Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A503436A9A9111EFA0F57043762E951A.roa
File: A503436A9A9111EFA0F57043762E951A.roa (raw, json)
Hash identifier: C/2rKsNF23jpt6J+nd3DrVPwq99lc2NhIF2CvdVinU0=
Subject key identifier: DC:70:54:23:70:3B:26:3F:C1:B7:12:48:73:20:92:72:60:B3:F4:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD5E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A503436A9A9111EFA0F57043762E951A.roa
Signing time: Mon 04 Nov 2024 09:46:20 +0000
ROA not before: Mon 04 Nov 2024 09:46:16 +0000
ROA not after: Mon 13 Oct 2025 09:46:16 +0000
asID: 132585
IP address blocks: 156.241.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52574 (0xcd5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 09:46:16 2024 GMT
Not After : Oct 13 09:46:16 2025 GMT
Subject: CN=672897ec-eafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:55:b4:65:69:7a:00:a5:6e:a3:df:70:f5:02:
c0:f0:da:c3:54:17:88:e7:c0:7a:86:44:f2:66:11:
44:a9:ae:97:ab:3d:67:17:94:58:f5:a1:09:b4:8c:
a5:3c:c4:77:55:57:4e:e6:cb:cc:64:4d:5e:19:d3:
af:49:d2:6f:a4:8e:d6:ec:7b:8c:0a:f6:07:17:23:
9e:8f:71:72:4f:fc:25:99:03:2f:9e:6a:f3:f7:69:
12:01:f7:a7:ed:ab:d1:10:7a:d3:ee:c2:4d:70:c0:
3a:b0:14:5e:5e:39:5a:22:41:d5:94:18:94:6e:f2:
67:fa:65:6d:00:74:fb:e5:39:ea:10:d5:ec:e6:68:
67:fb:55:64:b4:a4:81:1b:55:8e:da:66:3a:75:13:
69:8a:f0:48:0a:fb:e0:ba:e9:4f:cb:d6:72:2a:81:
71:58:1f:a7:1c:87:8f:32:d7:9d:18:71:58:b9:59:
cd:b0:ea:77:84:bf:74:b7:cc:31:c9:8e:1c:64:58:
f7:f0:af:a2:70:c4:51:d2:f8:ce:f6:ab:57:9e:d7:
d2:6d:a9:c3:ee:ff:a9:e1:91:b3:2c:57:bf:43:65:
77:71:45:01:b8:59:54:f5:2d:a0:eb:7b:c1:17:fc:
14:74:1a:b0:b7:4c:d6:65:97:b4:6d:df:cf:2d:21:
52:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:70:54:23:70:3B:26:3F:C1:B7:12:48:73:20:92:72:60:B3:F4:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A503436A9A9111EFA0F57043762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.4.0/22
Signature Algorithm: sha256WithRSAEncryption
33:d2:d5:58:16:13:ef:73:4f:3b:75:86:36:27:f6:55:d1:62:
ac:87:30:62:8f:5f:1e:d8:b3:88:cb:4b:60:d4:12:d9:8f:04:
9c:e2:9a:3f:8b:01:f2:2a:42:35:82:69:7f:83:01:02:da:88:
3e:9c:d0:3e:4d:20:60:fc:6b:be:b8:4c:0e:34:6b:93:34:9b:
d0:cd:bd:13:0c:66:78:0c:55:6a:15:60:63:04:70:f6:91:89:
a2:de:f0:8a:2a:57:dc:aa:4b:08:e0:18:35:96:fe:1a:08:7b:
bb:06:78:ca:ac:fb:c1:94:2a:1d:8c:97:b4:49:2b:96:93:ec:
16:95:b9:75:c5:b7:77:64:0e:95:ef:1a:ef:1b:b4:12:57:62:
31:3b:82:2d:f4:b3:da:56:58:f2:b7:a0:68:64:81:9f:25:16:
a8:67:57:28:68:ea:87:24:5e:2c:77:b2:c3:e0:a0:8a:8f:19:
e4:c7:67:c0:51:bb:7c:d6:a1:fc:7a:24:74:84:87:11:88:3a:
6a:ca:8b:0c:7a:d5:ac:3a:c4:e8:19:95:3d:05:ab:44:63:9b:
79:c9:51:30:b2:21:eb:eb:77:e6:fc:81:59:7d:39:12:0a:f6:
95:9a:9b:b7:85:0d:38:46:b9:c7:1f:a8:64:c5:79:b6:34:0e:
7c:5c:ef:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:42 2024 by rpki-client on console-fra.rpki-client.org