Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F21DF6A8F8A11EFA6577CBE762E951A.roa
File: 7F21DF6A8F8A11EFA6577CBE762E951A.roa (raw, json)
Hash identifier: FPsue+Xil7Bj0D5TBG1RG13JrGhhlpdU6tlvpYnU8O8=
Subject key identifier: 20:53:D7:45:2C:BE:76:32:C8:F6:D6:E3:78:10:98:56:AE:B8:B7:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C751
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F21DF6A8F8A11EFA6577CBE762E951A.roa
Signing time: Mon 21 Oct 2024 08:57:27 +0000
ROA not before: Mon 21 Oct 2024 08:57:24 +0000
ROA not after: Sat 23 Nov 2024 08:57:24 +0000
asID: 44559
IP address blocks: 156.246.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51025 (0xc751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 21 08:57:24 2024 GMT
Not After : Nov 23 08:57:24 2024 GMT
Subject: CN=67161777-0bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:97:8a:be:99:18:9a:f9:77:ad:85:5b:f9:
7b:0a:c4:3b:2c:72:43:a5:a7:20:30:fe:8c:4f:34:
ee:94:45:b8:c0:06:17:b1:7e:f1:e0:cf:8a:a7:01:
55:c9:4a:c1:d3:c8:38:74:fd:3b:a2:74:db:ca:ed:
db:e4:63:aa:1c:e0:5f:55:97:42:99:90:11:ab:cc:
1f:9f:48:f3:e3:bd:8e:74:8a:5b:e3:67:86:80:5d:
bf:f1:4e:93:c3:ae:6c:27:13:b7:1a:bd:04:cb:cd:
98:c2:94:63:8f:d2:8f:8a:82:78:d8:5a:fa:ef:83:
6a:de:eb:b4:4e:bb:40:3c:bb:d5:9b:15:73:71:6c:
24:f9:16:2e:19:23:51:95:c0:cd:b5:7e:47:ec:98:
99:e2:c8:c5:4c:a6:ff:44:65:dc:04:99:0d:ff:08:
2a:a5:01:4a:68:d4:d6:f0:30:c5:e5:63:3b:e8:bc:
00:02:b7:ee:0d:af:80:ac:cd:17:ca:2f:8e:b8:ab:
f1:0d:4f:cf:d0:c2:50:c7:62:9b:dc:dc:74:e1:7a:
69:a5:25:ac:75:68:1a:0d:48:0a:b2:5b:8a:fb:4b:
ed:d5:60:02:58:98:cd:8a:bf:bf:44:79:d1:4f:41:
fb:d9:71:5d:62:06:1f:4f:25:e7:f1:d4:c2:81:25:
b2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:53:D7:45:2C:BE:76:32:C8:F6:D6:E3:78:10:98:56:AE:B8:B7:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F21DF6A8F8A11EFA6577CBE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.176.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:c4:1d:e0:24:36:9e:d3:cc:42:78:c3:88:62:da:7c:68:8e:
95:1a:79:80:56:fe:30:56:e3:fc:a5:cd:26:36:64:57:f8:e1:
67:ea:b0:be:fc:57:99:84:96:a8:57:01:f0:76:1d:33:e4:2f:
42:84:04:2a:a0:4f:83:ed:02:9e:e3:9e:c9:37:b8:52:ef:2f:
61:6c:e9:12:2d:2f:4d:9e:e5:12:00:c2:5f:42:04:d1:9c:59:
23:0d:79:54:09:a8:12:20:54:11:8e:cb:0e:ed:b7:a1:2c:ad:
6f:6e:ac:1a:55:f8:1c:5f:fa:a9:26:05:7f:e7:b3:45:4e:13:
d8:98:f4:9f:ed:c3:97:5e:4e:4b:3b:ab:47:f5:99:ba:a6:f2:
4d:8e:dd:88:16:a4:1c:85:73:e5:a8:53:18:03:f4:e3:25:5e:
aa:ce:18:49:5a:ac:30:59:ed:46:5c:80:33:c1:32:33:19:fe:
d3:43:b5:3d:c7:e9:19:1c:fc:58:7d:ab:27:9c:2c:6b:f2:f5:
13:6e:eb:df:d8:f3:c5:42:9c:2e:8d:5a:84:8b:d3:89:29:d5:
75:d9:6d:93:2b:4b:43:77:e0:9e:33:28:0a:58:fb:90:d7:92:
ea:17:8b:00:db:0a:dc:3f:ba:50:e8:de:e5:55:52:86:8a:ec:
ef:46:3a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:38 2024 by rpki-client on console-ams.rpki-client.org