Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FAE699B4A45311EF875D275D762E951A.roa
File: FAE699B4A45311EF875D275D762E951A.roa (raw, json)
Hash identifier: ocAV5QLAyxLAUHxwJF3ggd2b/n4d+uQJAsU4159dwjg=
Subject key identifier: 88:13:4C:90:88:CA:BE:C6:96:69:8A:D1:FF:E4:05:0E:2C:DB:5C:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3DE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FAE699B4A45311EF875D275D762E951A.roa
Signing time: Sat 16 Nov 2024 19:50:07 +0000
ROA not before: Sat 16 Nov 2024 19:50:02 +0000
ROA not after: Tue 26 Nov 2024 19:50:02 +0000
asID: 53835
IP address blocks: 156.231.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54238 (0xd3de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:50:02 2024 GMT
Not After : Nov 26 19:50:02 2024 GMT
Subject: CN=6738f76f-1960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:97:1a:61:69:88:04:8c:69:26:75:10:96:b1:
88:40:b8:6b:35:03:67:ac:a0:34:dd:be:a6:2f:3b:
68:3a:1f:7d:be:a3:3a:db:16:96:26:17:00:40:93:
fe:e4:89:28:f5:6a:30:87:0c:73:d9:00:44:b9:31:
ec:98:71:23:6f:6d:57:e3:f7:71:0f:66:78:b4:bc:
40:fa:ad:09:dd:38:a0:77:cb:33:6e:d4:d0:e6:85:
fc:35:46:49:aa:3d:c9:7f:4a:fd:a0:72:9f:85:af:
14:be:85:09:01:f2:81:96:06:83:0c:c7:67:e5:2c:
49:00:c7:c6:27:ef:bd:52:aa:46:e8:72:ad:09:d7:
95:1c:a7:80:b0:7b:b9:1f:31:70:5e:26:5e:5d:d4:
73:c6:e9:13:0c:2d:dd:86:ce:f5:79:a2:e0:6c:a3:
d7:63:f0:26:68:0f:c1:51:cc:8a:e6:61:9c:b2:c5:
70:35:c6:f9:fc:09:8d:cb:43:91:e5:74:72:6d:f9:
63:61:60:00:df:78:a3:46:0e:54:91:8b:6d:1b:be:
74:0e:64:25:d5:3d:18:f6:16:7f:a4:08:65:35:69:
59:b8:3d:8b:53:2b:36:29:33:0a:6f:60:3f:62:7d:
55:b9:35:3b:62:14:e3:79:6a:5a:e2:c7:a2:5a:eb:
82:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:13:4C:90:88:CA:BE:C6:96:69:8A:D1:FF:E4:05:0E:2C:DB:5C:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FAE699B4A45311EF875D275D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.104.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:50:eb:98:9d:e5:c1:fc:e5:b7:e5:3a:e3:63:08:b3:d3:57:
13:a6:41:d6:1d:e5:5d:b8:05:47:ed:fc:55:67:19:31:22:97:
54:96:44:6e:b7:f8:13:8e:7f:0b:a9:5a:d7:4e:29:2f:14:b7:
81:5d:0b:cd:eb:3b:4f:e2:22:ca:54:8f:33:72:8d:87:d2:a4:
92:b6:c3:5c:07:c7:9a:3a:6c:65:20:6a:cf:e2:4d:f6:74:d4:
6d:63:27:5a:8b:83:53:b5:0f:50:e5:0a:49:e1:ea:c0:f0:e5:
a7:10:d0:1c:de:83:6b:f2:83:de:38:c2:dc:9d:07:09:c4:2d:
fb:06:e2:92:d9:2f:a7:6f:41:79:0c:05:5e:f3:e2:e5:46:55:
2e:b8:1e:8e:08:c5:ca:74:d5:f0:69:31:45:80:11:57:b1:cb:
33:97:97:02:ed:e2:41:e6:36:ba:e1:41:5d:97:f8:ea:8f:dc:
a0:bd:86:0d:66:77:f4:41:ca:0a:38:ed:58:a3:82:b2:0c:62:
e6:9a:3a:76:99:98:53:94:7f:a6:ba:44:b2:33:3f:39:cd:92:
09:eb:5a:9c:f4:5a:2f:e3:1e:82:60:e8:f9:34:53:ef:ed:f5:
12:ae:f0:cd:d9:45:f9:5b:44:9e:06:ba:57:9f:f5:d9:84:d5:
dc:d9:45:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:58 2024 by rpki-client on console-ams.rpki-client.org