Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5342938CCF711EF86C55875762E951A.roa
File: F5342938CCF711EF86C55875762E951A.roa (raw, json)
Hash identifier: ICHhtkusG3RUasPiR0b9qzb1sxwPqkg2KDS8zeJxauM=
Subject key identifier: 1C:0C:2D:09:4E:E2:FD:48:79:56:D1:87:6B:E5:20:49:05:36:FB:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FC27
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5342938CCF711EF86C55875762E951A.roa
Signing time: Tue 07 Jan 2025 13:04:41 +0000
ROA not before: Tue 07 Jan 2025 13:04:38 +0000
ROA not after: Mon 13 Dec 2027 13:04:38 +0000
asID: 17561
IP address blocks: 156.236.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64551 (0xfc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 13:04:38 2025 GMT
Not After : Dec 13 13:04:38 2027 GMT
Subject: CN=677d2669-f0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:14:38:87:98:a8:2c:07:87:7c:b5:9a:7c:84:
2b:38:47:a8:77:66:1a:7f:f1:28:20:6e:02:6e:ec:
74:88:2a:5b:61:83:4d:ab:f5:e8:6e:b7:4e:21:ac:
b9:58:d5:82:2a:74:b9:fb:86:25:8e:48:b7:1f:8c:
78:9c:9b:2b:80:4b:4b:2f:b9:f9:1d:d9:9b:4a:52:
d6:12:72:c1:19:8e:11:54:92:67:22:0b:ed:79:ff:
3c:3f:a1:3a:6e:ca:6c:6e:6c:95:35:d3:11:f8:ee:
83:f3:06:85:7a:d9:d2:46:a3:4a:29:6c:bc:1c:4e:
88:41:16:64:8d:b4:c0:56:b2:8c:fc:a9:6a:7b:18:
7a:2e:64:8c:33:de:54:d5:77:e7:74:f0:8d:4d:77:
c5:96:e5:69:2c:86:79:b3:8a:77:60:49:35:24:de:
7b:05:45:c6:35:84:17:e3:14:b2:1f:89:18:ce:46:
52:05:6b:2b:42:54:ac:05:49:78:20:3a:3d:66:ef:
18:88:0e:82:e1:29:72:f9:4d:57:3d:d5:71:44:35:
57:5d:46:ef:34:37:f7:5a:2f:fe:ad:5b:76:4f:d2:
c5:05:17:f1:9c:b1:a2:f1:8e:fc:47:a3:b0:fc:4a:
f1:32:62:76:5e:b1:a1:38:34:cb:4c:82:d3:97:4e:
0b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0C:2D:09:4E:E2:FD:48:79:56:D1:87:6B:E5:20:49:05:36:FB:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5342938CCF711EF86C55875762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.102.0/24
Signature Algorithm: sha256WithRSAEncryption
03:5c:a6:5f:17:ac:a3:23:d3:67:12:b8:94:c6:98:51:56:40:
d1:8d:46:71:d0:8b:a1:69:ab:cb:87:95:36:e8:56:4a:d3:a0:
47:4d:58:9a:9e:a6:c5:1e:a4:1e:c5:66:c1:16:05:c0:f8:c0:
64:b6:45:81:12:e8:53:0b:4c:a4:71:55:0b:db:3d:4d:a3:88:
ed:d8:4d:68:52:7c:7e:95:e2:91:ee:6f:17:be:65:a3:3e:fd:
a1:37:a2:9c:83:8d:7f:bd:86:94:bf:65:38:ed:6b:99:5e:87:
11:be:46:28:19:8c:e7:0e:3f:53:cc:f6:83:55:af:b3:a6:d3:
d3:aa:bc:b8:ea:d5:94:40:ea:4f:e1:97:7a:fb:31:2f:85:1b:
88:bf:47:a2:a4:7e:af:70:37:37:d5:88:df:7a:25:ef:55:1b:
70:d7:8e:c6:d1:23:e5:76:7f:f6:9f:24:0d:13:29:71:2d:ad:
3c:74:c4:92:e1:73:e9:26:fe:c7:80:79:54:45:be:79:9c:3e:
77:de:ab:f9:5c:b2:07:fc:6b:c7:39:07:c5:9f:4f:5d:fe:5d:
2a:6b:25:86:42:f4:48:20:30:37:58:3a:c5:0f:82:9e:79:ff:
0e:68:04:15:45:f9:b7:dd:4a:76:50:33:ec:d1:42:f3:70:0d:
c7:31:ff:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:12 2025 by rpki-client