Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/818976543B2711EE9F46A8364AD9E6FC.roa
File: 818976543B2711EE9F46A8364AD9E6FC.roa (raw, json)
Hash identifier: eVq1VyXYZ+2IiNY8iAvtzGbA5Yv6sxAiTz+zScEc5J4=
Subject key identifier: 41:C3:BC:48:9D:66:03:F0:5F:F8:DF:AF:95:D5:68:5F:AC:77:A9:77
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35AB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/818976543B2711EE9F46A8364AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:52:16 +0000
ROA not before: Tue 15 Aug 2023 04:52:13 +0000
ROA not after: Mon 27 May 2024 04:52:13 +0000
asID: 140627
IP address blocks: 156.247.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13739 (0x35ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:52:13 2023 GMT
Not After : May 27 04:52:13 2024 GMT
Subject: CN=64db0480-f599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ae:2c:e8:5b:92:05:05:eb:8b:00:ce:e9:53:
48:bf:ce:66:27:a1:ce:b2:cd:a8:66:8d:51:cd:85:
bb:38:0d:dd:77:43:95:bc:f1:0f:88:fc:dc:e3:ff:
e4:e0:1f:b4:0d:5a:34:13:12:99:e0:56:cd:47:71:
f0:64:0e:7d:dc:f5:f3:21:1e:a5:d1:56:46:54:05:
56:46:63:1c:05:e6:c0:08:ec:e3:10:11:45:0f:2e:
a8:4d:e1:7d:44:d0:be:4c:ba:82:50:d5:65:47:25:
d3:21:e4:e2:0d:5d:9c:f5:4e:20:fe:05:44:19:9e:
b6:1f:e8:d3:50:b2:ce:ce:9f:ae:13:5f:3a:17:eb:
5e:e5:7a:84:ae:1f:c3:36:1a:fe:bd:53:f1:6c:25:
ff:a2:83:6b:dd:ff:35:6f:2e:31:43:5b:10:6f:1f:
8f:a2:18:f5:d4:a7:a6:24:9d:60:e8:12:00:44:d0:
b1:8f:13:a2:f5:fe:5a:11:b2:eb:17:c8:ac:93:08:
70:88:6b:f6:67:6a:f2:9c:47:a6:29:8f:b3:59:17:
01:b9:1b:fd:b2:4a:83:ef:db:09:4d:df:96:a9:e1:
3e:67:5f:64:b7:bc:45:22:02:4d:ee:71:6f:92:51:
1a:13:ce:4c:f4:c3:99:49:40:85:2a:32:d1:bd:3c:
a3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C3:BC:48:9D:66:03:F0:5F:F8:DF:AF:95:D5:68:5F:AC:77:A9:77
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/818976543B2711EE9F46A8364AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.244.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:41:8f:ef:c6:f9:e2:b8:53:7f:82:a3:07:7e:3f:8e:3c:b0:
30:52:28:31:f4:73:43:ef:0d:45:03:3a:bd:a2:cd:e3:99:5a:
8a:b6:57:19:d1:1f:d6:aa:60:6b:e5:b3:a1:90:13:aa:6d:ff:
60:16:ac:90:e3:47:06:5c:ea:91:54:ae:57:89:9e:df:5a:0f:
6d:8e:49:f8:d8:7d:25:5e:bd:dc:9d:1f:cf:f2:f8:ea:e0:bf:
ba:43:73:75:2c:c1:33:1b:f8:d4:43:ac:c2:b7:76:14:d4:c9:
dc:e0:42:eb:fd:6f:85:30:e0:aa:d8:04:22:e3:cc:be:0d:39:
9f:8e:4a:4e:f5:6f:57:72:3a:d8:ff:cb:b3:8b:85:a2:67:dd:
b4:7b:6d:01:64:41:6d:25:0e:74:73:6e:2a:86:5e:bc:96:9a:
ca:c1:23:d9:38:db:77:fd:3b:20:ba:22:f7:89:b9:2e:50:52:
c1:f5:3b:b2:14:cd:aa:d8:48:0e:c2:bc:d5:ca:70:58:64:61:
e9:b8:7f:de:33:99:3b:a6:91:52:2e:26:a8:e1:b6:d2:77:f7:
8e:95:64:48:f0:be:49:b1:2f:ff:61:27:9b:15:95:bf:e3:2a:
ea:e2:0b:d3:eb:2b:6a:03:2a:4d:8a:95:19:0a:84:e7:6e:47:
be:8e:b5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:12:02 2024 by rpki-client on console-fra.rpki-client.org