Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4105DC84B1B11EF988A0888762E951A.roa
File: A4105DC84B1B11EF988A0888762E951A.roa (raw, json)
Hash identifier: f9ntwEdHklOdQTIXWKTKfJWDSR8UI8cbGQnvY3pNudA=
Subject key identifier: 53:19:41:50:42:97:B4:02:0E:83:16:DC:0E:B3:76:8C:17:75:C6:47
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A058
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4105DC84B1B11EF988A0888762E951A.roa
Signing time: Fri 26 Jul 2024 06:52:36 +0000
ROA not before: Fri 26 Jul 2024 06:52:33 +0000
ROA not after: Wed 30 Jul 2025 06:52:33 +0000
asID: 136744
IP address blocks: 156.226.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41048 (0xa058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 26 06:52:33 2024 GMT
Not After : Jul 30 06:52:33 2025 GMT
Subject: CN=66a347b4-efff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b0:0d:63:3b:35:fb:94:bc:2b:52:a5:b1:4a:
50:56:46:bc:8b:33:c1:a3:4c:c5:97:46:3a:15:00:
22:a5:4c:2a:93:d2:dd:69:be:1a:a6:cb:36:26:40:
cc:27:ac:a7:c5:e3:5c:38:99:71:f2:63:ae:21:06:
14:d1:69:1c:64:d7:30:94:74:6d:1d:b7:57:a9:d5:
97:2f:ce:52:45:b2:78:ae:14:99:6f:75:aa:1a:28:
ad:6b:6b:b9:2a:b0:aa:fb:b9:4c:e9:b7:1b:bf:54:
08:5f:f0:ee:31:35:20:88:88:eb:d8:b6:03:62:a4:
7a:56:b0:34:53:5d:36:c9:5b:02:df:44:00:c7:33:
c2:9f:6e:31:89:6b:40:be:83:73:b5:43:75:ba:00:
f0:6d:eb:f6:73:1d:2c:16:44:2c:97:c9:12:de:3b:
7d:17:74:12:47:27:db:d9:14:65:e4:7b:73:5d:55:
ae:fb:74:8a:08:98:d3:e2:aa:9b:31:41:17:fd:11:
ba:20:41:20:9e:a6:7f:77:66:cb:53:be:2e:54:fe:
20:77:d1:a9:e5:fe:cf:56:e5:e9:aa:0f:fb:fd:a2:
0e:ef:ba:12:b5:01:4d:40:1b:7f:84:25:12:ff:72:
cc:76:c7:ad:e1:4a:eb:ce:0a:3e:b4:5a:10:3f:54:
f1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:19:41:50:42:97:B4:02:0E:83:16:DC:0E:B3:76:8C:17:75:C6:47
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4105DC84B1B11EF988A0888762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.3.0/24
Signature Algorithm: sha256WithRSAEncryption
14:51:1f:17:e5:96:a1:6b:c3:d1:d3:d7:13:13:61:16:03:93:
bf:f6:6f:c5:5a:98:d6:7b:dc:91:67:3c:2c:73:34:d1:db:2d:
f7:54:6c:18:39:d6:62:2b:bd:4b:26:d4:17:c2:f7:85:15:6c:
a2:77:07:34:44:45:62:dc:d3:46:a2:9f:59:38:ad:f9:c7:c4:
0e:9c:a3:43:f7:e8:17:52:dc:fb:4a:53:b0:ac:a7:a0:05:6a:
2f:04:bb:31:c5:6c:b1:76:ae:e3:aa:bf:83:95:9c:10:f7:ab:
32:e8:06:0e:24:e0:41:f3:99:e0:6a:cf:b1:96:fa:31:d9:3c:
85:9d:65:e2:1f:d0:9a:89:f7:23:f0:0d:18:2b:ca:1e:c7:18:
f7:35:05:14:c1:a1:fd:93:0f:43:43:e4:29:ff:d9:5d:de:f2:
cb:3a:3d:e7:04:05:0c:30:ac:68:3f:51:f0:5f:8d:5f:e9:2f:
34:09:35:19:85:39:b2:46:9d:62:04:35:16:6e:86:18:54:52:
b7:52:6c:41:f6:49:5c:9c:6e:5d:12:2b:06:d7:80:b9:9d:bf:
f0:63:4b:75:2b:4d:16:1c:e8:7a:a6:28:1f:a6:e7:86:f4:0d:
80:85:f1:d2:c1:ea:72:5e:d2:d7:de:66:75:35:e3:4e:2e:ae:
23:fe:3d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:41 2024 by rpki-client on console-fra.rpki-client.org