Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80052C149B8011EF8A6252A3762E951A.roa
File: 80052C149B8011EF8A6252A3762E951A.roa (raw, json)
Hash identifier: uG0c0BJEa5oSQiEIAZkjlYVAL47j/mnNQi3mIUPgzAw=
Subject key identifier: E3:25:CB:E9:E6:D2:51:8E:2E:55:3A:CC:38:18:E9:34:4F:F5:29:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CEA7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80052C149B8011EF8A6252A3762E951A.roa
Signing time: Tue 05 Nov 2024 14:16:08 +0000
ROA not before: Tue 05 Nov 2024 14:16:04 +0000
ROA not after: Mon 13 Jan 2025 14:16:04 +0000
asID: 7018
IP address blocks: 156.248.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52903 (0xcea7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 14:16:04 2024 GMT
Not After : Jan 13 14:16:04 2025 GMT
Subject: CN=672a28a8-8441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bb:89:05:38:42:82:b8:38:59:e7:75:b5:e5:
7b:d1:b6:93:a1:5a:3b:2e:db:7c:0d:bb:35:10:85:
d3:e7:c3:89:4a:06:9a:8f:a3:27:9b:e8:cd:f6:ef:
a7:fe:6d:1e:3e:dd:6a:2a:01:3b:51:d9:b3:f0:c1:
bc:d2:50:ec:7c:68:4a:72:6a:2f:32:ee:66:e7:04:
92:f5:ed:ef:83:ee:dc:09:b6:cb:05:ce:cf:36:f1:
d4:65:d8:69:22:ae:36:70:08:5e:ca:cb:48:07:63:
c6:e3:c4:31:3b:80:0b:19:91:24:95:0b:f3:75:0a:
67:16:22:01:9f:cf:99:a3:65:de:7e:05:f0:6c:cc:
0a:39:25:15:94:63:6a:f1:c7:8a:49:62:2f:15:e3:
be:cd:34:3a:58:7f:33:83:ec:19:0c:a7:06:dc:9d:
7f:f6:03:98:37:e2:df:34:18:05:e6:d2:a2:87:25:
b5:e4:1c:34:dd:4e:15:bb:97:08:c6:ea:c3:1c:fd:
86:d6:f9:ee:80:0f:74:0d:4f:8c:f1:86:5e:4c:c9:
43:32:cc:5b:ac:c2:8e:4c:99:97:a1:9e:58:6e:00:
c0:a5:9d:ad:59:9d:82:e5:9c:db:05:d7:9f:a1:b5:
4a:91:eb:e0:24:00:c3:59:f1:03:22:79:0c:8f:06:
40:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:25:CB:E9:E6:D2:51:8E:2E:55:3A:CC:38:18:E9:34:4F:F5:29:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80052C149B8011EF8A6252A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.92.0/22
Signature Algorithm: sha256WithRSAEncryption
18:28:69:20:2d:4a:69:05:4e:31:44:0a:bc:04:4e:f7:4b:04:
9f:8c:34:2a:1b:18:d4:be:a7:69:ab:e3:a0:9f:ca:15:9c:cc:
a9:57:f8:2d:38:7c:30:58:89:77:5e:70:81:82:d4:ff:f5:5c:
0e:fe:52:84:8c:a5:49:82:30:e5:17:d4:b2:0e:fd:35:4b:0c:
b2:49:1b:0e:da:23:be:a5:13:52:9e:32:a8:91:10:c4:23:88:
ad:b5:93:46:72:da:6e:31:94:25:2f:ed:fd:22:9a:87:8d:40:
53:08:de:8d:ac:77:ce:80:fa:f3:1c:c3:08:c6:5f:99:aa:28:
38:e4:ec:81:d7:14:fc:35:65:8b:56:94:44:4d:97:9a:76:44:
d2:f6:df:02:84:ae:59:d4:d2:eb:0c:85:7f:0f:d1:4a:92:60:
81:1d:68:8b:37:41:17:86:c9:e0:58:2c:19:74:2b:b5:d5:1a:
56:ef:ed:94:9c:d9:b3:61:3d:58:01:03:5a:b7:c6:95:40:70:
b3:c1:74:d0:11:82:70:84:77:db:64:ef:83:5b:d3:e1:9e:21:
97:8a:50:aa:f8:6a:3a:a5:4c:13:d8:51:eb:74:02:50:1b:0a:
95:35:b2:a8:cc:77:ea:9d:1b:95:6f:44:43:81:57:fc:83:fe:
ee:1e:ae:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:38 2024 by rpki-client on console-ams.rpki-client.org