Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7043F9303B2E11EE975AA24B4AD9E6FC.roa
File: 7043F9303B2E11EE975AA24B4AD9E6FC.roa (raw, json)
Hash identifier: fRUtt3ikAns9C3BKy1huGCRy3USi/sU1wjOrMEBTzcc=
Subject key identifier: D7:47:B8:E2:9C:46:AD:0D:91:E7:1C:65:CA:4E:B8:50:79:DA:97:A6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3615
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7043F9303B2E11EE975AA24B4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:41:53 +0000
ROA not before: Tue 15 Aug 2023 05:41:50 +0000
ROA not after: Mon 27 May 2024 05:41:50 +0000
asID: 140627
IP address blocks: 156.247.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13845 (0x3615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:41:50 2023 GMT
Not After : May 27 05:41:50 2024 GMT
Subject: CN=64db1021-f3ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4c:f1:cb:ca:2d:3e:2f:04:86:f3:cf:63:02:
21:8f:d8:d9:d1:13:ef:36:e7:36:3d:da:d2:48:09:
50:99:2f:45:3e:f2:5c:7d:fa:a3:27:95:f9:3d:fe:
e5:10:34:a0:f4:98:78:09:a3:92:76:52:ae:38:a0:
a3:cc:81:e8:95:f7:8c:4c:35:05:b8:5c:ad:cf:5d:
85:2d:39:8b:8b:12:77:7e:4f:1a:b6:34:24:3e:24:
1d:8a:16:16:ca:4c:23:d2:c0:52:7c:dc:b8:5a:1c:
4a:52:83:f8:c0:29:2e:ee:e3:df:09:c6:17:e0:a8:
ad:62:75:d7:08:0b:e2:fa:93:e0:c8:33:45:59:f2:
f2:89:46:83:f6:85:3e:7c:f1:34:8f:76:53:92:2d:
4d:9c:0d:c8:c3:ba:0e:8a:a0:3a:02:c7:b4:27:5f:
c9:4d:68:71:56:3b:fa:47:41:3c:ee:e9:86:15:25:
ea:69:32:fb:12:30:28:40:05:ee:bc:e7:9e:5a:1f:
05:2d:d3:b8:2b:47:b3:f1:06:e7:ba:0a:6a:d2:56:
91:1f:4d:c7:d4:32:23:27:f9:18:1b:b2:e6:37:c1:
34:78:21:b1:af:c6:68:a7:13:d9:3d:3b:41:09:a3:
00:c5:54:bb:c5:93:1a:35:8e:b8:3e:5a:44:b9:05:
fb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:47:B8:E2:9C:46:AD:0D:91:E7:1C:65:CA:4E:B8:50:79:DA:97:A6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7043F9303B2E11EE975AA24B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.169.0/24
Signature Algorithm: sha256WithRSAEncryption
55:7b:07:d5:67:4c:d5:6b:a9:06:31:dd:3a:b6:7d:95:60:81:
cd:3c:81:cf:18:6e:81:b2:3d:3b:67:81:6a:89:79:66:df:21:
db:2a:8e:09:5d:43:85:9d:d4:44:7a:bf:e1:3c:1a:2e:02:53:
d2:c9:2d:a6:52:32:cb:83:c6:d3:b8:3e:36:73:70:10:c7:70:
c7:4c:6f:ca:18:27:bc:0b:d2:8b:fc:fb:7f:df:51:18:60:07:
bb:d8:98:05:c3:6e:13:c6:1a:f5:94:26:6d:7d:02:12:4e:f2:
dc:1a:a3:e0:35:cc:49:f6:64:27:18:aa:73:1a:ed:89:a3:62:
6d:22:d7:b6:3e:33:2d:81:31:5f:0d:eb:77:77:77:84:9d:c7:
19:1f:8f:26:4f:b5:c2:79:d0:7e:3b:43:d0:ae:f4:51:c9:c0:
8a:86:86:ce:b9:54:4a:16:09:64:a6:47:9c:08:61:af:1a:03:
3f:6b:51:50:7d:97:5b:17:cf:db:b8:97:95:0f:d1:2c:4c:25:
1c:39:8b:fa:70:a9:60:ee:0f:5f:52:1d:e2:6b:e5:a6:81:d9:
a8:e6:64:5a:2a:68:ab:56:61:b2:6c:fe:0f:18:5e:de:ba:b5:
c2:9e:f5:fd:b0:01:18:28:e9:17:95:17:89:15:e7:b9:9a:78:
ae:c2:47:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org