Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFE010E2A0C811EFB5BB2868762E951A.roa
File: EFE010E2A0C811EFB5BB2868762E951A.roa (raw, json)
Hash identifier: 6TrnAsVknTeYFmhO+YvMKC4EEiTnAf5FaiKcBb0e6dI=
Subject key identifier: 3D:E6:5E:67:C0:EA:E8:D5:9A:98:22:78:4A:0A:D6:1D:05:BC:D0:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D15A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFE010E2A0C811EFB5BB2868762E951A.roa
Signing time: Tue 12 Nov 2024 07:37:15 +0000
ROA not before: Tue 12 Nov 2024 07:37:11 +0000
ROA not after: Mon 02 Dec 2024 07:37:11 +0000
asID: 21859
IP address blocks: 156.226.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53594 (0xd15a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 07:37:11 2024 GMT
Not After : Dec 2 07:37:11 2024 GMT
Subject: CN=673305ab-a09e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:60:18:91:d8:07:49:bb:99:34:55:fb:0d:0f:
2e:c6:4c:a5:ac:02:bf:4a:13:77:d5:e4:5d:94:2f:
f9:36:34:21:f2:52:9b:b9:df:c0:e4:c9:14:ef:4f:
c7:c5:7c:58:c5:71:7e:6c:30:40:cc:5c:50:c9:22:
1e:f8:9c:cf:4a:30:cd:cc:c3:8c:78:f2:c8:38:42:
85:5e:c2:09:3e:c9:16:33:df:06:c8:ce:54:ea:8a:
ef:7a:c4:81:4c:f9:14:0f:63:02:1f:65:ac:c0:fc:
db:72:e1:37:e9:14:bc:f3:56:fc:5e:91:7b:a8:c0:
1b:ca:ee:a1:5e:df:e0:73:41:75:99:05:3f:ac:78:
d2:5d:76:86:8f:e1:c2:3f:af:a6:77:39:dd:b5:83:
68:96:5e:a8:c0:70:b1:f1:43:8a:02:70:42:75:b6:
4a:ad:8d:98:42:e6:f5:41:0c:6f:86:e1:8d:a4:32:
f0:58:c1:8f:05:c6:74:e4:02:8f:0e:30:17:b1:a5:
ca:de:0a:2d:ff:d2:45:06:d9:e3:25:b6:b2:65:a5:
dc:73:71:a3:5d:7e:f2:98:99:d8:47:93:fd:ba:ce:
2d:8e:38:0a:9f:db:01:a7:ad:df:65:ee:f1:c1:75:
d1:31:26:da:0f:a4:4d:3a:f7:84:56:13:c4:fd:8f:
27:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E6:5E:67:C0:EA:E8:D5:9A:98:22:78:4A:0A:D6:1D:05:BC:D0:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EFE010E2A0C811EFB5BB2868762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.164.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:a6:84:d0:30:72:42:5f:fd:34:37:eb:3c:40:26:86:50:38:
f5:94:c4:47:97:06:3e:19:d0:95:23:80:bf:65:73:31:75:29:
e4:fd:a1:e1:3a:8a:b2:48:06:fb:1f:2d:6a:bf:cc:34:f2:1f:
d6:e0:cb:d7:5c:e9:db:aa:41:d0:71:d9:f9:e0:12:1c:4b:2f:
86:c8:e7:8e:1e:38:73:8d:01:f0:a3:ba:a4:b3:18:29:1d:4b:
9e:b4:7a:2e:e2:ef:aa:bf:06:47:44:ba:b7:a3:af:20:8d:b7:
1b:4d:a3:87:79:1a:82:04:cd:ae:d5:2e:a4:fa:24:8c:74:24:
eb:be:20:41:ed:2a:6f:30:7e:91:df:39:ef:bf:26:ca:c2:7d:
96:51:62:0c:e4:9b:f1:df:f1:4b:68:95:10:12:e5:79:0f:e6:
b7:78:db:91:78:00:97:de:9b:e2:a5:0b:02:2b:60:f3:5f:21:
1b:c6:3c:6e:21:fd:d2:27:9b:69:71:47:48:d5:58:9d:9e:7b:
ac:3a:f8:ac:45:73:c7:61:ce:b2:30:b6:86:23:53:a7:ff:05:
70:7c:1b:71:6e:50:93:d2:97:8a:e0:a0:77:f0:d9:23:04:44:
c7:74:fd:c8:6f:2a:4a:df:53:3f:77:25:44:90:50:1c:f5:47:
ad:6d:a1:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:56 2024 by rpki-client on console-ams.rpki-client.org