Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/552C7CA2651311EFA0615386762E951A.roa
File: 552C7CA2651311EFA0615386762E951A.roa (raw, json)
Hash identifier: SLZYJtvlbvKRdAekHEJhgtdCm/bMZP5jnSODCavyJsA=
Subject key identifier: A9:68:19:C2:68:3B:1D:5A:09:61:0A:0C:59:A9:EC:55:B0:4F:3B:3E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: AEE7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/552C7CA2651311EFA0615386762E951A.roa
Signing time: Wed 28 Aug 2024 07:58:38 +0000
ROA not before: Wed 28 Aug 2024 07:58:34 +0000
ROA not after: Mon 18 Aug 2025 07:58:34 +0000
asID: 18013
IP address blocks: 156.226.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44775 (0xaee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 28 07:58:34 2024 GMT
Not After : Aug 18 07:58:34 2025 GMT
Subject: CN=66ced8ae-1d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:20:c8:b2:a8:4a:1e:9b:ee:ee:ea:0a:1b:6c:
43:46:09:e7:0a:db:27:2b:d1:78:e3:71:30:ca:b1:
b9:ff:52:dd:c1:ff:c1:ca:b6:58:d8:27:71:51:28:
e7:83:22:e3:16:56:69:f9:34:03:e3:33:dc:73:6f:
f0:1f:7f:e0:39:ca:83:da:3a:aa:2c:67:65:03:75:
52:db:7c:6c:07:01:c2:66:50:0c:40:99:7b:9a:d6:
f4:1e:b0:0e:b0:d0:1e:47:55:5e:cb:77:90:bf:2a:
a5:a7:b5:84:0d:ea:bb:88:49:83:79:6e:5b:fe:3c:
d2:b5:42:2e:b8:e1:36:bf:7d:56:33:7f:08:2b:03:
4f:ce:77:ee:58:0a:7e:70:52:31:fe:56:6b:c3:9e:
01:2c:af:6f:4c:6a:ce:fa:e1:6a:ed:f2:9d:f7:e2:
a2:e7:af:d2:ce:77:bb:63:98:52:2a:20:11:78:6a:
40:99:b7:81:84:d8:70:5a:6f:4e:cb:13:3f:1c:8d:
01:62:f9:f2:be:cd:fb:39:87:ac:87:c4:65:01:90:
fe:d4:67:f6:78:a1:3f:4d:05:28:90:d0:5d:5d:86:
bc:d8:60:20:cf:9b:cd:ad:2f:e6:a8:c3:74:9c:48:
c1:91:bf:cd:a6:b4:f3:eb:5f:b6:12:f9:8f:6c:3f:
44:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:68:19:C2:68:3B:1D:5A:09:61:0A:0C:59:A9:EC:55:B0:4F:3B:3E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/552C7CA2651311EFA0615386762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.167.0/24
Signature Algorithm: sha256WithRSAEncryption
10:0f:1a:16:50:9d:c4:7d:04:df:ff:c2:7f:c9:8e:17:d7:aa:
8d:50:3e:80:e1:4c:1c:1a:11:9e:64:64:3c:c2:38:19:7d:9d:
15:f9:ee:4f:2b:60:e0:a2:b7:5f:ab:b8:77:ce:7a:23:7b:d9:
65:4a:87:d4:57:e1:f5:b5:86:59:1c:d1:0a:f6:52:4b:ae:c8:
40:fa:c8:22:41:7a:57:91:50:b0:30:d8:72:e0:b0:67:66:cf:
7b:27:3a:cc:52:42:79:6d:36:9a:49:e2:ca:d3:da:5a:9b:72:
c3:dd:c4:af:fd:ff:50:98:a0:a8:4b:83:a7:14:25:9e:53:95:
67:28:d7:64:ef:92:cb:18:78:17:df:68:ee:f7:f5:c0:31:60:
05:14:21:ad:3f:fe:bd:d5:b7:6c:9a:4b:8d:8f:49:63:8e:86:
89:1f:a2:d4:76:c9:76:df:89:46:de:ce:23:8f:fa:54:f1:41:
65:1d:0d:27:d4:85:69:51:ea:bc:72:64:29:f0:fe:4f:d7:51:
a5:82:77:6e:97:fc:ff:28:bb:09:a9:29:e1:36:3d:36:1d:07:
a3:cd:ec:8e:70:3a:a9:d5:d0:3f:a1:57:e7:e5:8d:38:4b:46:
61:a4:b1:08:65:fb:e3:12:3f:3e:bc:a4:d8:f2:1f:9f:b1:78:
14:de:d5:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org