Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/725AE7F2277D11EE8A933B104AD9E6FC.roa
File: 725AE7F2277D11EE8A933B104AD9E6FC.roa (raw, json)
Hash identifier: WVZJ5ARqPtdsyBJA/lGiCrfua9S+WSjOmG+s3ij64kg=
Subject key identifier: 33:20:69:8B:80:34:7A:2D:FD:F6:11:7A:FB:AA:A2:79:BE:48:B1:82
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 319F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/725AE7F2277D11EE8A933B104AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:17:04 +0000
ROA not before: Fri 21 Jul 2023 04:17:01 +0000
ROA not after: Thu 13 Jun 2024 04:17:01 +0000
asID: 22773
IP address blocks: 156.238.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12703 (0x319f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 04:17:01 2023 GMT
Not After : Jun 13 04:17:01 2024 GMT
Subject: CN=64ba06c0-0b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:33:71:9d:35:b8:05:0b:aa:7e:29:6b:01:81:
d4:68:61:e5:79:b6:f4:3c:5b:2c:4c:03:aa:af:55:
2d:5e:09:aa:6e:a6:24:19:52:b4:62:b9:08:0c:97:
58:48:b8:e1:24:07:35:43:7e:52:a7:df:74:4a:be:
47:90:5c:43:4f:87:8f:54:97:e4:08:83:4a:f9:10:
02:8e:b4:0d:9d:dc:da:28:2b:1a:39:09:f5:15:d7:
5a:3f:3f:e1:b4:6b:ca:ec:fd:7b:fd:ee:cc:63:ac:
ee:61:bb:9b:32:25:16:b9:bf:35:17:78:d7:a3:cb:
f8:f5:ac:93:1e:8e:4b:d6:99:28:e2:1d:14:d1:fa:
9b:e5:02:a3:19:ae:a0:6f:2f:55:a7:a4:cb:86:e6:
ba:b7:ad:75:b7:45:f4:63:c2:f5:d7:e4:00:3b:01:
31:ba:10:86:54:8f:fb:b3:54:05:e5:6b:69:1b:77:
f6:a0:47:49:28:c4:e5:b1:8d:d1:06:cd:80:42:11:
e2:37:b7:c8:9f:cf:29:2e:dd:66:02:87:42:5b:4c:
d2:96:bd:8e:c8:8a:52:59:30:13:25:04:8d:63:1f:
67:3f:25:04:9b:f8:92:d8:8b:62:4a:d3:22:c8:df:
30:bc:2b:fa:f0:13:11:e7:cf:43:9d:e3:d5:70:fa:
91:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:20:69:8B:80:34:7A:2D:FD:F6:11:7A:FB:AA:A2:79:BE:48:B1:82
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/725AE7F2277D11EE8A933B104AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.144.0/20
Signature Algorithm: sha256WithRSAEncryption
03:3e:ff:09:c3:a6:2a:1a:27:ab:3f:6f:2f:1b:12:e4:af:f1:
55:f4:76:64:28:0a:ca:86:c6:5c:e0:77:79:e4:e9:c5:40:d0:
88:cc:07:1b:36:85:b3:2a:12:02:7b:a2:b8:c0:8a:22:a5:2f:
07:20:e3:73:bc:08:16:71:38:47:91:8f:ff:05:ed:d3:5d:bf:
39:70:e4:c8:28:c7:58:b9:97:d3:54:de:8d:6e:be:14:58:91:
19:8b:1a:23:36:ee:c4:b9:7f:db:04:58:95:5b:73:66:a5:91:
30:3f:87:f8:85:f5:c0:9d:bc:2e:0f:c1:f3:79:38:20:27:d0:
6b:a2:0c:70:af:0e:c8:ab:2a:28:bc:8e:c9:16:52:3a:b2:2d:
93:2b:b7:7f:09:9e:64:8b:d6:7a:69:8e:db:40:46:06:6a:48:
0b:f5:f2:65:c2:66:16:52:ed:5f:ff:3f:66:19:d8:51:f2:62:
8c:03:8e:b8:99:91:47:be:39:70:97:d0:0a:90:4b:06:5d:de:
e5:b6:6b:80:a6:a5:fe:27:71:83:60:35:16:72:ab:43:c5:f2:
f7:c6:ee:3a:dd:2a:64:a8:86:ed:20:da:99:a8:30:5a:a5:35:
bc:d5:ca:93:a1:13:0c:91:c9:c0:2a:5e:9c:97:56:c7:cb:e4:
5f:a4:0c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:33:18 2024 by rpki-client on console-fra.rpki-client.org