Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5223E1EE9A511EEBBD66E5C775412E6.roa
File: C5223E1EE9A511EEBBD66E5C775412E6.roa (raw, json)
Hash identifier: 5fCsiFoPw0iy9uW/btBea31LDNr6exsZ08raKCgYtp8=
Subject key identifier: 9E:0C:5D:5D:9C:A3:54:6C:4B:BB:6C:0B:69:E1:F9:9B:17:0D:29:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8029
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5223E1EE9A511EEBBD66E5C775412E6.roa
Signing time: Sun 24 Mar 2024 06:14:28 +0000
ROA not before: Sun 24 Mar 2024 06:14:25 +0000
ROA not after: Fri 26 Apr 2024 06:14:25 +0000
asID: 200019
IP address blocks: 156.245.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 06:14:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32809 (0x8029)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 24 06:14:25 2024 GMT
Not After : Apr 26 06:14:25 2024 GMT
Subject: CN=65ffc4c4-7d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:29:07:c1:51:40:fa:1a:d6:fe:20:9b:6e:22:
c5:b6:38:d5:2b:d1:c6:cd:04:5a:c8:40:3b:91:d5:
ec:f4:9f:f3:3e:92:58:d1:9f:fc:d0:ef:fc:09:e1:
da:3c:69:11:81:53:15:9a:b6:7b:77:99:79:ff:a9:
d0:45:ef:c7:3f:9d:6b:88:2d:66:bb:f4:07:d0:16:
ba:f5:8a:ed:d9:42:7b:97:b9:78:4c:81:33:44:59:
99:14:e1:7c:dd:88:d8:89:35:f3:9b:fe:00:2c:4a:
d8:ac:c4:48:09:95:a7:ea:44:ec:fb:e2:4b:43:de:
1e:79:53:73:a9:32:ab:39:48:ef:70:de:3c:b8:41:
c8:c9:90:00:b4:c6:31:2c:3a:4d:4c:79:0b:f2:b8:
a9:a5:11:e9:1f:a8:bc:b9:ab:be:5c:86:77:44:e9:
66:81:24:f0:ce:d9:fc:ab:ae:b1:b5:00:f1:8c:90:
ca:d9:45:70:2c:fe:96:1b:cf:80:90:a8:e0:74:6f:
90:0e:56:5f:24:9d:d7:d5:bc:72:c7:09:bb:fa:f9:
4d:a8:14:c4:90:46:63:6b:ba:23:34:39:a1:09:ab:
fe:5a:3c:7e:e4:94:98:b3:93:e0:21:ef:59:9e:11:
6d:85:a2:b4:24:66:83:43:09:66:d5:c3:d8:27:ac:
30:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0C:5D:5D:9C:A3:54:6C:4B:BB:6C:0B:69:E1:F9:9B:17:0D:29:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5223E1EE9A511EEBBD66E5C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.6.0/24
Signature Algorithm: sha256WithRSAEncryption
09:b2:b2:4a:a8:1f:49:a1:24:29:6d:e5:c5:02:c0:a2:07:ad:
be:07:cd:cc:ee:81:f0:67:fc:35:3a:8d:d8:1c:6b:96:ae:e9:
94:e5:39:36:59:df:3a:c5:6c:81:6d:37:7a:87:1a:a0:0e:29:
42:4f:53:77:d2:fc:af:5d:62:6c:30:be:5f:66:7e:99:77:63:
29:b9:77:2d:91:b1:87:6c:aa:3e:24:c1:82:55:a1:aa:01:e7:
fd:ef:83:d0:2f:56:5a:a0:e0:38:b5:89:0b:38:a4:1f:5f:a0:
9f:3d:4d:ba:56:f3:35:36:20:98:e7:a8:b9:96:89:eb:dd:d3:
9e:5e:d6:78:b6:e8:78:35:e6:24:4d:78:94:37:99:bb:2c:e4:
b6:aa:e7:6e:18:77:7d:a7:39:81:6c:5a:dc:5f:ff:4a:ee:0c:
4d:dc:d9:a3:c4:60:e6:20:f0:24:80:9b:84:6a:a8:8f:ff:5e:
50:97:c7:70:54:00:30:5a:b4:cc:a7:c4:87:70:a1:ad:41:bb:
d4:c2:85:e3:7a:ad:3f:92:96:11:e7:5b:02:b8:4e:14:77:6f:
49:f8:c4:44:59:be:36:b0:da:b9:9a:47:48:29:13:bc:81:c4:
01:99:aa:bc:40:c7:93:95:0d:91:91:d8:35:fe:ec:50:59:dd:
92:ef:5e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 06:09:06 2024 by rpki-client on console-ams.rpki-client.org