Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3374F0EE3B2511EEBDBFC42F4AD9E6FC.roa
File: 3374F0EE3B2511EEBDBFC42F4AD9E6FC.roa (raw, json)
Hash identifier: 2bHg3WtPy6kKlU6bCVf1kApz5MwgqaZdwddcEprsTJU=
Subject key identifier: F9:4A:BB:D0:34:62:97:D4:2B:EF:CC:48:9C:1E:08:8E:B9:1F:B2:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3587
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3374F0EE3B2511EEBDBFC42F4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:35:46 +0000
ROA not before: Tue 15 Aug 2023 04:35:43 +0000
ROA not after: Mon 27 May 2024 04:35:43 +0000
asID: 140627
IP address blocks: 156.247.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13703 (0x3587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:35:43 2023 GMT
Not After : May 27 04:35:43 2024 GMT
Subject: CN=64db00a2-9a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dc:ad:ef:bc:7b:7f:83:99:bc:a9:15:09:09:
c9:84:66:ce:e0:70:8c:c3:1e:57:d1:a8:32:fe:2f:
b3:c8:23:b6:e2:86:45:ad:3f:1a:a0:1b:e8:29:1c:
39:8a:0a:63:bc:f6:00:bf:a2:cc:65:22:f5:19:0b:
f1:2b:2f:d5:41:a0:8e:9e:3a:1d:77:74:c4:2a:a3:
32:51:02:d9:7d:87:30:79:e5:32:fc:ef:0c:a3:6c:
b6:cc:08:bf:bd:d3:44:9e:2a:d7:5a:c3:cf:0f:df:
f8:35:6d:15:6c:a1:1b:08:ec:26:cc:cc:0d:b9:90:
7b:b1:6c:7a:a9:6b:bb:ef:e7:75:91:87:fc:46:24:
68:be:a2:2c:56:cd:2a:70:bf:9a:aa:1f:1c:13:87:
58:1f:12:87:66:38:79:bf:b8:f8:e5:6a:ce:f4:98:
28:84:df:3b:50:07:c4:f2:b3:40:eb:1d:d2:d4:0d:
14:b4:64:ea:5e:d8:77:fa:2c:51:0e:b6:37:83:9e:
8a:fa:95:df:a2:fb:c5:16:76:46:3e:60:3c:6b:00:
24:e8:29:66:b7:21:26:69:e7:e7:bf:26:49:09:16:
0c:71:2a:0c:b5:bf:74:32:b7:53:28:2f:86:b2:cc:
be:d7:8c:5e:0c:61:d7:49:f1:f7:77:4b:cc:55:81:
a8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:4A:BB:D0:34:62:97:D4:2B:EF:CC:48:9C:1E:08:8E:B9:1F:B2:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3374F0EE3B2511EEBDBFC42F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.226.0/24
Signature Algorithm: sha256WithRSAEncryption
36:79:0b:cc:28:d6:a5:b7:1b:a8:dc:0b:b1:e5:1e:53:c2:2d:
1f:44:ab:8c:b1:9c:04:96:a6:55:fa:b5:08:57:02:62:78:7d:
6d:fc:85:43:f2:a4:d1:a6:50:49:2d:e3:01:93:e7:be:f2:cf:
69:7e:ed:ee:ae:de:38:5a:c4:1f:fe:c2:72:bc:b8:fb:1c:67:
47:d0:16:83:eb:d8:7a:10:87:de:ee:27:9b:9c:48:b8:82:e3:
c1:07:0e:c9:97:65:b6:f4:30:2f:29:a9:90:73:05:50:78:81:
c1:ce:9f:73:e7:38:7f:82:b6:a8:b7:87:96:40:75:d8:50:6f:
a7:82:5e:e2:93:e4:9c:02:7d:3d:19:b3:f4:4d:5e:a8:a8:ac:
56:01:9b:d2:b6:24:37:74:ea:89:fe:a2:6d:81:08:87:dd:4a:
4f:ac:ef:4d:cd:21:10:65:28:7b:80:84:5c:19:7f:15:b2:34:
07:08:39:e4:62:58:c6:9d:58:2a:12:77:4c:1e:98:0f:8a:81:
35:e2:fe:03:ac:19:c4:3a:dd:ec:11:fc:aa:a9:2f:59:e1:08:
bb:a2:62:5d:8a:6a:af:5f:3f:f7:f5:f9:8d:b8:f2:14:3e:e8:
d7:30:3a:14:15:91:19:c0:a4:c8:67:b1:10:23:8f:0f:89:de:
c4:8c:48:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org