Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/389EFEC03B2A11EE82E1ED3E4AD9E6FC.roa
File: 389EFEC03B2A11EE82E1ED3E4AD9E6FC.roa (raw, json)
Hash identifier: bNADkStwwoiu7IyxNKxq89HDc0jOog16Nm75tH1JZt8=
Subject key identifier: A1:B3:E6:55:46:24:47:C1:0C:C6:FF:29:59:55:6D:B6:DC:A8:43:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/389EFEC03B2A11EE82E1ED3E4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:11:42 +0000
ROA not before: Tue 15 Aug 2023 05:11:39 +0000
ROA not after: Mon 27 May 2024 05:11:39 +0000
asID: 140627
IP address blocks: 156.247.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13781 (0x35d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:11:39 2023 GMT
Not After : May 27 05:11:39 2024 GMT
Subject: CN=64db090e-ecf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a2:2a:9f:70:a1:09:ff:15:88:e3:8a:ea:0d:
10:40:4c:13:ab:33:66:66:dd:1a:09:a5:7c:59:1b:
f2:2a:f6:ca:4f:bb:3d:2b:1b:4e:bb:99:4b:ad:57:
1c:bf:26:33:85:8c:eb:55:99:49:2e:a4:f6:52:60:
8b:28:61:41:72:36:2d:11:02:54:6a:74:b9:06:c4:
39:fb:e6:ce:23:a3:70:f3:29:58:9f:59:2e:67:49:
14:9c:a6:cf:63:ee:d1:d2:52:b5:d0:c4:a2:ba:5c:
2d:96:dc:fb:43:7c:1a:e2:a2:d4:e4:da:8b:c3:86:
6e:55:d3:37:63:a6:f5:37:0c:3c:0d:47:85:54:4e:
f9:a9:40:33:de:4a:fd:3e:5d:c3:80:0c:7d:8b:ba:
a1:0f:65:26:ee:20:5e:ea:65:ff:0d:07:1b:b7:d7:
7a:2e:58:59:c3:82:cb:02:f2:a4:a3:88:d8:77:47:
57:41:fd:43:71:e4:2d:9f:b3:d1:fd:82:f5:e6:9f:
cc:a9:49:8a:78:d1:c4:e1:05:92:cc:0f:14:0b:54:
70:46:35:26:27:ec:d0:7e:58:f4:40:58:c0:d7:a3:
e1:ca:92:3d:bd:97:c2:e8:0f:a2:fe:ad:9a:aa:c2:
37:cd:33:13:cd:fe:c8:45:c6:b6:57:0c:e1:6e:8c:
d8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B3:E6:55:46:24:47:C1:0C:C6:FF:29:59:55:6D:B6:DC:A8:43:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/389EFEC03B2A11EE82E1ED3E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ac:94:e2:70:a0:86:3e:30:11:2f:ec:b5:41:85:08:01:4b:
cc:bb:59:8a:a3:c0:97:6a:93:bc:9e:9d:21:85:a7:b3:fa:8f:
53:f5:bd:d6:b4:6e:30:26:65:c6:1e:f1:52:03:08:b9:47:62:
3f:eb:dd:7d:3b:6d:4f:32:c0:04:09:b5:55:14:e6:e2:55:29:
07:c6:09:fc:21:37:b8:7b:ed:94:bc:a8:9c:c6:0e:b4:ea:94:
08:bc:54:f1:16:a1:f0:05:6b:1a:a0:80:b6:c8:97:12:1e:b0:
47:56:7f:4b:13:ff:fc:43:cb:67:1b:90:5b:2c:eb:f7:40:16:
0f:ab:d3:42:db:6d:bb:f7:48:9b:9f:4e:ce:f3:52:8f:76:46:
e3:78:96:7c:f6:46:8f:6f:a9:f6:d1:d9:89:b2:b9:89:37:8e:
e2:6d:4f:fe:c6:ff:65:f4:84:9b:c9:5a:a5:f1:b8:c7:00:2c:
a6:a1:ba:a1:38:49:16:09:e2:73:3f:9d:fb:d7:5b:36:f3:21:
bb:6b:06:1b:d0:21:19:08:c9:9b:76:fd:f3:64:ec:18:c1:3e:
90:c6:de:9e:cf:3c:f3:0e:52:5e:6a:a5:17:49:bf:00:2e:e2:
a8:e5:70:b0:4e:f6:87:c8:ec:52:54:d5:ea:d8:a7:61:c2:86:
43:84:b2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:51 2024 by rpki-client on console-ams.rpki-client.org