Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3494B95C3B2311EEAA48AC294AD9E6FC.roa
File: 3494B95C3B2311EEAA48AC294AD9E6FC.roa (raw, json)
Hash identifier: dYmtrJ5qCaEihmG5avLzQEWRcuV+get/Ik1cECGCeRY=
Subject key identifier: 05:90:5E:A6:74:69:14:70:F8:F8:61:B1:3C:60:F6:CF:B8:4B:53:41
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3567
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3494B95C3B2311EEAA48AC294AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:21:29 +0000
ROA not before: Tue 15 Aug 2023 04:21:26 +0000
ROA not after: Mon 27 May 2024 04:21:26 +0000
asID: 140627
IP address blocks: 156.247.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13671 (0x3567)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:21:26 2023 GMT
Not After : May 27 04:21:26 2024 GMT
Subject: CN=64dafd49-e8b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:69:30:6b:31:f1:08:f7:90:00:c8:98:d8:64:
ad:20:9f:81:91:40:9e:b7:03:9d:19:53:d2:92:73:
85:b9:5d:d2:8c:3c:39:dc:64:dc:6f:a3:7b:94:90:
30:51:4d:ea:1e:74:51:90:1e:b6:ca:dd:23:ad:86:
3e:44:8f:de:65:83:60:9c:e2:83:04:64:d1:d3:11:
f6:cb:aa:a5:b5:67:4f:97:0c:72:16:ac:cf:15:6a:
70:34:44:26:51:9e:ed:b0:db:7e:a0:c4:73:40:80:
29:7c:bd:95:08:c2:29:0a:54:a5:ea:f2:b6:b2:11:
ee:60:ab:81:ff:f2:c2:c6:a9:ca:b4:46:33:bf:6a:
3a:3e:8f:85:77:96:f2:96:e2:04:00:4b:ff:97:53:
25:cc:1b:ce:1c:e6:bd:bc:03:00:4c:78:54:ec:7d:
47:ab:2a:54:82:60:a8:12:d6:70:d3:18:70:73:48:
66:62:34:29:0b:4b:3d:21:d6:ab:19:72:16:19:a0:
73:f5:da:a1:86:8b:60:f7:09:29:a7:53:37:30:98:
69:34:cf:06:5e:09:81:53:74:c1:f0:5d:5d:44:82:
3b:2a:8e:4c:b8:fe:39:99:15:c1:94:c8:83:24:48:
4f:65:ed:58:74:1a:de:e4:fc:a5:75:25:43:39:43:
be:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:90:5E:A6:74:69:14:70:F8:F8:61:B1:3C:60:F6:CF:B8:4B:53:41
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3494B95C3B2311EEAA48AC294AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.210.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:e1:dc:95:7e:59:f9:8d:cc:01:8a:d5:15:14:19:a6:b9:42:
3d:24:0b:b7:29:c5:f9:b8:8c:9b:aa:90:0c:26:8d:b0:b7:5a:
c3:c8:76:b7:05:74:4a:54:a6:ca:a2:99:8f:a5:99:04:e9:30:
c5:6c:92:74:7d:45:f8:43:7b:e8:9f:cf:21:95:5c:56:dd:09:
09:63:ba:09:5e:b8:52:41:79:89:fc:25:9d:b2:32:6c:34:59:
0e:b1:94:4c:89:60:d4:79:5f:92:a7:26:e2:1a:b6:2a:df:a4:
32:44:d2:41:8f:af:99:62:8c:7e:35:d9:a0:7a:98:1d:8d:7a:
59:fb:56:2f:45:7e:b1:a5:2c:ed:64:7b:3b:f9:d4:8d:71:a7:
27:7c:90:16:cb:3c:f4:7f:5a:97:f7:eb:0a:5d:ba:b4:0e:af:
3d:6f:62:a7:6e:23:e7:48:f5:36:39:b9:2b:43:9f:0b:72:44:
25:9f:f0:24:65:4e:20:18:eb:52:ad:5f:50:93:b7:03:c5:dd:
68:c7:0d:f2:32:81:0f:fb:43:bc:3a:87:9b:02:9c:35:0f:31:
0d:43:4a:bc:da:72:40:c2:18:27:de:da:3a:22:08:64:7a:03:
2b:07:27:7c:a6:c9:a8:9e:e8:42:c5:0f:a1:9e:f7:23:8e:b7:
05:57:38:a6
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNWcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MTUwNDIxMjZaFw0yNDA1MjcwNDIxMjZaMBgxFjAU
BgNVBAMTDTY0ZGFmZDQ5LWU4YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDHaTBrMfEI95AAyJjYZK0gn4GRQJ63A50ZU9KSc4W5XdKMPDncZNxvo3uU
kDBRTeoedFGQHrbK3SOthj5Ej95lg2Cc4oMEZNHTEfbLqqW1Z0+XDHIWrM8VanA0
RCZRnu2w236gxHNAgCl8vZUIwikKVKXq8rayEe5gq4H/8sLGqcq0RjO/ajo+j4V3
lvKW4gQAS/+XUyXMG84c5r28AwBMeFTsfUerKlSCYKgS1nDTGHBzSGZiNCkLSz0h
1qsZchYZoHP12qGGi2D3CSmnUzcwmGk0zwZeCYFTdMHwXV1Egjsqjky4/jmZFcGU
yIMkSE9l7Vh0Gt7k/KV1JUM5Q75JAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUBZBe
pnRpFHD4+GGxPGD2z7hLU0EwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzM0OTRCOTVDM0IyMzExRUVBQTQ4QUMyOTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc99IwDQYJKoZIhvcNAQELBQAD
ggEBALrh3JV+WfmNzAGK1RUUGaa5Qj0kC7cpxfm4jJuqkAwmjbC3WsPIdrcFdEpU
psqimY+lmQTpMMVsknR9RfhDe+ifzyGVXFbdCQljugleuFJBeYn8JZ2yMmw0WQ6x
lEyJYNR5X5KnJuIatirfpDJE0kGPr5lijH412aB6mB2Neln7Vi9FfrGlLO1kezv5
1I1xpyd8kBbLPPR/Wpf36wpdurQOrz1vYqduI+dI9TY5uStDnwtyRCWf8CRlTiAY
61KtX1CTtwPF3WjHDfIygQ/7Q7w6h5sCnDUPMQ1DSrzackDCGCfe2joiCGR6AysH
J3ymyaie6ELFD6Ge9yOOtwVXOKY=
-----END CERTIFICATE-----
Generated at Tue May 7 03:11:58 2024 by rpki-client on console-fra.rpki-client.org