Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3483F518CE0311EE96679B99775412E6.roa
File: 3483F518CE0311EE96679B99775412E6.roa (raw, json)
Hash identifier: yopRKTQmVsjDWR45Fdk4Y7UwrgulcrRcLKw2+fAk03I=
Subject key identifier: E1:7C:2B:E6:B8:1D:DE:53:76:21:FF:7D:1D:4C:CD:7A:F6:40:5E:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 71BF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3483F518CE0311EE96679B99775412E6.roa
Signing time: Sun 18 Feb 2024 02:12:46 +0000
ROA not before: Sun 18 Feb 2024 02:12:42 +0000
ROA not after: Sat 24 Aug 2024 02:12:42 +0000
asID: 996
IP address blocks: 156.235.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29119 (0x71bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 18 02:12:42 2024 GMT
Not After : Aug 24 02:12:42 2024 GMT
Subject: CN=65d1679e-c335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2e:9b:0c:73:a8:4c:97:e9:22:a2:e9:d1:56:
8a:e0:e9:0b:62:63:4f:cb:dc:f7:a7:de:98:d9:64:
b8:da:d2:b5:7d:e3:31:f5:85:29:f5:b7:b9:2d:34:
50:80:fd:03:13:0e:b8:4a:b5:f0:73:c4:fc:2f:f6:
b1:44:d8:23:e5:21:ad:80:41:b1:95:7a:85:d7:00:
3f:f7:12:16:d4:c1:e5:11:8d:12:ef:4c:38:a0:ad:
c5:24:0c:be:8b:f0:29:5e:58:51:ad:fd:4e:50:fc:
e2:74:e8:af:d9:eb:50:7c:85:e0:47:2e:d5:25:5b:
87:b4:18:f2:ba:47:8c:55:d0:31:08:61:b2:2d:7e:
15:29:4e:d3:29:b1:41:90:70:ac:e8:44:c8:3d:df:
d6:da:dd:39:1b:94:74:a1:ea:e4:f8:9a:f0:56:1a:
31:88:c5:61:c1:6f:82:d8:6e:f6:cf:f6:36:68:a4:
61:c0:d9:b5:f7:22:e0:5c:f8:7c:c3:7c:81:22:7c:
3b:a6:70:0a:2f:45:6b:04:98:be:16:4e:ba:ad:69:
8d:79:bb:f1:27:a8:50:e5:65:26:17:bd:b9:80:9a:
77:0d:18:12:cc:66:a0:e9:50:78:00:f7:70:f8:74:
ae:a0:10:59:54:82:01:ed:3a:8a:45:e7:f1:54:1c:
c0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:7C:2B:E6:B8:1D:DE:53:76:21:FF:7D:1D:4C:CD:7A:F6:40:5E:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3483F518CE0311EE96679B99775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.94.0/23
Signature Algorithm: sha256WithRSAEncryption
91:d2:17:72:b1:c9:28:eb:5e:b6:21:eb:db:6a:3b:85:4c:d8:
46:74:cc:63:65:4f:37:26:15:09:fd:f9:5d:c6:5e:7d:14:98:
73:aa:cd:2c:e4:2f:1b:4d:d2:4a:63:7c:93:63:5e:00:6a:ec:
9c:46:b1:24:f5:90:f5:9e:2a:9d:ef:53:5a:7e:08:5d:e0:f0:
03:a7:56:8a:35:9f:a0:7d:6f:5d:1c:f7:07:57:9a:5b:44:76:
9f:b6:d1:4c:84:2f:06:82:f3:8c:c1:16:22:c7:f6:f0:a2:e2:
5d:4f:4e:fe:20:cd:54:04:4b:87:81:42:aa:2e:97:c8:51:84:
ad:24:8a:64:72:03:1b:9a:f3:0b:66:15:fe:ee:f5:b3:2e:85:
05:bd:9c:3b:5a:d0:7b:32:68:95:da:e7:ce:da:03:7e:20:cc:
44:7a:cd:27:10:a5:a3:e9:99:3f:61:8c:a5:3d:7d:fe:3c:2e:
b8:d0:b3:4b:eb:ba:d6:64:41:49:bd:57:4e:ac:06:b8:22:91:
19:b7:5a:94:12:bf:73:0c:c3:b5:fa:60:ea:e4:6c:43:b6:cc:
5a:f8:57:06:75:50:cb:2c:95:63:5e:0f:22:f7:6c:f1:21:f4:
1b:ed:70:59:61:a0:48:6e:52:cb:2b:e7:fc:68:6e:5f:61:7d:
6e:fb:86:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org