Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/160CA34068C411EEAAC4DA3D4AD9E6FC.roa
File: 160CA34068C411EEAAC4DA3D4AD9E6FC.roa (raw, json)
Hash identifier: 8Aylf3HqnOA+cT4bGGMGAJrPJDGUOqMi6z59jeG0vZ0=
Subject key identifier: 49:96:D2:FD:CA:8F:44:BA:FC:23:4F:24:03:6D:88:09:15:9A:25:51
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3E4F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/160CA34068C411EEAAC4DA3D4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 05:56:29 +0000
ROA not before: Thu 12 Oct 2023 05:56:25 +0000
ROA not after: Tue 27 Aug 2024 05:56:25 +0000
asID: 138995
IP address blocks: 156.245.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15951 (0x3e4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 12 05:56:25 2023 GMT
Not After : Aug 27 05:56:25 2024 GMT
Subject: CN=65278a8d-19ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1c:72:bd:0d:65:78:4f:79:41:1d:49:55:ce:
fd:23:62:9a:af:fd:db:aa:71:c7:82:01:54:20:19:
2c:ef:53:92:f1:ec:45:9e:c5:b7:d2:2e:d8:62:08:
23:8d:c9:04:d8:b5:4e:7a:d2:9c:f7:ed:f5:b5:d5:
fc:df:74:6e:87:be:42:92:26:40:35:c7:fd:4d:f2:
e6:23:5d:65:96:9f:b5:78:c6:cb:a8:2f:4b:fa:dd:
7b:00:0b:15:32:4b:5e:93:b3:aa:e3:bf:d8:69:b6:
be:42:a2:7b:87:a5:63:7a:e6:bd:6d:dc:69:b8:b9:
bd:c6:3d:b1:84:f8:e4:b9:81:c0:0f:ca:dd:38:71:
f1:51:c3:de:2e:57:5f:62:1f:77:b9:77:59:3f:e0:
8f:f8:6d:ba:9a:69:83:36:6e:f2:09:0a:02:4c:d5:
32:f5:a4:d0:06:c9:71:1e:e5:31:f7:c1:8e:e7:a6:
bd:5b:3b:3c:89:79:2e:07:10:7f:ca:40:92:9a:cd:
0c:60:05:e2:3f:ce:65:49:77:89:de:cf:ff:6f:a3:
7c:95:c0:16:5b:e6:15:75:49:a4:c5:3a:78:58:f6:
0d:fe:e4:e7:8f:52:bb:27:f5:8c:f6:d3:18:30:95:
20:7f:02:2f:c5:39:d5:53:6b:5d:73:e8:51:6f:15:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:96:D2:FD:CA:8F:44:BA:FC:23:4F:24:03:6D:88:09:15:9A:25:51
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/160CA34068C411EEAAC4DA3D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.17.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f7:4d:1a:57:c6:a5:1f:7c:b9:7b:46:0d:bb:57:c1:de:9a:
84:1b:10:7e:79:48:e1:ee:13:5a:fc:b1:24:e6:fc:1f:dc:e7:
46:a4:f8:6f:6c:95:73:b3:46:76:3f:6b:6e:02:a2:92:03:fd:
d4:49:85:99:d4:4d:00:5e:06:ae:df:7a:1c:27:92:b3:67:54:
44:97:c8:a9:3f:55:18:35:ff:98:7d:42:d9:3e:96:64:80:39:
26:39:00:b2:62:fb:0a:5a:7a:f8:7f:1c:e3:9a:d2:fc:c6:4a:
84:42:8b:f3:52:b2:c1:57:67:f4:23:d9:e5:b7:ba:a8:6d:42:
9c:19:d3:c6:88:4d:a5:e8:75:8f:c3:92:7c:a2:90:5d:b8:e2:
47:7a:d4:cb:d1:f7:7b:0e:6a:50:d3:7d:30:4c:20:e1:a2:44:
13:3f:49:ad:e0:48:3c:ca:87:b9:e9:7c:5d:9e:fa:3a:ac:e0:
22:b9:8c:6e:8c:9d:b8:44:6a:f7:b4:19:ad:a3:05:4b:80:be:
8e:cd:31:bf:83:5f:e9:9e:83:35:fb:f4:7a:bf:23:3a:d8:31:
9f:01:14:f9:b5:e6:bf:7d:90:3d:c0:b2:29:22:9b:49:7f:b2:
c7:7a:19:69:a6:3e:0d:cc:bc:fe:2f:97:25:34:bb:18:e3:2b:
b0:09:33:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:08:35 2024 by rpki-client on console-fra.rpki-client.org