Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE7FE68240FD11EFB6916A8C762E951A.roa
File: CE7FE68240FD11EFB6916A8C762E951A.roa (raw, json)
Hash identifier: JB1xsGH4pEJCbpRrh5ubIT9zckN/x8qAoaErwa+MyZg=
Subject key identifier: 88:19:C2:71:C7:DE:7D:6B:58:53:B8:01:88:7C:20:01:6F:ED:90:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9C14
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE7FE68240FD11EFB6916A8C762E951A.roa
Signing time: Sat 13 Jul 2024 09:53:51 +0000
ROA not before: Sat 13 Jul 2024 09:53:45 +0000
ROA not after: Fri 20 Sep 2024 09:53:45 +0000
asID: 4766
IP address blocks: 156.227.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Sep 2024 00:16:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39956 (0x9c14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 13 09:53:45 2024 GMT
Not After : Sep 20 09:53:45 2024 GMT
Subject: CN=66924eaf-90f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3b:09:b4:32:d4:12:35:52:fe:10:82:12:a9:
38:53:ee:84:14:aa:ea:81:83:c1:40:e1:93:44:5d:
92:e6:ba:a7:04:30:e3:66:d1:59:51:fe:3e:88:6f:
1b:53:85:d7:03:01:4d:e0:79:fe:b7:8c:bf:f9:78:
99:88:09:09:18:ef:6a:98:da:9b:7b:95:25:11:c1:
07:17:5a:b7:a6:9a:bf:93:34:a6:e5:6b:6f:ff:4a:
9c:97:ab:5d:84:64:0e:1e:a6:0f:43:1d:f0:46:e9:
4d:aa:1e:da:ca:e6:21:71:00:e5:55:2a:81:a5:ef:
41:b4:ae:18:54:39:16:b8:21:a3:0e:da:56:3a:58:
4a:7b:4f:66:8e:c9:6e:24:8c:f2:22:0e:64:8e:dc:
74:21:85:9a:cd:f2:ae:a8:2d:2d:ec:e9:8a:80:4b:
e4:4d:fc:48:5a:79:99:83:bb:30:37:b3:4d:25:9a:
e0:61:51:f7:1e:9a:16:97:be:34:34:76:4f:2c:67:
e1:1a:f2:77:04:73:c7:7e:ce:a4:1e:6a:cd:60:c4:
8f:ab:b9:64:8f:0b:91:1e:2c:a3:eb:75:c0:93:43:
1f:3f:7d:ca:05:13:ef:6f:93:2c:32:fa:e7:94:7c:
b8:4b:98:90:89:b9:cf:2d:73:b4:0e:5f:a2:a9:6f:
20:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:19:C2:71:C7:DE:7D:6B:58:53:B8:01:88:7C:20:01:6F:ED:90:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE7FE68240FD11EFB6916A8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.13.0/24
Signature Algorithm: sha256WithRSAEncryption
97:97:19:38:f4:6f:0c:87:2d:0d:3c:16:e8:ce:58:db:6f:1e:
66:ed:f3:b5:fd:88:e3:79:ea:2f:f5:45:fd:98:58:bd:28:78:
d9:bf:90:7e:01:27:fc:41:be:7c:55:0d:f3:00:7e:10:3e:9e:
47:56:a8:7a:cb:41:83:9b:56:b9:3c:49:43:c4:fd:45:ac:3a:
be:89:59:51:f4:b6:20:de:7b:39:ff:27:a4:f2:71:c9:3e:d8:
e8:fc:57:1e:b1:94:b9:5e:9c:e6:47:da:a5:cc:9b:bc:96:b2:
b6:4f:f5:4d:dd:7b:6b:31:23:7c:b1:7b:f9:3c:19:7d:76:dc:
c2:d0:68:a1:fc:01:ac:55:d2:8a:e1:44:58:b8:39:77:1f:6f:
e7:65:17:af:5c:52:af:98:60:55:7a:43:1f:47:91:19:62:56:
5d:9a:a1:c8:a0:e4:bb:d4:90:b7:55:83:90:4c:84:e2:9c:81:
46:99:32:5d:61:82:e1:ce:06:5e:83:a0:57:24:f3:2f:0a:8d:
57:30:08:d4:2c:7b:d3:f1:ae:93:da:9e:bb:e4:f6:d4:c8:f6:
4b:be:01:f2:6e:c5:10:ba:8d:9a:43:1d:d9:35:09:04:f9:7f:
c9:af:40:b0:2e:87:81:e6:63:eb:e8:56:45:fe:2e:88:dc:bd:
4d:ff:12:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 11:12:10 2024 by rpki-client on console-ams.rpki-client.org