Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D2630B4A42F11EFB4DC7478762E951A.roa
File: 5D2630B4A42F11EFB4DC7478762E951A.roa (raw, json)
Hash identifier: FQS/0pYl39/Fhl4pK5Kby4X2M115bObKTlqFAbnGX6Q=
Subject key identifier: 4B:7A:D4:2E:EC:7D:4F:E0:3A:12:46:7D:A9:CD:12:FE:A5:A7:A7:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D334
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D2630B4A42F11EFB4DC7478762E951A.roa
Signing time: Sat 16 Nov 2024 15:28:00 +0000
ROA not before: Sat 16 Nov 2024 15:27:57 +0000
ROA not after: Wed 18 Dec 2024 15:27:57 +0000
asID: 200080
IP address blocks: 156.253.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54068 (0xd334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 15:27:57 2024 GMT
Not After : Dec 18 15:27:57 2024 GMT
Subject: CN=6738ba00-a461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6a:ac:89:ae:01:25:1c:6c:c7:d0:6b:32:4c:
92:4e:90:46:e1:39:53:49:08:56:be:f2:3d:0b:67:
4f:8d:05:52:fd:c2:8f:22:6b:12:48:c6:d9:98:b4:
cd:be:99:4a:e6:99:b7:02:ed:49:4f:ed:a4:cf:e5:
6f:be:2d:1d:aa:ce:ab:3a:01:cf:19:22:71:02:90:
2b:60:db:43:4e:1d:e1:ba:97:1b:cb:6f:29:8d:56:
eb:a2:1b:ff:9a:d1:bb:c0:f1:d8:7c:0b:91:87:21:
22:9d:38:ef:9d:8a:0d:f0:80:08:37:ba:5d:1c:a2:
54:46:48:db:69:1a:94:8a:a5:67:59:b7:b0:a9:8c:
be:ed:d9:97:87:c3:7a:db:b9:e4:c9:9a:86:e8:96:
d0:94:b1:0e:72:38:c4:26:1f:b4:13:08:be:a2:2d:
8d:16:6b:0c:f5:ad:96:f7:8e:e3:55:0b:04:64:fa:
29:80:ef:72:5b:ab:fe:f8:91:71:e3:f6:51:10:22:
e9:a4:10:f7:e7:8d:b0:40:be:ad:b7:93:c1:d4:e9:
c9:f3:21:ef:60:14:b5:3e:c5:c5:93:8b:fb:57:6d:
56:40:3f:64:73:d3:51:80:e4:08:b3:27:ed:cf:dd:
7c:04:fb:e6:da:6d:a5:88:c7:af:1f:8f:8f:e9:04:
8e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7A:D4:2E:EC:7D:4F:E0:3A:12:46:7D:A9:CD:12:FE:A5:A7:A7:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D2630B4A42F11EFB4DC7478762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.238.0/24
Signature Algorithm: sha256WithRSAEncryption
39:45:76:34:a1:72:e4:2c:f8:5e:5a:a6:f0:50:90:74:6d:30:
f5:22:11:66:0f:31:2e:c4:4f:83:9b:85:6d:d0:3a:af:6e:8c:
26:d3:ac:b0:de:09:6c:85:08:b1:bb:19:a8:87:68:4f:13:23:
20:94:2f:70:3c:62:06:0a:1d:00:90:de:87:f5:7a:20:a9:db:
a8:ec:d7:aa:5f:d7:9e:2c:a5:95:ac:bc:a4:de:ba:f6:26:a2:
2b:20:a4:21:88:76:aa:19:48:42:ff:df:29:1d:d7:06:d9:1c:
b7:cf:89:45:2f:d9:1f:18:ba:ae:71:1d:f7:b6:c2:a2:21:5a:
7e:0c:61:43:9b:06:2b:de:9d:a9:cf:c2:ef:f8:88:d3:e0:db:
7c:24:4c:d9:74:6e:9d:fa:43:be:b5:f9:cd:3b:de:25:ce:0c:
20:a2:72:f7:bb:d3:83:13:76:11:9b:96:fe:fb:fc:15:5d:9e:
91:eb:05:e0:7f:29:e7:2c:62:90:19:c1:74:f0:cb:fe:63:bd:
52:36:f8:d4:32:f3:60:fe:38:ff:be:86:35:aa:9d:80:f4:e8:
1d:17:e6:a1:88:fc:9b:cd:ca:83:d9:d1:35:c2:ca:59:e1:01:
b6:f1:15:6e:3f:6d:ea:95:13:54:1a:9b:27:d2:bc:4c:3a:50:
1c:8c:3f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:31 2024 by rpki-client on console-fra.rpki-client.org