Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/937AB2DA3B2511EE939FC6304AD9E6FC.roa
File: 937AB2DA3B2511EE939FC6304AD9E6FC.roa (raw, json)
Hash identifier: ptcW4HSwiasU+JOFVe+K2+xx5JoqV/uP+47M95DH1oA=
Subject key identifier: 57:F6:84:D4:AC:76:65:24:6C:B3:4F:47:3F:A7:85:05:90:22:DE:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 358D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/937AB2DA3B2511EE939FC6304AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:38:27 +0000
ROA not before: Tue 15 Aug 2023 04:38:24 +0000
ROA not after: Mon 27 May 2024 04:38:24 +0000
asID: 140627
IP address blocks: 156.247.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13709 (0x358d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:38:24 2023 GMT
Not After : May 27 04:38:24 2024 GMT
Subject: CN=64db0143-4caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:88:f6:17:ed:21:04:9a:ca:cc:ea:34:e0:75:
80:22:81:f9:3c:09:66:41:ba:c2:08:02:1a:32:e6:
e1:e2:b4:3c:5f:4b:60:8e:db:39:9b:8a:6e:47:55:
62:d3:1d:da:43:58:04:b7:be:d9:ad:06:dc:fa:6a:
7d:2a:3c:ee:e4:bf:aa:c9:53:7e:07:30:e6:3b:95:
c9:9d:76:d1:6f:e1:22:b5:4b:c7:1e:bd:3c:74:00:
c2:27:83:0f:5b:17:12:92:29:50:e6:52:b7:d3:d3:
5e:02:1d:a5:b7:aa:5b:75:06:91:f2:35:7d:81:b9:
47:77:d3:36:54:40:1a:a6:82:3e:50:76:ad:c7:01:
6a:45:e3:f3:ba:1a:c8:3f:82:b8:f4:0c:0e:58:1e:
f8:2b:6c:75:bb:06:c8:87:58:97:1f:c2:3d:80:50:
c1:e8:8e:1c:b9:bf:69:32:fe:ea:33:7e:fa:38:87:
8b:7d:16:14:b8:8e:33:48:47:bb:f1:37:2b:82:a1:
2c:a2:f5:3b:40:a0:33:b3:79:18:06:b3:29:ea:28:
78:e2:2c:5a:85:be:50:f5:94:6d:81:d8:e7:dd:a6:
0f:45:69:63:68:ca:0a:d6:b9:8e:1f:83:b8:8b:40:
ff:d8:e1:ab:89:3b:2c:86:19:e0:c9:18:4a:06:56:
ea:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:F6:84:D4:AC:76:65:24:6C:B3:4F:47:3F:A7:85:05:90:22:DE:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/937AB2DA3B2511EE939FC6304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.229.0/24
Signature Algorithm: sha256WithRSAEncryption
14:f5:52:63:34:3e:5b:46:ea:e5:0c:b9:87:62:43:aa:b7:91:
5a:a9:0c:6e:ed:0b:b8:e2:c7:ec:09:43:34:73:54:02:7b:49:
a5:f1:5f:d2:40:83:61:41:c3:69:fb:b7:34:8b:f0:88:e0:94:
c0:3d:47:c3:47:2d:e3:7b:b0:35:97:b1:00:bc:01:69:44:d5:
00:ae:d7:19:d7:d8:4b:55:6c:53:7e:11:65:27:a5:76:f7:3c:
c2:89:f3:ce:1b:90:60:40:0d:84:d0:d2:32:db:c6:19:52:a5:
6b:1e:eb:f5:e8:6f:12:2f:68:d9:d6:ed:a1:0b:9a:c7:5a:36:
1c:b5:5c:ef:a8:a7:dd:79:4d:80:07:cf:e7:83:e2:06:84:c4:
91:31:9d:74:9c:3d:67:18:d7:8d:55:fa:9d:a7:42:b8:c4:09:
93:86:52:40:ec:e8:e4:f5:fc:23:79:c5:ec:8d:b8:98:18:db:
13:be:6c:0e:5f:ad:ec:ad:30:28:2e:fb:d2:18:7a:67:b7:d1:
bb:ad:eb:02:10:15:31:55:b9:6e:97:98:c6:ce:55:c7:92:88:
00:df:4f:6b:b0:e9:4b:7b:f2:10:8e:2a:6f:5d:7f:5d:59:34:
8a:e8:e9:0c:28:9a:28:fc:ec:4e:b3:4b:7d:83:06:27:e2:ea:
c7:0b:5a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org