Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A10426C9EA911EFB38A2B89762E951A.roa
File: 8A10426C9EA911EFB38A2B89762E951A.roa (raw, json)
Hash identifier: ntL5rjluVzTCpiO+Z8DrdA+ZykNRQfbd59EvVkE8zn4=
Subject key identifier: AC:BC:A8:A2:DA:56:8E:11:5C:78:36:0C:B0:19:4A:68:FD:AE:9C:69
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D029
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A10426C9EA911EFB38A2B89762E951A.roa
Signing time: Sat 09 Nov 2024 14:47:27 +0000
ROA not before: Sat 09 Nov 2024 14:47:24 +0000
ROA not after: Wed 11 Dec 2024 14:47:24 +0000
asID: 150519
IP address blocks: 156.240.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53289 (0xd029)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 14:47:24 2024 GMT
Not After : Dec 11 14:47:24 2024 GMT
Subject: CN=672f75ff-19cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:13:f8:9b:47:e1:66:4b:86:d0:ce:92:cd:35:
95:a6:94:7a:9f:19:58:b5:79:6b:51:84:3f:8c:a7:
02:a6:ae:54:8a:4c:ff:80:80:f7:c0:9a:64:a7:32:
af:2c:a9:0b:44:62:c2:44:e0:b4:e2:3f:ff:fb:21:
16:51:73:23:e5:b5:df:b0:14:0e:aa:43:ec:d1:a0:
b5:40:97:e4:7e:91:fa:df:7d:2d:d3:dc:b3:80:97:
25:86:53:dc:56:20:af:8a:3e:1e:97:eb:c3:38:b1:
1f:f5:3f:1a:c5:d3:86:3c:b2:35:0c:44:2e:bd:41:
20:3b:7c:45:e8:7e:6c:79:f0:a2:52:3f:2e:40:8d:
d5:90:fb:95:22:bb:79:dd:86:71:b6:6f:af:58:11:
d8:65:06:5c:da:24:22:b7:97:8d:32:35:a7:82:bd:
aa:b7:87:67:3f:02:e9:43:09:2b:e1:7e:c8:ca:38:
27:45:58:5f:a3:99:ee:44:b7:4b:20:ed:ce:8c:8a:
8f:72:4a:ee:48:6f:5d:c1:bd:07:35:ee:0f:52:20:
06:d7:8f:6b:eb:77:24:1e:ec:40:b9:5b:9f:b2:9e:
ff:50:39:c2:4f:cf:55:79:8f:be:b5:9a:31:9e:55:
b3:c6:84:8e:a7:47:24:ad:74:50:93:50:48:43:e3:
8b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BC:A8:A2:DA:56:8E:11:5C:78:36:0C:B0:19:4A:68:FD:AE:9C:69
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A10426C9EA911EFB38A2B89762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.100.0/24
Signature Algorithm: sha256WithRSAEncryption
42:92:83:a7:ed:3d:a2:c6:d0:ae:55:cf:02:d4:08:e4:0e:d4:
6b:d5:b1:b8:89:43:8f:75:22:00:11:f0:bb:3b:30:5a:1e:7f:
36:76:26:51:c0:ee:ce:d8:ca:80:fc:cc:04:e0:82:94:1a:74:
10:b9:27:a1:5e:e1:d2:79:37:1c:1d:c8:8d:62:5e:ec:1c:be:
a6:17:da:eb:f6:a0:09:61:cb:4f:90:1f:9e:a4:a4:06:27:a6:
a8:e2:8b:51:8f:ef:5c:70:ec:b4:dc:85:61:a5:8e:6c:b3:82:
32:8c:af:20:84:bf:33:aa:2e:d0:36:bb:d8:4a:d3:65:2c:36:
35:26:68:f7:1c:3f:1e:77:b0:2a:ca:30:c3:4a:7f:67:6b:ef:
f2:79:6d:8b:0f:90:c2:ff:9d:1a:3b:5d:65:e9:d4:c6:85:27:
92:72:b3:74:55:ff:32:a6:5a:2f:fc:8f:40:78:b2:85:62:a3:
b7:34:18:41:ea:bc:1d:a4:ff:28:74:34:e2:5c:1f:79:b2:56:
c1:00:b4:40:46:89:41:4b:2d:3e:ea:0f:43:e7:f9:59:27:21:
db:a4:15:6f:01:1f:9c:57:9c:01:1d:1f:ec:7f:e1:d0:23:3d:
77:54:2c:ca:cd:16:a8:41:30:b1:66:dc:54:c0:3b:5a:46:79:
2d:c4:4a:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:38 2024 by rpki-client on console-fra.rpki-client.org