Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16601BCC539F11EE9BFEB65C4AD9E6FC.roa
File: 16601BCC539F11EE9BFEB65C4AD9E6FC.roa (raw, json)
Hash identifier: 3zhj2+fTSa1dCXW2pzSzVEjUcOD7SXySWmnpQHxXxlA=
Subject key identifier: 02:86:52:E7:DF:58:69:3E:55:E4:09:39:3C:6B:EE:7E:AB:77:BF:61
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3972
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16601BCC539F11EE9BFEB65C4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:08:44 +0000
ROA not before: Fri 15 Sep 2023 08:08:40 +0000
ROA not after: Sat 08 Jun 2024 08:08:40 +0000
asID: 136970
IP address blocks: 156.236.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14706 (0x3972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 08:08:40 2023 GMT
Not After : Jun 8 08:08:40 2024 GMT
Subject: CN=6504110b-f1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:69:fe:1a:52:4f:17:52:bf:b3:97:67:0e:67:
36:45:a6:39:a4:d2:54:a0:a9:bd:b8:ef:ff:92:70:
e4:76:a4:74:20:e6:ea:8a:d9:4d:66:b2:16:7b:06:
65:5e:af:65:e5:72:aa:b3:ea:36:5e:5c:9c:ba:df:
81:83:6a:71:87:49:1f:0f:31:9d:f9:94:84:b1:ee:
a1:59:2e:b5:3f:a2:4b:c5:2a:52:a1:b4:80:dc:62:
40:4c:3c:e1:3f:2a:56:41:fd:60:b6:a2:29:84:37:
e5:2d:71:1a:c2:d5:ce:f6:73:06:c4:40:5c:2e:df:
40:ba:d8:bb:79:3c:44:5a:13:2c:95:34:89:07:20:
c4:1d:97:7e:b6:ce:4e:cb:9d:c2:5e:1e:c1:76:98:
77:d6:9b:4a:a0:d7:c8:e5:dc:db:60:4f:d6:68:c3:
74:96:e9:73:41:54:2d:bb:36:1a:c3:7a:20:22:99:
04:ca:af:97:5e:08:f0:2d:59:64:08:db:b3:7e:56:
e9:44:3e:d2:9b:b1:f2:40:fc:cc:08:60:91:dd:03:
a3:14:d3:b0:7a:47:03:2a:fe:92:8a:3c:05:1b:13:
41:1d:24:29:35:ee:ea:8a:96:d2:e4:a3:43:b4:fa:
f8:36:af:9b:0e:52:ed:c8:02:d9:6b:73:4f:ac:65:
af:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:86:52:E7:DF:58:69:3E:55:E4:09:39:3C:6B:EE:7E:AB:77:BF:61
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16601BCC539F11EE9BFEB65C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.64.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:ff:96:10:2a:66:3d:28:19:56:60:fb:53:c8:75:af:6d:ad:
c3:32:ee:f0:33:9a:56:3c:55:ea:6e:43:9a:0f:f1:b8:ae:d4:
35:51:ff:c5:88:e9:51:b7:0f:07:8c:47:4e:3d:16:66:85:ee:
26:28:f9:f7:c2:b5:e0:2b:49:ab:ba:44:ff:63:97:79:61:9a:
6a:3d:ec:c3:60:de:1f:eb:bf:4a:af:3d:7a:c8:76:82:ab:89:
49:e7:8a:26:1d:2a:20:53:05:62:1d:b3:62:d2:90:03:c4:9d:
0c:39:50:2d:84:a0:ab:ec:4c:73:1f:2a:f1:16:f6:4b:9b:9c:
0a:86:e2:b8:36:56:61:c3:a6:51:a0:8c:6c:7b:30:a5:ac:cc:
55:db:32:e0:9b:58:f8:b8:3b:6b:13:83:cf:55:78:fb:a5:2f:
aa:bc:ed:52:67:ca:74:50:a6:ae:51:28:9e:cf:a2:a7:ad:a2:
ee:e1:55:f3:a9:4d:18:b4:2d:80:d4:47:23:8d:af:31:2a:f9:
c0:58:cb:2e:ce:f3:2a:2b:ad:79:8f:f3:80:5e:04:8e:a0:27:
15:c7:30:12:1d:ea:0a:98:09:f4:ed:f3:e3:42:81:e8:48:10:
b6:f0:a2:68:79:22:51:98:e5:7d:a2:62:52:c1:b3:4f:04:2b:
a1:90:53:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:46 2024 by rpki-client on console-fra.rpki-client.org