Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98F9DA809AA911EF95A16658762E951A.roa
File: 98F9DA809AA911EF95A16658762E951A.roa (raw, json)
Hash identifier: pUdPmjX9VuXUFJAU/skcfIawiTEzQupc53SGj71lJH8=
Subject key identifier: CC:1F:2B:B1:09:A9:4A:D6:6E:DC:5C:20:17:34:DF:84:17:2A:3D:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD7C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98F9DA809AA911EF95A16658762E951A.roa
Signing time: Mon 04 Nov 2024 12:37:48 +0000
ROA not before: Mon 04 Nov 2024 12:37:44 +0000
ROA not after: Tue 03 Dec 2024 12:37:44 +0000
asID: 54801
IP address blocks: 156.242.10.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52604 (0xcd7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 12:37:44 2024 GMT
Not After : Dec 3 12:37:44 2024 GMT
Subject: CN=6728c01c-3a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:70:68:b8:58:3c:03:05:85:dc:ff:28:4e:25:
3a:b7:4d:0d:4a:73:31:05:d1:62:b6:40:d8:68:98:
91:ba:a8:82:ea:c1:98:25:c6:0b:c3:cf:b0:cd:eb:
18:90:a9:47:de:9c:86:d9:bc:18:3b:e2:18:f7:18:
a4:38:6d:6c:d0:19:28:fb:af:f9:40:62:bb:9b:8b:
e4:2b:0e:26:d3:09:fd:d8:c6:3c:4b:7f:ba:8c:ac:
f7:31:54:e4:95:19:74:3b:bc:5d:41:aa:39:df:51:
61:a8:fc:21:a0:7a:2e:7b:9f:5d:64:5e:f0:5e:27:
cb:b1:6c:a6:89:95:50:b4:5e:91:19:25:f9:5d:2a:
2e:42:0c:32:21:63:b6:e5:34:ad:5b:ea:6e:3a:3e:
02:3c:0d:ef:5a:22:5a:82:4f:e0:c9:6e:d5:a9:93:
bf:17:06:e2:3a:88:45:b7:39:c4:7f:79:53:5a:cc:
48:bb:62:10:0a:9c:e6:11:f2:88:99:ee:a3:f3:ff:
32:00:ce:a0:4a:ac:4c:4b:9f:e7:05:0c:05:5f:d0:
d0:e2:8e:3e:0f:9b:6e:12:8b:94:a4:80:41:66:93:
f5:e3:dc:24:56:26:cf:e3:46:d6:99:ac:67:fd:a7:
22:5b:de:df:22:0a:6a:9e:9e:f9:a4:8c:14:8f:1e:
54:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:1F:2B:B1:09:A9:4A:D6:6E:DC:5C:20:17:34:DF:84:17:2A:3D:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98F9DA809AA911EF95A16658762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.10.0/23
Signature Algorithm: sha256WithRSAEncryption
16:fc:82:9a:c6:59:f0:22:2c:71:26:12:11:da:4c:c8:62:3a:
8a:4e:1f:49:31:c9:ca:42:5b:e7:93:75:ca:b9:30:91:ee:09:
ee:73:c5:b7:36:98:e8:0c:0f:82:98:91:d7:82:94:b5:c1:30:
f1:39:12:81:52:db:ff:47:e4:bf:ca:97:c0:80:d0:97:82:cf:
6f:2e:d6:8e:52:28:e6:be:db:c3:af:db:ee:f1:3e:c2:6b:d8:
dd:dc:ca:1b:9b:f0:b7:0e:e8:f1:77:33:aa:29:e1:66:f2:ec:
02:70:b4:3c:43:a7:9b:96:8a:45:90:7f:d7:a0:7f:9a:19:48:
d1:18:5f:05:e0:c8:a9:74:c3:7e:46:76:62:27:5d:f7:ee:a5:
4d:da:cc:7d:6d:f4:2d:00:87:51:d8:aa:f8:f4:90:09:25:22:
ae:aa:79:e7:af:69:02:30:d3:6f:f0:c6:01:46:d7:2e:12:e6:
8f:16:95:5c:fb:f1:47:43:eb:f5:e3:c5:03:56:f8:84:62:0b:
9a:e4:1a:9b:32:6a:0d:07:ac:f5:e3:96:33:a1:48:0f:94:83:
07:b1:c4:ae:08:14:33:d6:84:2e:69:ef:e2:3f:df:52:5a:22:
92:ac:f0:cf:18:8d:8b:07:0d:72:28:3d:64:6b:8d:ee:b6:a9:
f1:1d:5e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:41 2024 by rpki-client on console-ams.rpki-client.org