Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BDCBA36FE9611EDA3438D474AD9E6FC.roa
File: 7BDCBA36FE9611EDA3438D474AD9E6FC.roa (raw, json)
Hash identifier: PoW9iDaYlB+g3/h1k1JIieyIrvEFIGnKnHTHZoR/rvU=
Subject key identifier: AE:CF:58:E3:B4:84:87:99:7B:C3:91:9A:01:4A:C2:E0:0F:76:08:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2817
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BDCBA36FE9611EDA3438D474AD9E6FC.roa
Signing time: Tue 30 May 2023 03:02:59 +0000
ROA not before: Tue 30 May 2023 03:02:56 +0000
ROA not after: Wed 15 May 2024 03:02:56 +0000
asID: 63888
IP address blocks: 156.255.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10263 (0x2817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 03:02:56 2023 GMT
Not After : May 15 03:02:56 2024 GMT
Subject: CN=64756763-d241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:33:d7:9f:17:70:7d:ed:22:dc:a6:10:95:bf:
d9:9f:46:48:ac:2b:43:50:07:25:3e:cd:94:24:71:
9b:06:9c:dc:86:6b:66:96:66:fe:c9:cb:bb:46:a4:
e8:7b:9c:2c:f5:57:d6:91:22:b8:05:6c:4a:6f:6f:
8f:36:9e:cb:cb:ea:cd:19:57:f1:97:2d:a3:a0:ca:
41:15:53:51:6c:7d:c1:5b:5d:b5:18:02:8c:e8:a1:
48:84:65:af:15:99:3a:1d:70:14:26:56:7a:99:52:
d4:3c:63:9f:91:22:66:07:7c:fc:94:b2:99:7f:98:
75:07:e6:4e:b6:3a:77:ba:6a:ae:db:58:d0:27:69:
f5:51:b4:4b:0e:20:81:e6:61:c8:e8:a6:18:c4:ae:
ab:6c:e0:3c:19:d4:07:a2:f4:51:f4:62:6f:43:6d:
23:d8:8b:99:3d:75:bc:30:01:2f:af:bb:50:5b:7f:
78:6d:c2:dd:f5:ca:23:74:3b:62:f9:49:26:ab:9a:
f9:12:d6:54:98:16:30:46:bb:93:8a:8a:03:11:23:
f5:cf:6c:f4:95:96:2f:a5:4d:c1:fc:35:1b:fe:58:
b2:41:b6:f2:e8:0f:b9:93:0a:a1:32:c4:85:bd:03:
f9:c3:d3:af:21:15:05:cc:86:e1:c2:7c:08:d6:89:
22:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CF:58:E3:B4:84:87:99:7B:C3:91:9A:01:4A:C2:E0:0F:76:08:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BDCBA36FE9611EDA3438D474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.120.0/24
Signature Algorithm: sha256WithRSAEncryption
72:5c:4d:12:7d:e3:17:ff:8a:a4:2a:d3:d8:0c:d5:79:a1:74:
0d:e3:b6:29:3a:0c:46:2c:b0:ba:92:af:eb:ed:71:f6:93:80:
43:13:1e:bb:e6:51:b7:82:9a:f5:b7:15:e0:64:0e:64:6a:5d:
2b:36:2b:53:f1:4e:41:61:85:bd:1f:45:eb:13:c4:2f:b2:9f:
85:90:b9:09:3d:b1:0f:da:9f:96:78:51:39:b9:5a:89:31:60:
c6:e4:fe:63:c9:dd:0a:77:94:48:b2:0e:c9:cd:75:e2:74:53:
04:24:45:74:ee:f6:e6:7f:20:80:dd:74:ac:c3:15:22:36:44:
44:7c:cd:7c:cc:6c:1f:e8:7b:9e:02:a2:f1:48:2c:e2:7c:89:
be:22:28:2b:51:17:26:99:cf:f0:6e:9b:a4:2a:3b:50:f4:56:
04:c8:1a:fb:35:0e:c4:57:74:6d:2c:28:e4:b9:45:3a:94:5a:
9b:71:60:61:e6:4f:3b:8f:6d:55:a2:35:b7:af:e5:d8:ca:f7:
50:e5:1f:ff:21:25:17:10:89:97:67:e6:c7:27:e1:88:07:59:
e8:32:51:3b:42:1f:4c:1b:0e:b6:00:3b:23:ee:1a:53:59:f8:
77:d3:91:7c:05:73:88:13:f9:ec:af:1a:30:6a:ff:cf:fb:26:
8a:a8:ae:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:55 2024 by rpki-client on console-ams.rpki-client.org