Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94A74F585DCD11EF83901B87762E951A.roa
File: 94A74F585DCD11EF83901B87762E951A.roa (raw, json)
Hash identifier: hfOYUd8x89g22LWHOnWeiLAojN6Tv+aFMnOWEBAbpvk=
Subject key identifier: C9:FD:2E:5C:69:64:AC:71:C5:D7:00:C3:87:C6:50:55:9C:55:41:B3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A865
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94A74F585DCD11EF83901B87762E951A.roa
Signing time: Mon 19 Aug 2024 01:51:42 +0000
ROA not before: Mon 19 Aug 2024 01:51:38 +0000
ROA not after: Thu 31 Dec 2026 01:51:38 +0000
asID: 17561
IP address blocks: 156.245.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43109 (0xa865)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 19 01:51:38 2024 GMT
Not After : Dec 31 01:51:38 2026 GMT
Subject: CN=66c2a52d-3808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5c:46:2e:37:3c:e0:06:f5:ae:e4:a7:3a:4a:
45:5a:69:24:74:83:62:d3:be:af:1d:cc:82:74:65:
d0:00:7e:bd:6b:89:b7:4b:a8:e6:1f:4e:1e:82:64:
69:fa:6f:f7:1c:a5:c9:86:c2:1e:7c:82:b7:a8:cc:
0e:a9:92:f2:78:eb:31:53:56:c5:16:23:1c:91:94:
6e:ca:a9:c7:24:09:7e:4f:fe:8a:da:62:c1:e3:18:
c2:2f:dc:32:0b:b9:03:a1:5c:67:a7:f7:1d:58:27:
17:4d:65:17:ae:4b:ea:93:3c:51:13:5d:73:49:71:
cc:7b:1a:a9:4c:5c:70:03:2b:67:77:6a:f2:c4:f1:
bb:d7:07:d0:7c:b8:86:19:e4:68:8e:cf:62:4e:7a:
0b:d6:e6:0a:18:d0:35:4e:13:25:be:69:1d:54:2d:
87:4e:26:55:4a:ea:ee:d7:90:94:33:ac:e2:3e:21:
20:2d:d9:b3:cb:ae:57:96:1e:35:1a:5c:6f:76:bb:
6d:31:40:48:aa:37:34:0b:b0:90:63:e3:ea:aa:86:
28:e7:97:f3:ed:6d:3a:36:38:b2:59:67:71:ec:d5:
2e:54:48:99:45:f8:98:49:20:89:9c:f4:55:7b:3f:
d5:d8:94:48:5f:32:bc:9a:6c:da:7a:02:0e:9d:e4:
d6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FD:2E:5C:69:64:AC:71:C5:D7:00:C3:87:C6:50:55:9C:55:41:B3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94A74F585DCD11EF83901B87762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:6b:0c:0e:40:b4:99:3d:d8:7b:31:4a:6a:39:19:8c:ef:4f:
5f:d2:34:1e:3c:43:54:a0:fc:6e:16:e8:4a:4f:96:79:07:8a:
3c:1a:23:6e:13:15:e1:00:6d:41:27:bb:cd:ff:c0:56:81:4e:
7c:f3:ec:52:6d:21:55:49:b2:c1:07:7b:c2:41:80:69:77:a4:
b3:84:c3:cd:c7:24:b2:3a:07:4e:9e:e1:ef:f3:d5:c8:02:e9:
6e:23:a2:6e:1a:02:62:58:b2:6c:2c:9c:69:9d:37:ec:fe:42:
d3:b7:59:eb:7d:1b:75:77:fa:dc:86:30:e9:3c:e8:74:60:7e:
0f:54:c8:d5:f2:e2:33:76:04:bc:87:ef:06:a1:f3:c7:ad:54:
d2:17:19:7d:2f:a9:e1:62:91:1f:34:90:b1:71:a3:c3:cb:90:
41:22:ea:07:54:af:38:6e:7b:a2:0a:da:3c:0c:3d:cd:2e:a0:
42:dd:54:47:28:73:0c:3d:85:7a:04:24:90:5f:b8:38:85:a5:
62:5e:da:f3:d4:6a:56:f2:d5:fa:98:89:68:f0:89:83:d2:b7:
ee:0e:2e:18:48:80:04:32:e7:15:0c:d4:79:6f:81:3e:b1:bd:
1b:fe:b3:1d:f7:e0:aa:d0:21:50:0d:d9:a6:fe:38:69:3c:ed:
0f:73:97:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:39 2024 by rpki-client on console-fra.rpki-client.org