Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B51C6D389AB111EF8C17438B762E951A.roa
File: B51C6D389AB111EF8C17438B762E951A.roa (raw, json)
Hash identifier: lVng1jhE4U29SB9O9dNV6Rh2LHNH0usMxrflF/Rfvu0=
Subject key identifier: 93:8D:9A:11:B1:E2:5F:82:A4:E7:BE:F9:F6:1C:3D:0C:B0:72:77:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CDCC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B51C6D389AB111EF8C17438B762E951A.roa
Signing time: Mon 04 Nov 2024 13:35:51 +0000
ROA not before: Mon 04 Nov 2024 13:35:47 +0000
ROA not after: Tue 03 Dec 2024 13:35:47 +0000
asID: 139646
IP address blocks: 156.249.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52684 (0xcdcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 13:35:47 2024 GMT
Not After : Dec 3 13:35:47 2024 GMT
Subject: CN=6728cdb7-f0dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:07:ce:18:dd:fc:5a:5c:d2:2a:36:b4:44:c5:
e1:07:6d:af:1e:e5:87:39:d5:d6:2e:a3:b2:22:8e:
9c:c2:27:91:6d:bc:3f:61:6d:86:b5:ac:52:9b:87:
f5:d0:0a:ed:87:05:e1:bd:e3:91:c5:04:a0:85:b5:
d0:fd:fa:6b:33:24:c3:3a:a5:46:dc:a7:59:b0:08:
47:6a:65:58:bb:ab:23:d1:0e:2d:42:83:a7:b4:11:
70:54:de:38:80:88:e0:d2:99:8c:fc:30:4b:29:58:
ef:9f:b9:8c:cc:bd:c3:55:28:d4:43:70:40:16:a7:
61:16:ac:34:06:12:fb:37:8e:ef:ca:13:a0:b2:48:
76:09:04:4d:0d:d9:6f:e8:25:4c:fb:30:3d:95:e7:
3b:41:38:cd:bb:ca:54:1b:6b:a3:fd:8d:57:ed:d6:
33:a4:4a:e8:3e:9f:2b:76:10:4c:f4:39:be:02:cb:
48:67:c1:9d:64:f4:a6:35:3e:80:ec:23:af:df:89:
b1:5f:54:b5:d1:a8:60:d8:d5:a7:5c:6e:91:3f:21:
fe:04:2c:d9:6b:40:3b:72:d7:fd:6d:52:dc:00:d8:
85:ef:8e:1c:33:d5:46:4a:b2:72:ae:74:de:b1:2a:
9e:ad:a9:66:1c:29:bb:74:3a:21:0d:21:d0:6d:aa:
9f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:8D:9A:11:B1:E2:5F:82:A4:E7:BE:F9:F6:1C:3D:0C:B0:72:77:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B51C6D389AB111EF8C17438B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.28.0/22
Signature Algorithm: sha256WithRSAEncryption
62:b2:3b:2e:38:4e:ee:6b:30:a9:56:9b:6d:7d:83:2d:21:3f:
2d:04:dc:b5:c6:76:2a:e0:8d:88:6f:00:2f:5d:d5:a7:46:f0:
e0:14:9b:21:24:71:05:d8:d3:06:88:a4:31:72:9e:a9:9f:ae:
f7:cc:09:8e:bc:9b:71:6a:43:c4:b2:f5:0d:2a:5a:6f:36:3e:
8c:0d:1c:4c:fe:69:4a:0c:b8:1b:1a:48:cc:98:25:f8:22:e2:
6c:b2:02:2d:8d:47:6c:b7:ad:08:f3:1f:20:e3:8d:d4:43:82:
70:f7:08:d9:73:8f:46:64:f3:ed:b1:93:d1:f3:79:81:c0:56:
0b:80:43:18:8f:a3:8b:85:ea:ce:af:39:2c:83:90:f1:12:ba:
9b:5d:3b:56:6f:0d:15:5a:c1:06:f4:f9:47:e0:1c:96:71:b8:
0b:46:ce:2a:97:8c:44:07:04:55:1f:ca:1e:a3:91:1e:dd:86:
ea:bc:03:54:03:56:2f:19:00:43:ab:8b:fe:86:a9:6d:27:5b:
80:21:b6:d6:91:10:f8:17:92:62:e4:b5:7f:f7:4f:ef:2d:b6:
59:30:2a:70:47:bf:ff:99:c1:7e:be:3e:ef:08:a6:76:ba:70:
50:27:f3:a8:f8:3d:e9:1d:d5:d5:6d:99:ec:7f:d5:14:51:c6:
34:e0:6c:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:46 2024 by rpki-client on console-ams.rpki-client.org