Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07AAFB327EBB11EEA2E656614AD9E6FC.roa
File: 07AAFB327EBB11EEA2E656614AD9E6FC.roa (raw, json)
Hash identifier: Ve61RsCZ304h96ACM1tTOn/rJpesqMvuwmTKwxRlQNg=
Subject key identifier: 72:44:5F:70:2A:0A:6E:AF:0D:8C:A3:52:30:9F:D7:DD:F0:42:36:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 44E3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07AAFB327EBB11EEA2E656614AD9E6FC.roa
Signing time: Thu 09 Nov 2023 04:47:05 +0000
ROA not before: Thu 09 Nov 2023 04:47:01 +0000
ROA not after: Sun 03 Nov 2024 04:47:01 +0000
asID: 63199
IP address blocks: 156.227.240.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17635 (0x44e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 04:47:01 2023 GMT
Not After : Nov 3 04:47:01 2024 GMT
Subject: CN=654c6449-c9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bb:9f:b8:06:20:e5:7a:80:70:10:f3:35:be:
3d:92:ed:2b:08:0c:e3:84:2e:33:bd:b7:45:ce:e6:
98:c9:37:f9:d8:2a:b5:fb:3d:e6:fa:7c:8b:cd:a4:
62:d1:f9:e1:4b:b8:9c:83:46:e1:f7:60:2b:7b:f8:
d2:b3:91:7a:3f:9d:0a:ec:8c:9e:76:47:3a:11:6c:
bd:88:17:96:6e:40:15:b1:c5:33:0e:88:ea:39:ea:
ce:8e:18:6a:47:23:8a:4f:41:3f:84:90:26:8e:39:
dc:3d:db:46:10:ff:a5:84:35:af:ad:3e:a9:32:39:
2a:75:ed:64:71:80:0c:c9:5b:e5:49:22:6e:1b:df:
e9:12:4e:1b:1a:90:d9:66:83:78:3f:52:90:9b:ab:
52:d1:82:8b:c1:3a:06:bf:32:d0:cf:f0:33:d9:cd:
cd:0b:d7:a0:18:ae:a4:34:0f:90:53:f5:f2:dd:07:
e9:14:89:54:ea:05:23:17:40:e2:3f:4b:fa:ec:0f:
cb:18:fb:39:66:92:90:3f:56:b5:28:02:84:01:f4:
ca:0a:0a:2b:cb:64:05:e9:0f:c8:6d:0b:9d:47:2d:
91:c7:14:49:3e:be:20:34:4d:c0:62:61:08:91:51:
b9:9e:69:14:4d:1c:8e:78:49:75:4f:34:4b:16:47:
c6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:44:5F:70:2A:0A:6E:AF:0D:8C:A3:52:30:9F:D7:DD:F0:42:36:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07AAFB327EBB11EEA2E656614AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.240.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:db:b2:54:a8:0f:3d:0b:d6:60:bd:69:e5:a9:69:b7:dc:d0:
ed:ba:e9:7e:ec:f6:84:10:6c:d1:b5:d8:fc:b4:01:8c:ce:bb:
19:85:ca:b5:09:37:81:c0:05:e4:75:46:e7:2e:3c:f8:37:e4:
cb:66:23:e9:88:e6:a8:84:74:da:d4:b7:4b:32:74:b7:2c:88:
2c:e4:eb:b3:05:33:6c:d9:d0:05:cd:f2:e4:f6:32:9e:b2:2d:
87:9f:11:6b:2c:75:f1:b0:0e:d9:40:24:b5:76:21:14:19:c0:
12:34:15:eb:c6:ae:ff:77:6b:79:cd:bb:c7:5c:f2:6f:9d:a6:
8e:bc:3d:0a:f2:ee:d2:74:11:b7:b0:a4:4c:8a:49:67:cc:f5:
3d:04:14:ee:ce:f6:61:68:df:50:bd:ae:db:16:c0:71:a1:5e:
64:22:3d:cc:bd:49:6a:c9:99:94:0b:11:1e:88:f3:82:b6:de:
36:c1:f1:a5:b8:16:58:26:46:91:4c:79:75:7b:41:02:be:2a:
89:e9:bb:25:cd:72:0f:db:98:84:40:f7:25:6f:0b:9e:72:13:
88:80:b7:7a:4b:21:d3:00:e2:35:5b:f0:5b:f5:ce:0c:88:c0:
d7:c8:2e:9f:a2:81:52:bb:83:09:47:e7:30:0a:9b:b5:6f:f0:
7a:7a:76:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org