Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1D7EC78A2CB11EE8B978138D25BE465.roa
File: E1D7EC78A2CB11EE8B978138D25BE465.roa (raw, json)
Hash identifier: +jEWRDeOknZ8RWjjzvgVs/7Ts1Nlw0wBl33MTqf8wP0=
Subject key identifier: 6F:40:5F:E3:3A:93:9C:AC:1C:15:F3:48:38:5A:F1:2E:0D:06:B2:C4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5902
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1D7EC78A2CB11EE8B978138D25BE465.roa
Signing time: Mon 25 Dec 2023 02:18:25 +0000
ROA not before: Mon 25 Dec 2023 02:18:21 +0000
ROA not after: Mon 13 Jan 2025 02:18:21 +0000
asID: 139057
IP address blocks: 156.251.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22786 (0x5902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 02:18:21 2023 GMT
Not After : Jan 13 02:18:21 2025 GMT
Subject: CN=6588e670-d41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ef:0b:8d:c5:d0:be:e7:30:a9:72:c0:a9:6d:
a1:69:d7:86:fc:38:1a:0e:1b:1b:73:96:5a:67:4d:
cc:b8:df:9f:0c:5c:51:77:cb:fa:87:4e:bb:94:cb:
d5:bf:35:25:16:d1:ef:06:86:b2:dc:54:be:d7:40:
b9:fb:bf:02:cb:db:4e:7e:40:af:d9:33:34:20:6d:
4f:46:34:b6:cd:b9:46:a2:c0:e5:e2:96:41:14:d4:
58:8e:d6:33:bd:be:8d:8e:45:f3:b8:b7:d9:05:d0:
3b:6c:5e:8b:61:3b:12:e4:a6:6f:0f:0e:d2:d0:c0:
d8:50:78:05:ec:f2:4a:7a:47:fc:08:da:e3:21:0a:
ea:cf:30:24:28:dd:f5:82:be:6a:98:7c:90:7a:1d:
77:cb:1d:22:7f:31:3e:c3:f8:84:12:a9:d7:7c:18:
61:a9:cf:40:06:f9:8d:55:ce:00:5e:13:93:11:c6:
d7:22:16:21:08:30:98:4f:fc:93:b2:7c:ac:d5:8b:
3d:3f:ac:4e:ce:54:6f:a0:f4:27:0c:1a:15:80:4e:
d5:18:1f:86:41:02:67:b5:23:0b:21:62:df:5d:39:
44:ed:32:d7:84:3f:94:86:11:1c:06:fb:52:3c:51:
6e:24:37:07:42:61:4c:57:5a:16:1a:59:23:fc:48:
74:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:40:5F:E3:3A:93:9C:AC:1C:15:F3:48:38:5A:F1:2E:0D:06:B2:C4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1D7EC78A2CB11EE8B978138D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.68.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:4e:dc:d3:c9:13:20:65:f5:b7:88:1a:ad:a3:d6:41:b4:cf:
6b:45:92:1b:ec:10:3d:e8:7f:3f:c6:54:58:92:c5:5e:60:68:
b9:68:13:b3:9e:40:65:ab:8a:c6:1e:3a:37:42:ec:d0:48:dd:
3c:b6:c9:4d:1f:71:05:1d:0d:67:37:b7:24:d9:c7:33:e2:d3:
20:15:1e:fe:6d:28:87:22:e0:a5:75:13:72:c1:79:b9:97:25:
5f:07:3e:c7:02:69:8d:19:51:f1:4a:d8:d4:5d:72:11:e5:70:
0e:48:92:96:1e:25:b4:79:6e:82:ac:6a:64:86:de:fd:f7:29:
ae:d4:41:4e:18:35:02:d2:aa:e4:3e:c9:a9:21:3a:c5:1e:a6:
6e:a6:ec:2c:67:55:6c:5a:b5:e9:20:bc:55:e0:91:e7:2b:0b:
78:71:8e:ef:e3:47:41:76:10:f4:28:f6:b0:c7:15:62:aa:cc:
bb:bb:93:24:e4:92:2f:72:10:d8:27:0e:04:24:1b:e1:3e:24:
be:a9:ff:5f:e2:7a:09:31:c2:f2:a1:d6:a1:d3:e9:a0:cb:6d:
f7:84:31:a6:ab:01:79:66:87:40:57:60:b8:a7:ec:85:ca:64:
08:6b:85:51:72:54:db:c6:27:fa:74:04:4e:0d:cb:08:90:69:
85:a5:c0:ed
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICWQIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzEyMjUwMjE4MjFaFw0yNTAxMTMwMjE4MjFaMBgxFjAU
BgNVBAMTDTY1ODhlNjcwLWQ0MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDF7wuNxdC+5zCpcsCpbaFp14b8OBoOGxtzllpnTcy4358MXFF3y/qHTruU
y9W/NSUW0e8GhrLcVL7XQLn7vwLL205+QK/ZMzQgbU9GNLbNuUaiwOXilkEU1FiO
1jO9vo2ORfO4t9kF0DtsXothOxLkpm8PDtLQwNhQeAXs8kp6R/wI2uMhCurPMCQo
3fWCvmqYfJB6HXfLHSJ/MT7D+IQSqdd8GGGpz0AG+Y1VzgBeE5MRxtciFiEIMJhP
/JOyfKzViz0/rE7OVG+g9CcMGhWATtUYH4ZBAme1IwshYt9dOUTtMteEP5SGERwG
+1I8UW4kNwdCYUxXWhYaWSP8SHSTAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUb0Bf
4zqTnKwcFfNIOFrxLg0GssQwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0UxRDdFQzc4QTJDQjExRUU4Qjk3ODEzOEQyNUJFNDY1LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc+0QwDQYJKoZIhvcNAQELBQAD
ggEBAF9O3NPJEyBl9beIGq2j1kG0z2tFkhvsED3ofz/GVFiSxV5gaLloE7OeQGWr
isYeOjdC7NBI3Ty2yU0fcQUdDWc3tyTZxzPi0yAVHv5tKIci4KV1E3LBebmXJV8H
PscCaY0ZUfFK2NRdchHlcA5IkpYeJbR5boKsamSG3v33Ka7UQU4YNQLSquQ+yakh
OsUepm6m7CxnVWxatekgvFXgkecrC3hxju/jR0F2EPQo9rDHFWKqzLu7kyTkki9y
ENgnDgQkG+E+JL6p/1/iegkxwvKh1qHT6aDLbfeEMaarAXlmh0BXYLin7IXKZAhr
hVFyVNvGJ/p0BE4NywiQaYWlwO0=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:53 2024 by rpki-client on console-ams.rpki-client.org