Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F051139C9B8611EF9D55DC4B762E951A.roa
File: F051139C9B8611EF9D55DC4B762E951A.roa (raw, json)
Hash identifier: B9J1nE/UaTPbHVx+Mxf4cVuW+Ov3eGszz4a7noseu/Q=
Subject key identifier: AA:63:82:63:AD:B2:65:F4:5D:6C:3E:48:0D:FC:76:CA:FE:77:14:A4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CEBF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F051139C9B8611EF9D55DC4B762E951A.roa
Signing time: Tue 05 Nov 2024 15:02:13 +0000
ROA not before: Tue 05 Nov 2024 15:02:10 +0000
ROA not after: Sat 08 Feb 2025 15:02:10 +0000
asID: 140925
IP address blocks: 156.238.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52927 (0xcebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 15:02:10 2024 GMT
Not After : Feb 8 15:02:10 2025 GMT
Subject: CN=672a3375-b1ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:70:42:23:67:c1:ed:d8:77:20:1d:6b:e6:3e:
ec:17:7c:59:e6:bd:c5:d8:d0:62:d6:84:41:ec:fe:
95:bf:06:29:41:8b:9a:e2:cd:aa:db:c4:20:6e:30:
c7:42:e4:f1:44:57:cf:e1:41:19:77:0a:2d:95:61:
77:b6:ae:79:ea:8c:63:94:3e:0f:e9:d7:59:d2:6e:
94:86:9e:66:e6:43:4b:5e:d4:57:57:92:fe:a9:fe:
ee:ef:6b:de:79:2e:ec:35:62:d1:1c:99:b8:d2:89:
48:3a:6b:d4:ce:b8:8a:8f:ed:77:33:7f:cb:1f:60:
5e:a1:10:5c:82:f1:9a:b4:7d:0a:d0:5f:df:5d:dc:
2f:86:cb:04:36:80:96:3c:22:a9:fd:6c:11:10:36:
18:eb:ef:b3:68:82:3e:ff:7b:ae:b6:f9:58:88:f5:
f6:6c:48:30:e5:d5:8a:8f:be:41:59:24:dd:f3:4d:
31:db:af:7c:35:9b:24:11:76:59:7d:08:1c:ce:38:
d8:cd:fd:72:e8:b8:72:83:00:47:3a:0c:56:c5:41:
19:df:d1:ba:4b:9b:1a:f0:48:65:54:c9:db:9a:e5:
a8:1f:60:f3:3a:8f:a8:bb:6c:f7:61:85:57:74:81:
5f:81:f8:5c:90:10:a8:44:90:18:c8:e8:0d:d7:0f:
79:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:63:82:63:AD:B2:65:F4:5D:6C:3E:48:0D:FC:76:CA:FE:77:14:A4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F051139C9B8611EF9D55DC4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.112.0/24
Signature Algorithm: sha256WithRSAEncryption
65:72:42:16:c8:8c:ba:b2:9f:65:c0:bf:c8:eb:04:7a:4f:d2:
e7:34:c1:f2:b6:49:ec:b8:5a:98:13:33:cb:a9:93:7d:db:4d:
94:ec:39:5c:6e:b4:e0:01:a7:64:3e:83:bf:5e:cd:51:f7:17:
98:69:91:0d:36:d4:61:2d:74:5e:63:dd:50:84:c6:73:3e:c5:
db:b0:b3:54:df:37:51:bb:d4:10:c0:a8:da:91:c3:29:08:b2:
ea:0f:11:3f:6d:16:fd:9c:a9:4a:c0:6a:8e:c3:e1:c5:5a:fd:
4c:bb:7c:3d:39:80:41:77:0f:8d:c5:d6:0d:81:d5:ac:72:cc:
4e:1f:6a:8d:76:66:25:cf:68:89:80:e6:86:e7:14:57:b4:c4:
5e:55:8d:33:c5:0b:7e:ef:f8:db:ad:30:46:87:23:3d:0a:18:
4f:2a:42:a8:e8:d8:cd:00:47:45:a0:4d:8f:b4:9a:89:ee:14:
ca:c6:f8:8f:c9:1e:d1:52:ff:eb:78:d2:eb:65:ed:ef:b8:7e:
49:f3:61:0f:cd:63:9d:8e:e4:aa:fa:84:81:e8:60:2b:32:24:
da:c3:c3:4a:89:ec:f8:fa:c2:d4:c7:4e:82:cc:80:4e:e3:df:
d7:8a:39:3c:88:d1:6f:1e:28:81:05:8f:b5:9e:28:fe:8e:bd:
71:b6:53:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:56 2024 by rpki-client on console-ams.rpki-client.org