Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED5986010CB11EFB37D3149017001B1.roa
File: BED5986010CB11EFB37D3149017001B1.roa (raw, json)
Hash identifier: nLW44ZcGtkf23WLmRd6gLQElQ5wRIUpi1hhoPsJFt4I=
Subject key identifier: 84:B6:6E:9E:BA:0B:A4:2F:98:F0:02:F5:39:16:81:DD:02:65:6E:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 89BF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED5986010CB11EFB37D3149017001B1.roa
Signing time: Mon 13 May 2024 01:54:34 +0000
ROA not before: Mon 13 May 2024 01:54:30 +0000
ROA not after: Thu 22 May 2025 01:54:30 +0000
asID: 140403
IP address blocks: 156.240.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35263 (0x89bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 01:54:30 2024 GMT
Not After : May 22 01:54:30 2025 GMT
Subject: CN=664172da-b079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:18:04:23:51:b9:6d:17:b7:47:09:d6:4e:f3:
56:45:19:08:e5:24:d7:49:05:c6:b4:92:0f:9c:c7:
88:6e:e2:32:7a:cb:5d:1e:b3:27:a4:1f:fc:68:aa:
6c:d1:51:21:95:8f:c5:ef:ba:f1:d4:ac:d5:c6:d5:
07:81:ae:22:6c:e3:7f:76:a0:1d:3b:cc:a4:19:62:
62:f1:66:3e:8a:ae:4c:b1:b5:da:40:3b:cd:e7:7c:
a0:43:1d:14:cc:6f:08:f0:7e:bc:43:f7:32:2d:4a:
7d:8a:d4:02:46:ed:2c:ec:ee:b7:bd:3c:05:78:89:
38:46:50:4b:2e:1b:d8:6a:db:41:1d:95:35:2f:64:
a4:27:0b:ad:58:0e:a2:98:aa:d1:8f:da:85:f8:ac:
97:83:8a:cb:c5:6b:72:78:86:61:00:4a:63:eb:67:
02:0e:70:c1:04:35:1a:07:1a:75:d5:78:4a:3d:db:
60:77:2d:e1:4b:5b:d8:b0:2e:0b:d2:3e:9c:1f:06:
7c:b9:c2:3e:a1:9e:8e:f1:14:c2:d7:2e:41:a9:91:
a6:f5:20:bf:ee:17:06:a2:d2:6a:41:33:4e:a2:fb:
f4:0c:c2:aa:52:cb:b8:f1:4d:18:cc:4a:dd:0f:ad:
e8:68:0f:b5:82:49:20:42:d7:84:b3:3a:27:bf:0a:
5c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B6:6E:9E:BA:0B:A4:2F:98:F0:02:F5:39:16:81:DD:02:65:6E:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED5986010CB11EFB37D3149017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.94.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:c0:3d:6e:ed:f9:a2:26:2f:54:5c:f4:ff:b8:26:52:8f:3a:
5f:79:e1:92:c8:b8:5c:c3:a6:cb:3f:a8:a1:77:66:2b:0d:e5:
67:4f:50:c7:ff:d1:16:32:44:92:6d:19:c7:2c:04:52:08:61:
3c:48:8d:56:a0:24:7c:38:f0:ec:dd:03:17:e8:23:36:0c:b3:
63:10:35:f3:b8:fb:3a:40:e7:86:5d:f7:9d:03:80:ba:7d:89:
61:c7:a1:4c:2b:39:84:2c:6f:ca:9c:41:29:90:4b:51:c5:09:
a8:68:ff:ce:ce:d8:ad:df:0d:70:91:b2:92:88:4e:a1:ae:b6:
3e:23:6f:16:bb:6a:ef:37:80:13:9a:ca:ce:36:57:10:50:7e:
4b:94:18:78:0f:6a:45:45:8d:03:50:51:7a:99:fe:c1:b5:4b:
23:ab:9b:0e:7b:49:2e:b8:e6:29:0d:43:05:9e:d4:c5:45:2d:
28:a4:b3:fb:6d:a9:76:63:ea:4b:11:bb:95:ae:51:7c:d4:41:
20:af:fd:ca:76:f7:ac:46:9a:37:de:b4:9b:6b:10:d3:d6:ec:
c4:84:86:af:98:d8:0d:76:cf:b5:6e:01:c3:a6:20:a0:b4:3c:
52:48:a6:ae:41:69:bd:8b:17:ce:2b:a2:c7:8c:11:f0:fa:07:
3f:3d:27:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:47 2024 by rpki-client on console-ams.rpki-client.org