Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4973740886F911EFA2855BA5762E951A.roa
File: 4973740886F911EFA2855BA5762E951A.roa (raw, json)
Hash identifier: NMYoju+1sbt0/U2J1DdVZff/tAmJ75+EBNRXywi9Y9s=
Subject key identifier: C8:53:8A:9B:59:F6:07:B0:AE:F6:54:97:30:EC:D6:B1:F1:2B:C2:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C2EF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4973740886F911EFA2855BA5762E951A.roa
Signing time: Thu 10 Oct 2024 11:17:51 +0000
ROA not before: Thu 10 Oct 2024 11:17:47 +0000
ROA not after: Fri 20 Dec 2024 11:17:47 +0000
asID: 142286
IP address blocks: 156.226.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49903 (0xc2ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 10 11:17:47 2024 GMT
Not After : Dec 20 11:17:47 2024 GMT
Subject: CN=6707b7df-674a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:f3:3e:f1:68:9d:b5:ac:02:12:90:7a:f7:
26:3c:4d:e6:4b:67:29:44:9a:a1:64:ea:da:ec:0f:
6f:61:a9:92:5b:5d:ab:3b:c2:bc:18:5d:bc:db:5e:
a4:a1:66:fd:07:e8:b0:08:7f:73:35:7e:9c:7a:2f:
88:61:f7:18:05:56:a6:eb:cc:b5:fd:e5:2b:fa:9e:
aa:67:2f:e8:6f:71:ea:98:04:f6:d7:71:31:bc:b8:
46:bb:33:7f:b6:92:f8:d7:91:4f:13:6a:ab:b8:50:
7e:2e:e1:21:a6:1b:5b:25:c2:8a:27:31:73:7b:da:
06:55:80:bf:55:fc:1f:72:b8:10:d7:2c:41:43:a1:
31:51:95:ac:58:30:b9:09:31:a5:bf:8c:6e:a2:0f:
c1:33:67:4a:de:fb:0c:c0:ed:41:26:1a:6c:f0:60:
03:23:ed:66:a2:97:dd:30:97:d1:8b:a1:8b:52:6e:
46:a1:ff:c5:73:6c:f8:f5:9b:97:e6:e8:f7:7d:25:
92:2c:a6:5d:2d:51:ba:37:69:07:e9:83:7f:0d:d3:
0a:81:ad:81:8f:8d:cf:0f:4b:55:45:68:c4:2b:5c:
61:d1:b0:85:9d:27:f0:ec:0f:ab:96:12:2a:fc:69:
39:18:63:28:7a:4b:d1:1d:17:d2:6c:f2:9e:b6:a7:
ad:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:53:8A:9B:59:F6:07:B0:AE:F6:54:97:30:EC:D6:B1:F1:2B:C2:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4973740886F911EFA2855BA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.24.0/21
Signature Algorithm: sha256WithRSAEncryption
a7:c4:78:13:d3:ac:f0:a2:5a:10:72:20:5c:b0:80:03:f7:e9:
4c:14:61:1c:1c:a2:9b:3f:55:6b:1f:11:bc:34:12:f7:c2:0a:
1e:66:fb:14:fc:67:73:fe:98:e4:42:df:b4:b6:48:ad:10:37:
66:5b:02:b5:5a:b7:da:42:86:de:70:f0:40:5d:73:c5:41:dc:
07:1e:5d:ef:1c:dc:bb:6d:c2:71:66:da:ac:2c:33:1f:0b:fb:
4c:c0:de:9e:9d:2c:b1:cb:64:e4:bd:15:e0:99:15:52:e2:16:
bb:3f:12:9f:cb:b2:9b:68:27:0e:7b:23:c3:48:4c:dc:6f:3a:
ce:12:99:46:d8:6d:c4:07:73:29:35:94:ea:2c:3e:50:23:b0:
34:69:71:db:09:4b:fb:1b:4a:de:7c:86:a4:7b:fb:59:15:2e:
9d:13:62:18:ae:65:4f:e3:0c:a1:ed:1e:2b:f0:b7:c2:d7:28:
ba:a7:9f:b8:e5:3e:32:11:f0:3b:a5:85:1d:f9:b6:cd:b8:fd:
51:a9:9d:cb:c4:0c:83:49:3a:f6:9b:11:4a:6b:9c:05:e4:3e:
73:d4:c0:b2:5b:40:50:85:bb:1e:16:e9:30:db:5d:63:e0:10:
6d:1c:e7:9b:96:53:4f:60:d5:64:6b:44:65:f3:7e:3b:23:e4:
98:0f:6e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:29 2024 by rpki-client on console-ams.rpki-client.org