Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A9C9DC469D811EF8FC13E7C762E951A.roa
File: 5A9C9DC469D811EF8FC13E7C762E951A.roa (raw, json)
Hash identifier: yQvyLR4HqkuSMifLWrcOEth8yx7HZLoUu5r6Sj6wzyU=
Subject key identifier: CC:3D:10:0D:2F:AC:BA:40:C9:A6:DC:43:ED:A0:82:00:49:CF:C0:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B0FD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A9C9DC469D811EF8FC13E7C762E951A.roa
Signing time: Tue 03 Sep 2024 09:39:03 +0000
ROA not before: Tue 03 Sep 2024 09:38:59 +0000
ROA not after: Fri 07 Mar 2025 09:38:59 +0000
asID: 29802
IP address blocks: 156.238.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45309 (0xb0fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 3 09:38:59 2024 GMT
Not After : Mar 7 09:38:59 2025 GMT
Subject: CN=66d6d936-3e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e4:eb:d1:ef:34:b9:ff:be:63:7f:71:13:f2:
ed:d9:1f:d9:89:a6:e6:ad:1c:38:f0:e7:8c:8e:95:
c7:65:2c:5e:47:a2:c2:d6:27:b2:65:32:62:32:ef:
46:de:7e:b6:5b:a2:fd:00:3e:b6:16:d0:db:b5:a3:
79:66:2e:28:b8:8f:6c:a1:de:2c:81:f5:8e:8a:fd:
7c:5c:c3:ba:a1:31:1d:d5:59:80:da:38:aa:6f:fc:
10:89:29:fd:1f:be:c6:f5:a5:93:e9:f0:78:15:c4:
d8:7f:7f:1a:3e:51:c3:96:aa:54:c8:1b:b3:49:ab:
5e:92:d6:ee:1d:2f:3d:48:5f:b4:e5:72:9a:7e:29:
5e:08:37:6f:55:76:dd:c6:f0:d6:d5:f3:c5:69:6a:
b6:49:24:fd:b0:31:8e:cd:d2:f1:b3:a3:50:59:46:
7d:6a:ed:7f:9a:e1:ef:2b:eb:df:bb:14:f3:da:b7:
86:39:a9:85:10:e4:b6:5f:fb:f2:87:45:b1:ec:01:
c6:02:03:d4:83:55:ab:fa:88:bd:5d:f4:35:0d:2a:
40:30:5a:59:ce:4c:68:87:cb:fb:2f:19:3b:a0:c7:
d5:d9:68:ef:b8:c1:84:f0:a2:c4:41:aa:18:f9:9f:
ec:2a:1f:da:f2:a9:f7:d7:8f:3b:9b:ae:c6:e0:69:
9d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3D:10:0D:2F:AC:BA:40:C9:A6:DC:43:ED:A0:82:00:49:CF:C0:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A9C9DC469D811EF8FC13E7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.117.0/24
Signature Algorithm: sha256WithRSAEncryption
79:70:28:75:0e:d9:5f:72:1d:40:3d:28:04:4e:79:45:24:8c:
27:1d:7b:59:42:6c:bc:48:ad:0c:e9:c6:d6:74:5e:19:be:d0:
d0:25:1c:b7:8d:80:06:13:3c:0f:58:23:e5:69:21:85:5c:e8:
3d:97:cb:1b:45:3a:10:9e:54:59:1b:7b:a3:22:bc:db:be:94:
1d:ff:8a:c9:f1:fb:c5:d1:a1:1f:c3:85:ad:13:c8:3d:b7:a3:
be:c9:43:e1:94:a5:f7:7d:25:39:4f:55:3c:35:6e:88:69:7b:
85:99:cd:e0:19:6c:7b:16:c6:4a:81:5f:96:86:ea:0f:cb:82:
e6:ed:6a:f4:2c:8d:e6:d4:b2:fb:51:db:86:88:63:00:7b:19:
07:54:3a:51:90:0f:1d:35:61:cb:d8:09:c2:9a:1c:1c:ef:32:
4a:40:9f:c1:d6:db:25:e7:98:a5:f3:e3:03:5c:06:56:e9:9d:
85:b4:7b:a1:61:4f:c2:ca:aa:6d:3e:f5:83:f2:b8:a2:c5:e9:
a4:a7:a3:b7:dc:56:7e:c5:f2:7d:ff:04:67:18:8d:25:03:67:
43:d1:a1:9f:da:3f:3f:6d:36:46:33:64:e3:77:9a:13:18:67:
1d:30:7c:70:95:e7:54:50:fe:b2:7e:b8:fc:1d:82:12:6e:b2:
cc:82:6a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:30 2024 by rpki-client on console-fra.rpki-client.org