Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDB1EDA6A44A11EF8EA1B8A2762E951A.roa
File: EDB1EDA6A44A11EF8EA1B8A2762E951A.roa (raw, json)
Hash identifier: M5fycWdoNbSzp6mWq5QooSdlOshWCXowxovm397n4Sc=
Subject key identifier: 73:57:AF:CC:D3:B4:D2:95:87:DC:34:9F:90:24:01:C8:9E:AA:BE:5F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3AC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDB1EDA6A44A11EF8EA1B8A2762E951A.roa
Signing time: Sat 16 Nov 2024 18:45:19 +0000
ROA not before: Sat 16 Nov 2024 18:45:16 +0000
ROA not after: Mon 25 Nov 2024 18:45:16 +0000
asID: 5650
IP address blocks: 156.255.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54188 (0xd3ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 18:45:16 2024 GMT
Not After : Nov 25 18:45:16 2024 GMT
Subject: CN=6738e83f-70a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:af:49:05:27:e6:8b:f2:ca:74:34:34:c2:d7:
8e:3f:52:b1:d3:04:1d:51:a2:11:25:7a:de:67:ea:
0c:0c:48:5a:ca:d6:66:f3:76:13:e4:79:4d:6a:7a:
33:b2:97:75:e9:a3:42:2b:d9:94:b9:91:64:7d:17:
8c:01:b3:15:9f:c0:8e:49:d5:5a:3c:f3:2a:ab:a0:
fc:a5:3f:40:60:a2:d9:db:6c:89:39:92:38:05:6b:
67:18:90:a1:62:08:ad:18:34:f1:41:d7:ca:a7:fc:
a9:47:01:40:12:5a:9f:78:65:ef:30:cd:e9:fd:9a:
57:f4:8c:b3:83:1b:bc:ad:d7:8f:09:37:10:b1:c4:
ca:30:7f:49:e1:05:af:4c:d3:7d:da:a1:6b:4a:55:
9c:4e:44:f0:d2:15:c2:62:ca:af:33:3b:aa:7c:b7:
35:32:ff:6a:08:60:63:ec:be:7f:31:42:ad:09:bd:
52:dd:4e:51:00:53:9d:19:a0:6a:ef:13:e2:11:b3:
9b:83:6f:8d:28:e2:79:9f:09:20:48:9c:ea:4c:46:
61:d6:5e:ff:90:04:db:52:9f:a4:02:dd:5b:d9:da:
75:83:cc:6b:b2:72:00:2b:80:ba:41:b7:bc:b7:f6:
a1:c5:1b:a7:1e:05:26:3b:66:15:13:d0:71:8c:1c:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:57:AF:CC:D3:B4:D2:95:87:DC:34:9F:90:24:01:C8:9E:AA:BE:5F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDB1EDA6A44A11EF8EA1B8A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:fc:59:e2:ba:eb:06:f8:cd:01:fc:9f:f1:d0:8a:b2:8a:66:
d6:e7:89:7e:00:19:21:d0:6d:13:7a:41:8a:1f:bf:c7:72:99:
5e:2b:c3:e6:8c:be:37:56:50:18:0e:f5:58:cc:dc:7b:46:60:
34:f1:c8:3c:63:ac:24:ea:2a:ea:3b:fc:a3:45:96:40:67:3e:
18:12:90:0a:a1:a3:d7:d0:e5:83:ed:2e:3a:20:1a:e4:ad:df:
09:51:6c:50:27:af:92:ce:79:fc:4b:63:39:c2:b3:3c:26:bd:
c2:7c:13:60:04:2f:54:4a:de:8b:4a:33:4f:5c:80:f5:3d:8f:
cf:83:ee:ba:67:0f:29:50:59:a5:9f:74:97:10:61:3d:2b:00:
60:04:11:51:41:64:12:4b:a0:9c:4b:0f:63:fb:a9:01:48:01:
48:72:90:e5:fb:90:7b:3f:f0:5b:ef:d8:16:df:f9:18:ff:d9:
db:82:4e:3f:5d:9b:08:c5:3a:5a:42:09:60:e5:fd:a0:d7:2d:
6a:e3:3d:89:07:57:af:a9:a8:ca:39:ef:13:54:4b:3d:35:6e:
e0:69:90:3a:97:e8:1a:09:55:2a:eb:58:21:ac:cc:1d:a3:e9:
fc:ec:04:3b:45:21:e9:77:97:74:0b:eb:40:ed:ff:27:04:0a:
9e:f8:60:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:53 2024 by rpki-client on console-fra.rpki-client.org