Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B1E5A99E5F1611EF9F859091762E951A.roa
File: B1E5A99E5F1611EF9F859091762E951A.roa (raw, json)
Hash identifier: JEzDjecRkJ8Rl3LE6GYU7k0spPqwzyjWgYQBiuHN+sw=
Subject key identifier: 5E:57:54:23:73:AD:C0:A2:64:DF:12:61:A5:04:89:24:90:55:0F:E0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: AA66
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B1E5A99E5F1611EF9F859091762E951A.roa
Signing time: Tue 20 Aug 2024 17:07:35 +0000
ROA not before: Tue 20 Aug 2024 17:07:32 +0000
ROA not after: Tue 21 Jan 2025 17:07:32 +0000
asID: 63199
IP address blocks: 156.230.50.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43622 (0xaa66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 17:07:32 2024 GMT
Not After : Jan 21 17:07:32 2025 GMT
Subject: CN=66c4cd57-262e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:93:a7:c2:91:ac:d5:ac:fd:7b:52:c3:a0:07:
4e:85:a6:55:06:d3:3f:7f:d5:79:5a:63:21:ee:d2:
46:9f:2d:8b:0f:a1:32:ca:24:fb:79:2e:6c:20:e1:
bd:d3:81:36:50:fe:28:ee:98:ef:46:b8:03:92:01:
08:b4:44:d4:28:e7:6a:b0:91:7b:13:1c:d7:27:6c:
5d:1b:4f:39:92:1f:43:48:53:1b:87:c8:6a:f3:64:
99:31:75:2a:f8:60:0e:c4:8a:90:b1:fa:54:2b:80:
6e:aa:8a:e9:f8:cd:a3:84:72:49:a7:16:9c:b4:de:
bb:05:78:a4:86:62:4a:ff:5e:1d:ee:f7:1c:5b:1b:
66:84:17:fe:dc:75:fc:8e:88:14:d7:24:6d:28:d4:
ff:af:44:50:91:a7:a6:29:c4:1b:93:24:c3:d2:0f:
88:dc:8b:a4:d5:b1:38:f2:3d:6c:95:e9:86:57:06:
f9:a3:0e:71:95:f8:20:ab:2a:83:96:73:11:d8:ca:
be:13:9b:f0:57:0f:95:f4:08:18:2e:de:85:77:d9:
22:aa:38:4d:e0:4c:65:eb:7f:12:12:37:43:75:e7:
3e:1d:49:83:a2:2a:8f:af:7d:4c:60:41:f7:57:7f:
8d:25:4d:da:4e:ac:3f:36:a1:0d:49:a8:70:8c:3a:
5d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:57:54:23:73:AD:C0:A2:64:DF:12:61:A5:04:89:24:90:55:0F:E0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B1E5A99E5F1611EF9F859091762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.50.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:98:c8:c9:ac:da:23:62:1d:32:47:29:bc:c6:2a:9a:42:40:
e5:2f:dc:d8:d6:4f:84:49:fe:07:c8:dd:db:04:e5:4c:5b:8a:
47:61:c6:8f:60:ca:63:57:19:fe:15:17:ec:fe:04:54:14:8e:
75:ec:2d:d8:ca:10:c6:d6:78:ca:6f:1f:6e:3e:1b:3c:80:b6:
a3:7c:05:12:f7:4f:a2:3e:37:74:e1:b6:cb:21:a0:8e:27:a7:
f2:dc:4e:e4:e1:b6:d9:44:79:4a:98:a5:03:68:1f:0a:0b:f8:
01:fb:e2:24:e9:8f:c3:26:a7:3d:dc:28:ae:32:06:33:a4:1a:
a4:ed:5e:c4:6f:75:76:a6:98:0e:24:0f:9a:ff:89:8a:b4:40:
2e:d6:93:d2:0e:cf:da:82:92:c0:80:3b:93:63:46:ef:5d:66:
5f:56:f0:93:41:55:e0:0d:23:4e:ca:ef:17:08:03:85:fa:7d:
92:14:59:a7:ab:44:4c:ae:b0:e1:27:ba:ed:13:1c:50:57:1e:
a1:b3:26:1a:4b:11:3b:2b:1f:33:9b:2b:5a:65:fe:f8:6c:72:
53:4d:2b:b0:7f:b8:6c:66:0a:2f:d5:ad:2d:d1:d1:57:31:d6:
a7:69:e2:2b:fd:c0:48:b8:a1:e7:b1:5d:5f:d4:78:cf:cf:42:
e5:2e:e6:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:44 2024 by rpki-client on console-fra.rpki-client.org