Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB6958F4A19811EFA31BCCAE762E951A.roa
File: EB6958F4A19811EFA31BCCAE762E951A.roa (raw, json)
Hash identifier: vY0QLzhcjH4is1KfG6iAQcRZZ9SqBo2EGKdud+68jvU=
Subject key identifier: 04:AC:4B:4D:EC:D9:92:6A:C4:CE:1B:1B:6E:3A:11:5A:E6:D1:E9:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D244
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB6958F4A19811EFA31BCCAE762E951A.roa
Signing time: Wed 13 Nov 2024 08:26:03 +0000
ROA not before: Wed 13 Nov 2024 08:25:59 +0000
ROA not after: Fri 22 Nov 2024 08:25:59 +0000
asID: 141342
IP address blocks: 156.238.64.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 08:25:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53828 (0xd244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 13 08:25:59 2024 GMT
Not After : Nov 22 08:25:59 2024 GMT
Subject: CN=6734629b-28ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1e:e0:a4:37:a0:11:00:3d:7e:58:f8:27:6e:
71:bd:55:81:84:75:81:82:c4:02:9c:41:99:36:42:
dc:e4:c1:bf:8b:86:5e:db:a7:19:fb:fd:5a:9e:12:
18:64:b5:d6:6b:94:ed:ba:ad:2a:50:02:95:88:e7:
ab:61:88:ff:77:c0:dc:9b:a2:ee:20:94:08:8e:64:
c0:58:11:5c:62:6f:9e:cf:d0:10:2f:bf:b3:e9:13:
e5:8c:24:86:8c:f8:b2:3a:8d:46:d4:c8:df:b6:de:
dc:35:fb:0f:40:d2:7c:80:cd:e5:da:68:29:94:2d:
52:eb:72:cc:68:a9:6a:52:34:50:30:44:a3:64:4f:
70:96:1e:a4:8a:67:73:34:02:e3:7c:fd:81:7d:da:
24:b0:d8:13:c2:31:70:4c:13:6f:05:cd:8e:23:37:
d7:c5:fa:03:6a:61:a2:41:21:e7:8e:cf:0d:b6:5c:
4f:35:61:8f:80:29:96:44:de:11:f0:f2:b9:91:d3:
40:83:7d:bd:d1:08:46:60:23:74:e9:30:be:c7:8e:
10:3b:d0:88:89:55:a1:43:b7:4b:55:6d:6e:ed:90:
fc:07:6d:64:d5:81:91:45:96:1e:a7:e9:93:c4:ae:
4b:42:2c:29:9a:6c:0f:d7:94:af:f2:ac:23:dc:fb:
62:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:AC:4B:4D:EC:D9:92:6A:C4:CE:1B:1B:6E:3A:11:5A:E6:D1:E9:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB6958F4A19811EFA31BCCAE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.64.0/23
Signature Algorithm: sha256WithRSAEncryption
54:1b:f7:59:ae:db:55:82:b8:cc:05:64:73:cc:84:1d:7c:f0:
56:f2:a2:f5:18:33:53:f7:c7:8a:92:67:88:2e:e5:dc:b0:c1:
1b:62:81:60:a3:0e:e9:cf:48:71:e4:81:90:24:de:e4:83:07:
14:9f:e2:71:fe:c2:9b:4a:ef:ed:87:d4:7a:72:3f:9b:6d:75:
b5:a9:17:6c:7d:9c:ff:ff:13:f5:75:da:24:c9:33:c6:07:32:
34:8a:51:2f:03:9f:8e:6f:e4:55:47:fe:23:cb:78:9a:15:78:
98:8a:44:94:2c:42:5f:e5:b4:ae:75:24:20:87:f3:b7:66:d7:
95:e2:98:c7:31:2f:67:ae:81:7e:f6:15:f9:aa:64:88:3b:7e:
c1:b3:d9:a3:70:34:a3:63:27:6d:aa:f0:44:fa:62:87:77:bd:
1e:36:72:49:c6:b0:3b:fb:95:48:bb:b8:3c:3e:8c:0d:4f:b3:
51:8e:06:d2:be:c0:33:fb:b6:ef:8c:03:fd:73:c4:46:08:92:
1b:6b:d3:7b:fd:28:8b:b5:cd:d1:6e:94:d3:16:2a:12:eb:e3:
76:eb:96:52:d6:c2:d8:68:c6:5d:76:57:e9:53:06:06:56:71:
98:a3:2c:84:d1:2e:91:3c:49:16:bd:86:22:c1:40:0b:4f:d2:
af:8d:57:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:52 2024 by rpki-client on console-fra.rpki-client.org