Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E5BEDEF48F8911EF90C233BA762E951A.roa
File: E5BEDEF48F8911EF90C233BA762E951A.roa (raw, json)
Hash identifier: uAE44FRDPtIWC+ZwwrCAHAG7gLS7YqgRrzF23+Qt9dE=
Subject key identifier: 48:61:56:55:46:54:8D:A5:E9:37:53:D4:2E:08:7D:47:55:F6:44:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C749
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E5BEDEF48F8911EF90C233BA762E951A.roa
Signing time: Mon 21 Oct 2024 08:53:10 +0000
ROA not before: Mon 21 Oct 2024 08:53:06 +0000
ROA not after: Sat 23 Nov 2024 08:53:06 +0000
asID: 44559
IP address blocks: 156.246.152.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51017 (0xc749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 21 08:53:06 2024 GMT
Not After : Nov 23 08:53:06 2024 GMT
Subject: CN=67161676-db72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:20:98:11:bc:07:64:fa:d6:13:12:09:2c:e4:
fe:35:41:6f:30:fe:70:b9:f8:ad:bc:be:76:c5:35:
02:70:6b:b9:71:d6:54:7c:1f:b5:55:2f:89:74:ae:
e7:40:62:70:9d:65:f4:22:af:47:9f:35:26:d7:ae:
89:a0:80:79:7c:86:3c:83:27:0c:4b:cc:5b:8f:76:
ee:cc:db:62:d8:19:5a:41:21:f2:f1:5b:47:d6:66:
50:ce:a9:0a:5e:0a:d2:de:78:9e:96:08:f0:d9:cc:
84:40:e1:09:8c:52:ee:96:5e:52:1a:fc:92:28:bd:
9e:b0:86:d2:23:55:eb:43:13:fc:3a:ad:ce:d1:9c:
3f:f6:c1:84:12:08:73:0b:81:ea:e1:d7:98:c6:60:
c3:1f:7d:b1:44:52:53:62:f1:68:f5:99:aa:d5:14:
bb:c4:51:fb:5d:7a:29:31:64:8c:ac:e4:65:9b:cf:
ef:f2:f8:a1:a2:4b:4b:e6:e7:63:36:28:f0:75:3d:
96:3c:64:07:14:55:83:2e:c2:17:60:9b:2f:54:30:
12:0d:16:f8:49:b5:67:4a:34:26:6c:65:7f:22:14:
86:13:5d:b4:01:14:3c:de:d5:23:da:3e:ab:16:f4:
8c:6f:00:44:33:71:cb:c7:93:81:ee:1d:a8:a2:85:
79:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:61:56:55:46:54:8D:A5:E9:37:53:D4:2E:08:7D:47:55:F6:44:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E5BEDEF48F8911EF90C233BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.152.0/21
Signature Algorithm: sha256WithRSAEncryption
91:22:0b:df:e7:f8:8f:82:2f:45:12:d1:a8:b7:d8:3a:12:ec:
63:95:f4:3c:2b:c5:4a:21:40:7e:a4:6c:02:b1:63:15:bb:6c:
37:04:59:c7:65:00:e7:ff:ad:f0:c3:76:c3:3b:99:c2:11:99:
11:ba:40:6a:04:0c:01:7f:3b:bd:17:37:7d:ba:7c:2c:03:6d:
6c:f2:c5:73:a2:39:b3:8b:3d:1d:f9:24:51:5b:66:08:62:c8:
31:47:69:20:fc:03:fc:83:5f:0b:00:5e:e9:5f:d9:1f:71:60:
af:93:ac:9c:7b:54:4c:66:46:52:13:72:9d:84:8a:6c:73:17:
41:c3:17:f4:5e:c2:72:c7:10:5a:3a:0b:e2:85:8e:80:72:f7:
37:81:df:97:b6:32:68:0b:43:34:9d:e8:60:58:bf:e8:bb:24:
a1:31:53:26:43:c4:d9:73:b4:23:da:1b:3d:ea:cb:47:0c:b4:
fc:de:3d:22:00:40:82:b0:d0:5a:70:90:74:3a:c2:c5:59:a9:
3a:4d:e1:f6:e4:93:0c:a7:ae:90:7c:08:c0:b4:b0:2e:f5:d9:
f7:cc:6e:5f:38:0d:e9:90:aa:2f:a0:89:84:78:53:f6:07:72:
4b:8b:3b:88:76:79:d8:dc:b1:5b:bd:5e:3a:43:d5:c1:98:b3:
45:40:ed:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:54 2024 by rpki-client on console-ams.rpki-client.org