Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7DA3AFAA64711EF998FD1A8762E951A.roa
File: F7DA3AFAA64711EF998FD1A8762E951A.roa (raw, json)
Hash identifier: qwAYriMNIaDJXyzckjw/ne3i6Zi1ARYWBG4XGch2Qps=
Subject key identifier: F9:6F:B8:1E:C9:77:F5:BC:09:EF:38:88:AD:4C:C2:54:63:23:00:4F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D54C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7DA3AFAA64711EF998FD1A8762E951A.roa
Signing time: Tue 19 Nov 2024 07:29:10 +0000
ROA not before: Tue 19 Nov 2024 07:29:07 +0000
ROA not after: Tue 24 Dec 2024 07:29:07 +0000
asID: 25160
IP address blocks: 156.225.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54604 (0xd54c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 07:29:07 2024 GMT
Not After : Dec 24 07:29:07 2024 GMT
Subject: CN=673c3e46-83d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:29:55:dd:ee:4a:cf:11:c1:9a:ef:a2:1d:65:
43:d1:68:d7:28:e6:75:e3:ef:6c:19:47:56:3e:2d:
f9:37:1c:11:49:d8:05:ee:e0:18:24:16:d6:09:0c:
bf:70:e4:31:55:8d:7b:d5:01:25:5d:28:46:77:1f:
ea:fc:36:a6:ac:32:42:5f:3c:b3:76:9c:74:71:99:
68:5d:e1:40:f1:ab:e7:7b:2d:b9:b1:89:64:08:1f:
b4:46:55:8d:ff:1d:62:b5:4e:14:ea:5c:b6:1f:fd:
e3:ef:df:35:aa:3d:0f:4f:bb:d1:34:f0:f7:82:6d:
0d:09:e1:26:66:81:fe:91:c1:09:27:2f:fd:29:80:
59:4c:64:90:0b:c2:03:ac:8b:45:5c:86:c0:5e:09:
59:2d:48:1b:1d:66:3e:c5:88:ca:c6:6c:be:78:47:
ee:f7:0b:f3:bc:f4:da:d8:bb:a1:bc:3f:9d:a1:45:
e9:c5:f5:31:91:49:b7:c1:ff:0f:db:75:b6:9c:fa:
29:90:9a:0f:da:48:24:53:b6:6a:fe:58:67:4d:a1:
f4:a8:d6:e8:67:21:32:c7:2d:1a:57:a3:e1:05:f2:
24:f3:97:3c:c4:91:cd:7f:e3:7d:48:70:26:fe:90:
83:1b:42:fb:c3:5b:c7:79:c9:73:c5:0e:ae:2b:8d:
3d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6F:B8:1E:C9:77:F5:BC:09:EF:38:88:AD:4C:C2:54:63:23:00:4F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7DA3AFAA64711EF998FD1A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.15.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:15:f2:f3:6d:91:0d:f0:16:9f:51:a5:93:ed:76:26:0f:a9:
df:86:16:bd:63:67:3a:87:02:32:57:4a:26:0a:44:f7:9e:76:
f2:bb:5d:a8:52:6d:56:c0:8c:af:31:73:7f:92:81:95:56:53:
b8:b9:13:2e:14:df:ae:f4:c8:32:ff:0f:e5:2c:56:6d:86:0f:
50:c7:4c:1e:fb:62:1c:6c:b4:9a:8e:94:e8:62:c4:dd:ab:60:
bd:f3:5c:63:43:c2:81:b3:e5:52:c5:d4:26:39:44:d0:9d:bb:
fe:cb:51:1c:9e:3c:59:fd:19:16:ae:b9:54:34:6c:af:2d:06:
ec:04:dd:a8:05:04:cc:48:85:d5:4f:53:f3:bf:f1:82:6b:92:
ec:0b:0a:5e:45:27:02:d2:03:96:21:4e:7c:d2:62:7d:26:41:
89:3a:a7:0a:d5:e2:58:68:eb:90:ce:b9:3a:f2:8b:84:88:c9:
ec:c0:90:42:c5:1f:e6:34:e2:11:23:28:56:fc:26:0a:ef:53:
cd:04:b0:da:de:ce:24:b5:89:22:0f:4e:0d:e2:a5:f7:ca:1e:
f1:25:83:b6:ce:89:f0:ad:6b:5a:8f:d7:a2:49:7a:77:ec:ce:
0a:c3:4b:de:c4:a1:c2:ba:14:e8:00:83:d4:fe:27:5d:b8:c1:
f8:82:24:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:57 2024 by rpki-client on console-ams.rpki-client.org