Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/810D45CE976B11EF9F90FE66762E951A.roa
File: 810D45CE976B11EF9F90FE66762E951A.roa (raw, json)
Hash identifier: 1ciquyH8+h1VJhWhYIx0ijyKHSXdWU3cT6paVy2lPj8=
Subject key identifier: F2:E9:31:75:6D:56:1B:C1:2C:89:7B:1D:1F:48:8C:0C:0D:6B:B8:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB32
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/810D45CE976B11EF9F90FE66762E951A.roa
Signing time: Thu 31 Oct 2024 09:35:45 +0000
ROA not before: Thu 31 Oct 2024 09:35:42 +0000
ROA not after: Sat 21 Dec 2024 09:35:42 +0000
asID: 63139
IP address blocks: 156.227.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52018 (0xcb32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 09:35:42 2024 GMT
Not After : Dec 21 09:35:42 2024 GMT
Subject: CN=67234f71-32d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:b3:7c:c1:93:9d:94:70:67:95:6a:01:16:
13:de:22:8e:a8:cf:60:70:7d:35:b2:7a:75:82:ce:
6e:31:db:1d:72:e2:5f:c3:75:5a:69:e1:fa:76:94:
ab:13:c3:3a:4a:35:ff:20:f4:5e:53:43:b4:da:c7:
ff:80:56:a2:3a:29:f7:34:a8:a9:bc:36:2f:c9:59:
e1:84:2c:86:4a:5b:39:a8:da:4f:bb:c5:ac:4d:a6:
e8:80:27:cd:d1:a0:2e:44:ff:98:dd:fe:cb:e7:4f:
fd:bb:65:c4:24:c4:55:81:31:2c:56:8d:da:17:52:
1b:de:2d:2b:72:a9:df:16:cc:9e:c2:5a:2e:cd:00:
80:a9:c2:c1:cb:e8:33:61:22:15:17:32:ee:63:0e:
d5:03:6f:fb:c0:95:30:c7:f3:b1:df:54:ad:a9:ac:
0d:d6:5c:4b:fc:08:cf:c7:2d:1b:e0:0b:ef:a9:cc:
d4:cd:47:6d:2c:87:20:c5:84:35:07:9a:ea:e3:02:
5d:68:0e:ec:6f:7c:a7:a7:f1:9e:e4:2a:58:97:43:
3a:d4:70:d3:4b:0a:fe:e6:ed:5b:78:47:d8:49:44:
46:ac:e4:fd:44:1c:99:bc:a7:9d:15:d2:88:df:f0:
42:f7:4a:aa:36:da:3a:79:fd:3a:a8:e1:f2:9f:b4:
e7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E9:31:75:6D:56:1B:C1:2C:89:7B:1D:1F:48:8C:0C:0D:6B:B8:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/810D45CE976B11EF9F90FE66762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.14.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:07:77:f6:e4:8a:ae:ba:8a:2e:64:b1:46:9e:dc:e6:2f:b0:
81:d4:c4:a2:28:12:53:08:e9:e3:ce:a4:53:03:b2:cc:e3:85:
8b:fa:85:86:48:ba:b8:a0:8b:9b:81:77:14:d4:f0:b4:15:85:
f5:c2:fd:f1:40:80:70:e0:b9:33:16:10:98:38:ea:06:5e:bc:
f5:95:68:b8:17:15:62:f6:42:6f:20:65:af:dc:da:f4:ff:a9:
22:11:0a:54:c1:e8:06:a2:e4:84:fe:37:71:a6:a3:49:0f:54:
89:11:95:43:8c:25:ae:e6:49:1d:08:a2:7c:5f:c6:de:c6:b7:
59:1f:7a:e7:62:bf:df:aa:50:dd:f4:8b:78:63:fc:ac:07:90:
95:7f:78:3b:c6:1f:14:4b:65:68:ab:bf:ed:85:de:06:11:3a:
2c:29:ed:5c:d7:11:ee:e1:2d:48:87:d8:d6:e0:e6:ae:71:1e:
16:54:34:ff:64:01:9e:9b:b2:28:c5:d4:31:04:e9:e1:81:e2:
65:69:a9:11:fb:b2:e1:b8:b1:f1:88:c2:5f:91:12:1b:9b:18:
94:be:59:3c:34:ec:d0:91:97:89:e5:db:74:91:ca:bc:31:20:
1b:6c:2f:81:85:7b:98:90:b6:be:7c:57:a9:87:3b:f0:86:df:
da:39:c9:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:37 2024 by rpki-client on console-fra.rpki-client.org