Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7AD452683B2A11EE97B3B73F4AD9E6FC.roa
File: 7AD452683B2A11EE97B3B73F4AD9E6FC.roa (raw, json)
Hash identifier: i5WZjaPabGRAcreMB5BEJ+J/cc/hUnRlVvRvuqw4Gak=
Subject key identifier: E8:23:C6:36:A3:17:36:F3:0D:ED:79:3F:FA:D2:00:AD:D1:6A:1A:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35D9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7AD452683B2A11EE97B3B73F4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:13:33 +0000
ROA not before: Tue 15 Aug 2023 05:13:30 +0000
ROA not after: Mon 27 May 2024 05:13:30 +0000
asID: 140627
IP address blocks: 156.247.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13785 (0x35d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:13:30 2023 GMT
Not After : May 27 05:13:30 2024 GMT
Subject: CN=64db097d-20e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7d:0c:76:60:49:a9:14:dd:0f:bb:1a:5a:ab:
e6:e7:d9:c9:f9:d1:20:63:76:2c:29:d6:e9:65:cd:
ff:a9:6f:52:8d:bc:c0:12:03:99:20:26:d2:8f:10:
a0:61:69:2d:02:93:17:01:f9:f1:3a:76:6e:e9:4b:
e0:2e:bf:05:13:d0:18:f6:85:d4:1b:bb:5a:f1:18:
df:e1:b5:82:15:a3:58:13:30:52:d1:f8:c3:ed:d4:
bf:43:18:f5:4e:b0:9e:36:c4:45:98:b2:8c:2a:26:
b6:f0:c6:e3:6b:4d:93:fe:60:55:58:6d:7d:af:9f:
cd:36:6a:42:3c:d9:3a:15:91:70:76:fe:6d:f9:81:
a5:2d:20:73:2b:7e:17:fc:c1:af:0e:07:85:c7:3c:
f3:c5:48:6b:7c:2c:0b:51:40:8e:2a:25:53:00:cb:
9f:46:96:c1:37:bf:42:79:5a:59:dc:de:22:fe:7e:
b1:aa:ed:78:2d:2b:9e:25:17:e3:e1:d9:ad:0c:d7:
c5:b5:66:4f:27:b1:fc:d3:ea:58:ac:64:3d:a2:d0:
65:5d:0e:9f:54:9e:a9:6b:22:00:50:d5:93:7f:dc:
ec:fc:63:ef:69:29:b4:98:65:4c:69:5f:b5:74:bd:
2d:ab:16:4e:f9:e2:45:14:06:e8:a1:5d:38:60:99:
fe:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:23:C6:36:A3:17:36:F3:0D:ED:79:3F:FA:D2:00:AD:D1:6A:1A:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7AD452683B2A11EE97B3B73F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.139.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:40:b2:c0:23:0f:04:a0:89:c8:89:a8:01:e4:27:20:79:8a:
01:54:33:69:69:c4:58:a9:5f:25:85:ef:3c:f6:d5:c1:38:b1:
27:29:58:ca:4c:0d:04:cd:2d:5f:4a:d0:1c:6a:6b:3a:c1:fc:
a0:2e:04:49:a6:f1:0d:d4:4f:73:c1:98:88:8d:c6:09:29:5b:
22:54:52:5c:3d:7f:77:5a:35:21:8b:12:33:42:43:a9:dd:b7:
70:f5:67:e7:2c:83:09:d3:18:ab:92:f1:94:6a:ce:33:d2:c0:
21:d2:f4:7f:ef:1d:cf:ed:cb:ef:29:4a:09:93:82:13:e9:ec:
91:0f:98:52:22:0f:d8:25:16:fe:fb:e6:b2:aa:3a:bd:6e:a4:
ee:29:e4:b7:36:bf:1b:c3:ff:d3:f5:c3:bc:fd:d4:0a:be:66:
22:9f:f8:b6:0f:b3:e0:c3:62:17:27:71:fc:17:97:89:94:86:
46:42:60:16:40:68:f5:3b:35:68:2d:1f:e1:b9:d1:58:28:d9:
4d:53:71:07:e9:05:39:98:6a:d5:b0:89:f9:bb:9a:30:5c:48:
cc:0b:49:5e:eb:f3:65:24:0b:5a:fd:70:5f:66:48:5b:f4:ab:
e0:28:75:55:73:99:11:03:4d:d3:f6:d4:58:a9:0f:9f:7a:13:
b2:5e:ca:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:55 2024 by rpki-client on console-ams.rpki-client.org