Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB1135E85EED11EFA660397B762E951A.roa
File: BB1135E85EED11EFA660397B762E951A.roa (raw, json)
Hash identifier: h2TILfHGHkhgDkLjWpvEKKdeMRf4cdIeJYIli2zMx9Q=
Subject key identifier: 51:A2:A9:4A:F3:F1:B6:FC:B4:61:E5:98:80:4D:2D:42:8E:C1:CE:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9B4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB1135E85EED11EFA660397B762E951A.roa
Signing time: Tue 20 Aug 2024 12:14:21 +0000
ROA not before: Tue 20 Aug 2024 12:14:15 +0000
ROA not after: Tue 27 May 2025 12:14:15 +0000
asID: 399077
IP address blocks: 156.251.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43444 (0xa9b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:14:15 2024 GMT
Not After : May 27 12:14:15 2025 GMT
Subject: CN=66c4889d-9462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:30:cb:5f:6f:6e:e5:18:61:ef:72:3b:e6:
20:e4:16:d8:2e:c3:52:3d:6e:48:34:cf:2a:21:87:
6a:b5:63:99:d4:ed:27:77:bc:08:2c:c2:59:0e:c4:
00:9c:2a:c5:14:61:12:74:62:ab:b3:84:a4:5b:17:
7c:c9:d9:01:73:3d:67:ce:e1:f0:32:73:0a:12:ec:
c6:0b:2b:4d:9a:4e:9e:53:1e:33:d0:ca:91:78:20:
63:b9:e0:b2:f2:24:9e:e3:66:f2:fe:6a:1a:f9:5b:
08:4e:5f:c3:ca:ac:47:ed:84:05:96:f9:ce:7a:6e:
ba:86:21:fe:ce:cd:08:1e:95:a4:92:cf:af:fd:db:
34:55:b3:78:b1:6f:87:c4:45:a1:4d:bd:eb:2f:02:
3d:8a:71:f8:c1:d0:2f:14:5d:61:06:31:98:78:20:
bd:1f:d4:52:88:84:30:e9:ae:35:57:44:c2:13:78:
1f:d0:1e:b5:a9:93:96:7f:32:3c:a7:4e:ce:5d:fa:
bf:94:f6:ea:8e:5c:b8:57:73:4f:78:da:5c:76:0b:
3b:45:1e:b3:3e:9f:de:0b:46:4a:02:96:83:84:40:
27:d7:06:a4:12:2d:0c:5f:6f:b6:a9:71:5f:85:2e:
f8:ba:4c:b3:a8:d4:94:b3:e6:bf:bd:06:7e:2d:7a:
4a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A2:A9:4A:F3:F1:B6:FC:B4:61:E5:98:80:4D:2D:42:8E:C1:CE:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB1135E85EED11EFA660397B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.55.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c2:4c:76:0d:5b:e8:77:46:b3:83:0d:fa:00:d0:75:f6:6c:
dc:09:1d:31:f5:fc:8f:05:99:cf:df:84:61:29:7b:ad:8f:a5:
ed:0c:36:45:f9:9f:16:03:2d:97:89:df:c1:20:08:a1:94:94:
6e:78:10:4a:92:b1:6f:d1:cb:82:54:cb:da:8e:64:e6:02:eb:
78:fc:3f:85:e1:03:57:1d:f8:84:03:db:66:38:8d:61:36:b0:
a7:c2:55:c2:45:62:9f:c7:2a:06:4f:9f:e9:73:4b:ba:21:37:
ba:83:d9:22:72:ef:d7:8f:79:b8:33:0b:e7:ad:98:d8:22:7f:
4a:ac:4f:52:35:82:79:f5:4d:0a:7c:49:68:30:a4:a8:26:e1:
2b:18:42:8e:75:52:b8:5e:a9:6a:05:a0:f2:5e:05:f0:05:49:
9a:7d:32:52:45:19:d0:a5:e1:e5:a0:81:5d:aa:95:0b:f6:9d:
5c:97:bd:db:c8:a9:61:18:25:f4:c5:cb:f9:c6:ce:ea:7e:5d:
95:e2:2d:26:98:10:c1:a3:d1:4d:f3:b9:36:42:65:00:62:39:
c0:c7:0c:a2:09:b2:0c:5a:bc:d3:71:5a:7d:1a:42:98:cb:70:
fc:d6:d4:7d:cf:1f:f7:dc:70:bb:e6:26:4a:93:09:dc:80:48:
f5:48:97:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:47 2024 by rpki-client on console-ams.rpki-client.org