Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54A7A6BE9F7211EFB82ED979762E951A.roa
File: 54A7A6BE9F7211EFB82ED979762E951A.roa (raw, json)
Hash identifier: WUBJ0Ad6vanAe1/iu0lvdM7hSES2ULHtJC+mlIiQ16Q=
Subject key identifier: 9C:94:EF:05:A6:AC:64:16:03:EF:1A:7B:2F:31:DF:28:0C:C1:DD:9D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D0E2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54A7A6BE9F7211EFB82ED979762E951A.roa
Signing time: Sun 10 Nov 2024 14:44:47 +0000
ROA not before: Sun 10 Nov 2024 14:44:43 +0000
ROA not after: Sun 29 Dec 2024 14:44:43 +0000
asID: 216047
IP address blocks: 156.234.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53474 (0xd0e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 14:44:43 2024 GMT
Not After : Dec 29 14:44:43 2024 GMT
Subject: CN=6730c6df-856a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:28:24:b0:0e:e3:8d:6f:b1:fe:75:21:23:e7:
2a:33:4b:98:4f:c8:b9:9a:10:45:53:1c:aa:70:5e:
9e:2e:e1:84:dc:bb:b9:76:74:eb:3c:44:5d:0d:ff:
df:87:41:f4:31:8e:9f:94:1f:ad:4a:b5:67:32:7b:
c4:cd:83:66:2b:0d:69:a7:a2:93:6f:62:5e:77:fc:
8a:47:00:e3:a9:27:90:cf:40:8d:e0:46:e2:24:f1:
16:da:a2:a1:38:dc:af:6b:3f:ec:f0:bf:b0:ba:0f:
bc:42:6a:ae:c6:85:e1:c1:08:d0:ed:96:19:c8:91:
13:fa:c3:70:b9:b5:fc:75:28:ad:14:1a:7c:6d:64:
17:f6:2c:be:bf:64:fa:27:89:34:c4:60:19:11:ac:
cc:cc:7a:08:6a:3c:56:85:29:ab:20:50:c7:f5:fe:
21:f4:9b:6c:9c:b0:60:45:e9:72:40:0b:ad:f0:24:
7b:d7:98:a1:e1:b7:ea:2a:8e:ab:1e:75:dc:95:9f:
0c:c5:31:c2:39:f9:dc:4b:d5:37:2f:85:94:2c:bf:
35:ad:50:ce:8d:38:93:0c:aa:2a:e7:08:84:b4:fc:
6c:fa:0d:8a:bf:df:17:62:de:37:dc:79:13:6e:67:
a7:82:90:b4:1c:b9:63:f5:79:c5:7a:94:2d:a8:e1:
d0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:94:EF:05:A6:AC:64:16:03:EF:1A:7B:2F:31:DF:28:0C:C1:DD:9D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54A7A6BE9F7211EFB82ED979762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.123.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:58:55:0e:de:04:c7:10:3c:6c:84:9c:f5:39:8c:ac:42:ed:
c6:b7:59:66:ed:d4:8b:d7:20:85:d5:33:7a:9c:11:c3:6e:d4:
51:f1:bd:54:85:89:1f:12:79:bf:50:14:d5:5f:63:fe:50:2b:
f6:c0:74:31:72:ba:8f:f3:31:a4:ce:31:42:7c:d5:b9:77:51:
40:2d:11:c8:c6:c1:99:79:ab:3a:13:b7:44:05:34:af:b1:0a:
5c:3e:f7:97:98:77:cb:d3:57:ef:d0:06:bf:d7:61:06:ca:d1:
26:98:6c:2e:66:aa:01:a9:97:0b:64:1a:96:e0:2d:80:ce:d4:
35:db:f6:bc:eb:8c:52:9a:b1:5a:7f:6f:c4:b6:10:0d:a9:80:
d3:50:a2:ad:69:20:62:f7:c0:c1:d4:22:c8:06:38:fb:35:27:
6d:39:dc:cb:97:50:78:76:59:98:52:2e:8a:59:4f:ba:ba:df:
b3:1a:ac:3f:dc:f9:f9:d6:d1:b3:f8:39:a7:06:90:ad:89:11:
9a:d4:d2:66:c2:48:b4:5a:2e:1b:6d:5b:50:19:d5:a9:bb:19:
59:cf:49:8f:66:08:0f:89:2f:40:a3:e7:ee:29:eb:48:02:09:
80:92:df:cb:f4:b6:6c:cc:6c:f1:94:2b:c7:7c:dd:b3:77:23:
63:36:7a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org