Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6985E77A911811EF86607A8A762E951A.roa
File: 6985E77A911811EF86607A8A762E951A.roa (raw, json)
Hash identifier: cNFQBvmZKIgv+5+VqvlkEqJ/532ImqnuPEYB8z07AQg=
Subject key identifier: 47:19:93:06:E6:EA:92:EA:11:8F:DF:21:60:99:4B:E7:B6:97:10:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C7B1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6985E77A911811EF86607A8A762E951A.roa
Signing time: Wed 23 Oct 2024 08:25:51 +0000
ROA not before: Wed 23 Oct 2024 08:25:47 +0000
ROA not after: Sun 29 Dec 2024 08:25:47 +0000
asID: 134823
IP address blocks: 156.234.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51121 (0xc7b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 23 08:25:47 2024 GMT
Not After : Dec 29 08:25:47 2024 GMT
Subject: CN=6718b30f-918f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5f:70:22:4a:a1:17:16:41:3d:d8:fd:72:fb:
94:0c:0b:04:d2:3c:22:14:46:f9:57:5d:63:1e:16:
d6:94:20:84:b1:eb:56:ad:31:95:1d:f6:07:f6:7a:
19:3f:67:97:2c:3a:16:86:82:00:c5:9e:ae:42:1b:
55:d3:d0:68:51:5c:ab:75:08:c4:27:6f:a7:07:f8:
65:d4:38:8b:c0:84:34:e7:e1:f8:ef:c6:e5:ba:e8:
8a:69:b4:31:a2:81:23:17:69:43:d2:91:b4:73:9a:
c4:9d:f6:c5:53:30:91:c5:5b:51:96:a4:a8:6f:db:
29:42:7a:b4:2d:0f:5b:a3:08:a7:10:64:a9:02:ac:
43:32:3b:7e:a6:58:c6:10:db:29:7c:db:38:fe:16:
e8:43:eb:f2:d0:86:25:1b:73:9f:6f:e3:4c:76:90:
90:83:83:2c:54:f0:89:12:fa:aa:4c:79:75:0e:38:
34:c2:dc:78:b3:cd:18:23:d7:b4:13:7b:64:31:34:
c8:53:c7:e6:14:30:8a:5c:12:df:3e:34:36:cb:8c:
9a:17:b5:30:64:22:1c:3b:2b:0e:a0:d1:e6:ab:38:
14:81:68:d9:8e:15:9f:74:01:83:71:0b:e2:74:01:
9c:6c:3f:3e:3d:7d:e0:d7:bb:0d:59:e6:af:37:29:
b5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:19:93:06:E6:EA:92:EA:11:8F:DF:21:60:99:4B:E7:B6:97:10:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6985E77A911811EF86607A8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.137.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:c4:68:84:5f:5e:65:ff:91:27:41:40:44:6d:41:fb:de:5d:
92:d3:ea:54:e5:f2:db:24:9e:a7:dc:85:24:55:4c:ec:79:8b:
40:b8:97:51:03:81:d2:47:87:4a:e8:8a:65:0f:1b:08:db:3c:
88:fa:49:69:28:f5:85:1a:c8:23:42:ef:0c:1d:3c:fb:cd:e1:
91:cb:93:23:9c:8f:e8:64:f9:e2:4b:2c:54:8d:52:b6:0a:43:
e6:6c:fa:c3:ef:3f:0c:f1:d3:c7:05:47:58:b9:a8:df:fa:52:
7b:e0:91:1e:6b:49:8f:ce:e2:57:d0:50:25:ad:3a:a1:f1:bd:
f7:27:92:fe:df:0d:24:68:ad:bc:c6:8d:8e:98:60:83:e6:eb:
df:71:0d:74:76:01:48:07:35:fb:40:d0:c9:c1:65:3b:db:50:
71:42:b3:68:df:d8:b3:fa:8e:33:0f:bf:f7:53:56:eb:c1:f2:
24:95:3a:13:1b:7c:fd:45:33:49:60:e5:5d:8d:d4:15:60:cd:
f9:06:0c:38:29:ef:0d:ef:0d:96:92:1b:c8:32:15:dd:d8:3c:
95:3f:f0:ec:47:2f:5f:74:06:f0:86:ba:ac:9b:1e:94:f1:c5:
cf:23:4a:41:f1:ef:44:a2:20:71:95:9e:69:bd:fa:09:72:dd:
c3:bd:57:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:33 2024 by rpki-client on console-fra.rpki-client.org