Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B734E8FA76CE11EEBA99B9184AD9E6FC.roa
File: B734E8FA76CE11EEBA99B9184AD9E6FC.roa (raw, json)
Hash identifier: iGTpeNL2AfdEkfwJ8DTagwNn7DXUDTrEeEQGq1xOUu0=
Subject key identifier: EB:88:66:28:DE:AC:DF:B6:FD:74:C1:76:69:F0:8B:9C:16:BF:4E:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4258
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B734E8FA76CE11EEBA99B9184AD9E6FC.roa
Signing time: Mon 30 Oct 2023 02:47:50 +0000
ROA not before: Mon 30 Oct 2023 02:47:47 +0000
ROA not after: Thu 19 Dec 2024 02:47:47 +0000
asID: 141190
IP address blocks: 156.240.64.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16984 (0x4258)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 30 02:47:47 2023 GMT
Not After : Dec 19 02:47:47 2024 GMT
Subject: CN=653f1956-2cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c5:6a:06:5f:90:ff:84:32:04:e1:62:b5:75:
c4:b0:4f:ce:65:71:2d:fc:35:1c:33:79:5f:99:fa:
ee:37:b8:55:b2:72:a5:cd:02:61:4d:f9:82:77:5c:
38:15:82:38:a5:2b:83:63:cc:92:a3:5d:a2:5c:e2:
4f:ba:06:e2:38:a4:aa:16:3d:e5:28:ec:9b:54:02:
61:fa:a9:84:ca:b9:f8:07:3f:93:04:21:6e:b5:5e:
98:56:be:14:2c:b6:0d:51:75:56:27:84:ac:bb:89:
e7:84:7e:6d:19:8b:2a:89:43:27:98:be:b9:c3:b6:
38:c9:7e:b8:e5:46:0a:63:fb:ad:02:c7:a4:60:74:
3d:49:b7:81:ad:fe:75:2f:51:62:52:49:56:5d:cd:
4a:31:34:9a:39:79:e0:73:cb:1d:7f:05:3b:6f:a7:
89:fc:d0:36:f6:9c:1d:a7:c0:8c:93:9a:d5:5e:c0:
34:c6:59:fb:66:f0:1d:b5:58:83:55:84:ce:0a:ea:
f0:68:c5:0e:9a:20:1e:18:bd:e1:8f:7a:86:98:6f:
3f:28:e9:17:32:19:75:49:15:65:e4:7d:b2:6d:5f:
6c:b4:ca:1b:e9:61:24:f4:1b:2f:55:46:24:9c:06:
b3:43:48:a2:8a:0e:f9:14:36:08:6d:1d:74:2e:53:
ce:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:88:66:28:DE:AC:DF:B6:FD:74:C1:76:69:F0:8B:9C:16:BF:4E:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B734E8FA76CE11EEBA99B9184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.64.0/21
Signature Algorithm: sha256WithRSAEncryption
75:66:93:3f:01:57:6b:b4:11:16:43:cc:23:12:ec:52:20:f0:
fb:c9:88:fa:dc:5b:44:37:03:34:5d:1f:49:81:71:0e:e9:e8:
a9:58:e9:85:99:dd:fc:64:e3:30:18:b9:40:63:7a:2c:14:04:
1d:45:31:d2:4d:e8:59:dc:99:57:25:89:34:c2:86:73:75:31:
12:26:b0:d4:f4:d4:4c:2b:a7:c0:77:e0:53:f6:2c:ea:cd:1e:
b5:ba:0b:b9:96:a8:d3:a4:2d:db:21:8f:f7:15:d4:91:1f:5e:
97:ed:fa:05:b0:ea:a4:3f:6f:b7:43:85:a4:23:29:32:13:c4:
06:35:02:66:37:83:d8:5f:7b:e7:89:51:b5:a2:15:9e:73:31:
0d:bc:1e:84:dd:1b:1a:76:ff:be:b2:73:54:8c:2b:1a:57:20:
b5:f9:1a:b6:70:79:b7:c8:fc:8e:f4:eb:eb:28:96:1c:93:86:
9a:18:12:91:e2:0e:15:cf:e3:02:ae:7c:44:11:29:6b:36:94:
39:a2:5e:e1:57:75:77:b2:0e:19:c7:1b:22:2e:b5:40:12:7e:
43:80:e5:58:54:99:9d:e2:67:df:21:3f:f1:ef:c2:e8:33:b9:
ae:cd:23:e2:43:d3:7b:1e:97:d0:fc:f5:d8:22:69:9f:7c:73:
be:d5:db:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:45 2024 by rpki-client on console-fra.rpki-client.org