Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B133DACA26E11EF9666DB69762E951A.roa
File: 5B133DACA26E11EF9666DB69762E951A.roa (raw, json)
Hash identifier: QV84RUQkHnGX7dkZkjWTKeYPFNZRYY55a8e6CIXwioE=
Subject key identifier: FA:C7:00:27:70:21:1A:80:C2:9A:CE:1D:12:4D:9E:3E:91:45:91:32
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2C1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B133DACA26E11EF9666DB69762E951A.roa
Signing time: Thu 14 Nov 2024 09:53:53 +0000
ROA not before: Thu 14 Nov 2024 09:53:49 +0000
ROA not after: Sat 23 Nov 2024 09:53:49 +0000
asID: 137443
IP address blocks: 156.236.108.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53953 (0xd2c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 14 09:53:49 2024 GMT
Not After : Nov 23 09:53:49 2024 GMT
Subject: CN=6735c8b1-fea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:86:05:91:83:a3:d7:0f:20:e3:42:e5:d7:64:
ee:b4:16:1a:bb:3a:c6:21:e0:d5:a8:42:88:9d:2e:
29:71:ac:27:24:ef:30:50:e7:72:48:af:f5:d6:58:
b8:c4:57:1d:af:9b:8f:bc:b9:77:14:6c:64:e5:f2:
4c:fb:07:d6:e1:29:6c:5f:8a:9b:48:15:c0:67:fb:
0f:10:92:6b:92:79:05:44:f2:09:76:58:0c:f3:00:
60:9e:03:42:4f:2f:6f:0e:e3:d2:1f:6a:55:28:36:
55:04:20:4f:59:fe:32:d6:13:f8:58:95:f6:61:9c:
50:d5:8f:ec:74:74:6f:a7:e6:61:fd:7b:38:19:95:
60:ed:40:c3:43:be:82:26:18:a2:6e:09:1f:19:1f:
96:58:e6:5f:b9:a7:7a:34:bd:af:01:77:fb:79:73:
fd:42:f9:50:3b:cd:02:a2:8c:f0:dc:db:96:6a:ce:
3f:81:f6:1a:0a:ac:20:9b:68:76:e9:a1:23:b6:0a:
b7:d6:14:37:a8:13:83:a5:99:5d:ba:f9:fb:b7:b6:
d6:d8:f9:1b:45:ce:ee:76:a6:45:da:c2:e2:7d:fd:
7d:0b:ae:21:4e:4d:49:32:bf:a1:ed:d7:47:96:4b:
34:37:c8:28:97:e0:d2:38:e9:a6:73:c9:7a:99:6b:
92:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C7:00:27:70:21:1A:80:C2:9A:CE:1D:12:4D:9E:3E:91:45:91:32
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B133DACA26E11EF9666DB69762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.108.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:e3:8f:69:86:71:6e:43:94:ee:80:5a:41:0c:24:d2:79:89:
43:80:57:1f:b9:7e:7e:f6:7b:bf:1c:e7:ee:64:1a:b0:dc:0b:
3a:86:26:1f:5f:75:8c:b8:04:78:72:6c:94:3a:20:2d:d5:2f:
fd:91:51:c2:68:85:6d:f2:cc:cb:a1:fd:e0:bb:b9:6c:0d:f7:
43:ec:a5:b5:fb:56:81:00:40:a9:05:57:1c:79:c7:7e:e3:a1:
b3:cc:7f:bc:73:7b:c6:98:15:cc:83:e0:e1:e6:26:d8:05:00:
9e:ec:38:6a:5a:02:50:47:3f:33:4e:e7:41:f3:5a:d8:d3:bb:
42:98:56:d6:36:2f:d8:cd:22:e4:23:f7:81:00:52:1d:ec:2d:
0b:19:bd:dc:5d:45:7d:88:da:f1:4c:11:e9:ce:a3:8c:7d:71:
1d:5e:60:e2:58:4a:82:0f:c8:db:6c:3b:85:3f:0f:a5:b9:c5:
a9:b5:b3:a6:88:3d:6d:f5:91:92:19:9c:2e:ea:bf:04:7e:1f:
54:f7:17:9f:9c:d0:67:1d:3a:f7:f6:e4:13:7d:3b:2c:5e:cc:
c1:6b:3a:52:38:20:56:2b:52:5c:69:06:34:89:f5:b3:12:f4:
08:78:65:1c:c3:c3:d9:a0:cd:2d:cc:ed:7a:99:0d:ee:98:e4:
9f:af:0f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org