Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64C495E49F7B11EF9C0FA3B0762E951A.roa
File: 64C495E49F7B11EF9C0FA3B0762E951A.roa (raw, json)
Hash identifier: RgIoqXHwQppN2/SBuYSpasDqpx++wpP/JO1gk9NJ3oE=
Subject key identifier: 8C:1B:67:05:5F:18:37:CF:2E:DE:40:30:C8:92:F7:54:16:F9:74:3D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D0EA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64C495E49F7B11EF9C0FA3B0762E951A.roa
Signing time: Sun 10 Nov 2024 15:49:39 +0000
ROA not before: Sun 10 Nov 2024 15:49:36 +0000
ROA not after: Thu 12 Dec 2024 15:49:36 +0000
asID: 398993
IP address blocks: 156.231.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53482 (0xd0ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 15:49:36 2024 GMT
Not After : Dec 12 15:49:36 2024 GMT
Subject: CN=6730d613-f3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:64:b9:3d:0d:28:db:8b:ca:63:f1:f4:9c:a7:
a2:c1:47:73:ab:35:76:01:82:db:d8:3b:eb:2b:ed:
00:48:00:34:2d:8e:23:09:51:01:7d:d6:5c:e6:2f:
9c:b9:ae:60:db:e9:8e:28:b0:3c:b4:43:35:b5:18:
fc:e4:95:64:60:40:72:81:a6:39:8d:14:02:d2:42:
c6:65:3e:49:b0:f0:62:87:6d:fe:3e:87:af:c1:2c:
bc:c4:5a:60:a0:45:a3:b5:db:63:9b:a4:69:15:d1:
60:34:99:e9:83:62:5f:4e:19:64:fe:98:6a:af:c8:
15:20:bf:12:b8:bf:f0:0b:f7:42:dd:43:82:03:bb:
8b:48:56:8b:58:26:e4:ad:00:1e:ae:b9:4f:f0:50:
bf:bd:09:c6:87:73:1e:36:ce:ef:d9:87:4f:fc:44:
1e:c1:01:ba:51:e6:a9:dd:51:46:bf:18:b6:6e:34:
4d:a4:79:85:6c:ef:2e:43:15:56:7d:29:a9:b5:43:
89:7f:ba:90:e8:a4:51:ea:a3:b2:ab:a0:f6:aa:dd:
ae:2f:a5:66:fb:2c:cc:9b:31:91:dc:84:61:b7:ec:
b3:65:86:4c:5e:c9:a5:11:d1:20:2b:ba:5e:4a:d6:
79:59:a0:82:1e:42:95:5b:9c:3e:25:9d:6a:cc:ef:
87:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:1B:67:05:5F:18:37:CF:2E:DE:40:30:C8:92:F7:54:16:F9:74:3D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64C495E49F7B11EF9C0FA3B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.52.0/22
Signature Algorithm: sha256WithRSAEncryption
06:de:2c:41:55:d4:0c:6c:11:2a:7c:53:c8:87:3a:8c:13:63:
7c:4b:9b:e9:67:f7:f4:f5:92:e4:73:f1:d9:4e:e1:5e:ae:b4:
ad:53:fd:18:37:fc:99:a3:71:c7:43:18:68:6d:5b:44:11:1b:
91:d4:7d:c0:4d:55:ba:e4:08:6a:d8:fc:69:47:e4:5d:74:fc:
bf:75:bf:e2:9b:98:36:b8:98:03:85:3a:98:5b:6e:fd:fa:cd:
b0:30:30:74:ba:d8:e5:a1:c2:30:c9:b9:71:ca:a1:79:f2:38:
46:cd:d7:1b:e3:e9:70:2b:33:c8:a4:c0:39:03:57:ac:68:13:
57:a6:cc:f4:10:bd:60:89:64:e8:13:6a:b4:7f:30:a1:ae:b8:
7b:1e:e4:f6:66:53:22:c8:14:4f:19:a6:fd:63:2b:9c:54:19:
81:87:ee:78:1a:ab:a8:85:c4:cb:3e:b3:ee:a6:a8:59:24:ac:
7d:7f:76:5d:ee:92:46:64:dd:ba:cb:51:ac:ab:f6:eb:3f:cb:
71:1c:b0:0f:74:ed:79:b4:73:ab:bd:b0:a8:05:ad:cb:f2:85:
ee:00:4c:e7:a8:f9:40:c2:ed:3d:20:d1:c4:c0:c3:e7:d2:23:
3c:c6:6b:bd:b7:8a:8a:cf:dc:4f:30:3a:4c:28:21:e8:cf:ff:
42:10:74:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:33 2024 by rpki-client on console-ams.rpki-client.org