Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/999F118C976911EF9C472D5A762E951A.roa
File: 999F118C976911EF9C472D5A762E951A.roa (raw, json)
Hash identifier: K5MjhCunNJNuVcJn54EmxxASSz28N/y7kJJMDm5KYzI=
Subject key identifier: 23:87:52:1B:89:CD:64:A0:9A:68:CC:EE:21:7B:9D:1F:FD:1A:FC:16
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB1E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/999F118C976911EF9C472D5A762E951A.roa
Signing time: Thu 31 Oct 2024 09:22:08 +0000
ROA not before: Thu 31 Oct 2024 09:22:04 +0000
ROA not after: Fri 13 Dec 2024 09:22:04 +0000
asID: 138915
IP address blocks: 156.244.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51998 (0xcb1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 09:22:04 2024 GMT
Not After : Dec 13 09:22:04 2024 GMT
Subject: CN=67234c40-5719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:09:53:93:aa:02:80:7f:c6:4c:e6:3c:de:b2:
e1:3f:8d:ee:3e:77:6c:c8:e1:cd:83:38:ea:4c:63:
d2:99:e6:f0:f0:00:95:a7:1c:5b:e7:35:8b:bf:de:
05:11:18:98:52:1c:6f:e4:05:9e:14:14:f9:4f:de:
2d:a3:98:08:7c:5f:53:f3:19:eb:4e:01:46:9f:b1:
f2:d9:98:25:68:c0:fd:cf:37:23:49:01:28:5d:74:
d0:94:de:eb:18:59:74:b4:40:0d:bb:d8:92:db:5b:
fc:b2:82:70:0b:fa:f8:2a:44:10:40:fd:d0:16:fb:
7a:fd:f3:0a:1b:f1:64:2a:03:01:ad:29:49:e8:cb:
f8:1c:33:6f:d4:ee:65:04:75:26:8d:94:fb:ad:27:
7f:f6:bb:28:15:c3:99:f4:6a:2c:e2:bc:f1:25:16:
64:08:8e:f5:87:a7:3e:5e:81:05:17:d2:9e:b0:ee:
96:38:b8:e3:80:ca:48:b4:b5:9d:36:2f:1a:00:b2:
8c:bf:5a:82:aa:2b:a3:36:5e:a3:36:2d:15:93:31:
68:cb:4a:95:a9:5c:d7:db:05:46:14:4f:00:40:2f:
f1:b6:0c:c0:ca:02:d1:f1:f4:ca:5c:b2:15:70:d8:
86:fa:cb:75:3d:b0:5b:0e:cc:18:a5:ee:54:6b:c8:
f8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:87:52:1B:89:CD:64:A0:9A:68:CC:EE:21:7B:9D:1F:FD:1A:FC:16
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/999F118C976911EF9C472D5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.36.0/22
Signature Algorithm: sha256WithRSAEncryption
48:ad:f9:0d:8e:5d:0e:c9:83:fb:73:23:d0:ae:98:11:bc:2b:
0a:8e:99:ea:a4:d5:80:51:fa:e1:1d:58:dd:59:c7:dd:3b:ca:
96:59:d7:af:e4:90:58:12:2b:3c:b8:a1:df:31:e8:46:59:96:
80:a5:e6:b2:e6:77:41:9f:f7:d2:8c:d1:53:20:8a:f2:64:a1:
e9:e6:1f:9a:fe:63:36:3a:46:fa:69:a7:71:d0:e3:dd:e9:52:
63:ab:94:e5:d2:6f:62:e1:c3:49:44:33:e4:92:d1:b4:a0:3e:
fa:b3:2a:f5:27:41:08:5d:04:25:76:5c:2d:4f:fa:32:2a:c5:
f5:3c:26:94:e5:0d:42:91:33:f8:83:68:51:46:3d:e1:3a:c0:
d4:26:08:c5:5f:d6:a4:7c:5f:fb:fb:d7:a7:94:5d:cc:c9:85:
e0:11:8b:3b:73:37:f3:a7:81:e5:44:ad:d3:b8:88:0c:57:a6:
58:49:c1:9b:85:a9:3e:bd:dd:8a:0e:e1:7b:ba:19:6c:43:89:
fe:32:78:3e:14:8d:f0:c6:5f:b6:bf:ab:51:25:87:a4:24:c5:
57:be:8c:35:74:bb:24:f6:af:81:c8:e1:d0:b8:bf:93:87:1e:
fa:f3:45:6c:fe:71:f1:e7:46:12:d9:4d:ed:91:d5:4b:1e:98:
e8:f0:81:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:41 2024 by rpki-client on console-ams.rpki-client.org