.org