Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/217CA83E3B2811EEAE218B384AD9E6FC.roa
File: 217CA83E3B2811EEAE218B384AD9E6FC.roa (raw, json)
Hash identifier: 195kbr7XW/Rnfrj/Cs2wzwS38mQYUoSy4MRNa3UYR3Q=
Subject key identifier: 41:C1:56:CF:8E:0F:C5:89:E6:8C:AF:6C:0D:89:1B:F4:B4:74:C8:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35B5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/217CA83E3B2811EEAE218B384AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:56:44 +0000
ROA not before: Tue 15 Aug 2023 04:56:41 +0000
ROA not after: Mon 27 May 2024 04:56:41 +0000
asID: 140627
IP address blocks: 156.247.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13749 (0x35b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:56:41 2023 GMT
Not After : May 27 04:56:41 2024 GMT
Subject: CN=64db058c-a7e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2f:8b:50:cd:a1:b6:cc:59:23:6c:79:13:2f:
6e:d5:45:68:ec:9d:89:26:0b:93:bc:e6:85:76:61:
e5:32:fe:9b:ef:d6:3d:07:bb:f1:77:ce:fd:41:07:
64:b4:0d:32:98:52:91:73:f9:f7:6e:b6:83:11:f0:
69:2a:fc:03:b4:d9:78:df:c2:94:71:af:fe:77:63:
c6:d2:a1:4b:01:c1:46:06:a9:3e:49:f0:31:cc:6e:
c3:9b:fb:e0:e7:9e:7f:af:0f:98:75:c5:0a:0e:1e:
8c:ef:44:34:8b:f8:0c:7a:f2:88:e2:65:4c:69:c2:
7c:33:e2:f5:ee:2d:3f:86:00:5e:2e:06:23:f0:60:
a5:be:8e:ef:e1:5b:0c:6a:dd:eb:19:ab:91:05:a4:
75:df:c2:bf:6c:65:de:5f:4b:54:db:a6:c8:b8:19:
e2:22:ef:53:0e:cd:7a:80:64:da:2a:34:de:5b:41:
44:26:7c:3a:45:70:67:45:e6:ee:7c:e8:44:9f:65:
01:0c:90:4a:2b:00:50:07:7f:37:7e:ea:a5:23:83:
b1:1f:de:c3:66:1d:fa:d4:05:dc:1c:b7:9f:55:14:
ee:33:82:01:0b:e1:f2:51:eb:33:7a:da:e8:2f:b3:
9c:0d:d8:2f:bc:de:76:97:09:6a:c3:18:e7:a9:89:
11:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C1:56:CF:8E:0F:C5:89:E6:8C:AF:6C:0D:89:1B:F4:B4:74:C8:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/217CA83E3B2811EEAE218B384AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.249.0/24
Signature Algorithm: sha256WithRSAEncryption
94:56:12:c9:45:5b:62:aa:0d:7a:74:4e:d3:4a:92:0e:69:80:
1e:86:3a:b3:42:bf:ac:f4:ca:2a:74:e5:91:29:10:91:69:21:
2b:c1:df:98:c3:89:dc:bc:43:ac:a3:04:4b:61:76:83:03:8c:
21:07:5d:d3:8b:2b:86:97:03:16:0d:d4:f2:a3:8d:4b:ac:8a:
9a:34:18:0c:cd:57:88:6d:64:b7:90:cf:d6:26:d1:74:ce:c2:
4e:04:e7:ce:99:8c:e4:bd:89:ad:1c:8e:e5:d8:17:19:37:fc:
a0:d9:44:0c:1f:fb:24:6a:63:5c:b9:8d:c5:c5:e5:fb:45:ef:
ea:27:c2:e9:44:e4:e4:17:36:0a:d3:a0:09:d1:e6:7e:7b:ae:
b0:bd:77:f3:7d:36:00:a2:10:c3:5c:81:39:b2:e9:9d:0d:09:
55:a5:90:b1:56:40:18:5b:21:12:6c:fe:d3:a3:0b:d6:26:a0:
c3:5e:8b:76:26:39:4e:de:95:7c:5a:78:38:9a:54:4f:50:5d:
25:b4:d9:93:24:d2:f9:c7:db:13:33:2c:76:fe:64:88:8e:e0:
04:b7:75:93:02:1c:a7:d1:48:bc:7b:40:1b:c3:03:e1:2b:7a:
76:cd:87:34:6b:3a:fc:13:00:22:25:6f:ee:03:ba:21:47:b1:
b9:99:5e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:05 2024 by rpki-client on console-fra.rpki-client.org