Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F54E2BA8D3111EFAE51EE73762E951A.roa
File: 9F54E2BA8D3111EFAE51EE73762E951A.roa (raw, json)
Hash identifier: SEmfoZ93LziFH2U/cBzhYSyTJ6XMwL73cXg+we2yHVg=
Subject key identifier: AC:98:BB:14:A8:4B:15:9F:F7:69:E3:B5:28:DB:1D:A3:8C:50:6B:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C6A0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F54E2BA8D3111EFAE51EE73762E951A.roa
Signing time: Fri 18 Oct 2024 09:16:14 +0000
ROA not before: Fri 18 Oct 2024 09:16:10 +0000
ROA not after: Sat 23 Nov 2024 09:16:10 +0000
asID: 48031
IP address blocks: 156.246.148.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50848 (0xc6a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 09:16:10 2024 GMT
Not After : Nov 23 09:16:10 2024 GMT
Subject: CN=6712275e-b455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d5:bf:f1:31:43:2b:9d:45:6e:81:8c:d1:90:
f8:20:38:67:0f:19:31:08:01:9e:56:a7:4d:a4:3f:
09:6b:8f:a4:f3:18:00:df:7a:1b:5d:d9:86:9c:68:
df:54:3e:c8:5c:d5:bd:5f:8c:b2:8a:62:fe:11:b4:
28:8f:9e:5f:42:ff:d7:74:5c:2e:af:bd:33:17:ca:
a2:01:8f:04:b4:bb:7d:d4:26:2c:3c:bc:7d:03:c5:
54:7a:1f:04:be:4f:38:c8:24:f3:31:09:e4:ab:b7:
ea:e8:e3:3d:17:d0:3c:be:e0:6a:54:79:90:e9:1d:
71:44:f0:a5:12:51:40:98:c5:26:18:26:18:6a:1f:
63:83:a0:91:a0:e5:11:f1:b9:c4:98:a9:d6:1e:41:
6e:06:a9:2b:88:d6:20:0d:fe:7d:9d:71:dc:cf:8b:
c2:32:70:ed:19:dc:80:27:58:ca:4e:b7:28:89:17:
9b:0b:71:7d:63:7e:8d:d5:9b:1a:6f:f6:38:26:d7:
ad:36:20:64:44:9d:75:6d:04:10:23:eb:7d:53:84:
24:fc:41:a8:00:ae:5c:6a:7f:dc:92:12:2b:bb:e9:
43:9c:b1:ec:20:30:cf:e7:0f:22:2c:dc:db:44:f2:
0c:d4:1e:f4:ef:e3:e4:1a:81:33:55:7e:d6:5a:00:
14:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:98:BB:14:A8:4B:15:9F:F7:69:E3:B5:28:DB:1D:A3:8C:50:6B:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F54E2BA8D3111EFAE51EE73762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.148.0/23
Signature Algorithm: sha256WithRSAEncryption
79:07:87:d0:54:8e:d0:ec:89:9a:40:3d:19:22:f7:5e:2d:7d:
85:72:6e:f7:29:74:d8:0e:30:91:ab:e0:ab:7e:75:95:3d:7b:
8c:39:4d:7a:99:a8:4a:b4:03:32:36:00:1a:1d:a4:03:e3:4a:
1d:6e:c9:69:f8:84:7b:d9:6d:00:ca:e2:57:7b:a7:8b:54:8d:
cc:23:21:bf:97:ac:90:6a:bc:4a:1b:6e:ee:9f:0d:b2:ef:43:
f8:e8:c6:95:03:92:da:64:f2:c5:ab:c3:80:12:b3:77:3b:03:
67:6d:c1:10:63:4c:d5:99:30:b4:55:df:a7:1e:6a:d0:07:8d:
2d:5c:be:20:9c:b6:be:7a:22:7a:2c:eb:02:a2:31:ef:64:44:
34:63:95:5a:96:58:30:b2:3e:70:14:f7:f7:af:a4:25:dd:74:
77:41:35:34:d8:a5:58:93:fa:73:0e:e1:ee:93:be:dc:68:1d:
9f:6b:73:72:b8:54:00:ca:85:ab:41:b2:4a:c3:ad:48:13:f9:
0f:99:ae:00:83:a9:21:3f:2e:28:31:a3:b0:9c:de:96:64:ae:
04:b7:a9:93:33:32:0a:8a:89:8e:bd:09:fb:8c:19:39:ee:6a:
e4:9d:e2:dd:16:2c:0f:56:df:0f:2d:64:fe:38:f1:f5:60:de:
78:15:ea:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:41 2024 by rpki-client on console-fra.rpki-client.org