Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F5CB3723B2611EE8B0A07344AD9E6FC.roa
File: 9F5CB3723B2611EE8B0A07344AD9E6FC.roa (raw, json)
Hash identifier: vPLKpITZqKuoRZKecpXAi22G7wpUHcq3EehBaqRE2p8=
Subject key identifier: FB:A0:94:93:84:9E:A6:A9:8E:00:0F:F9:20:B5:FC:D0:10:08:39:12
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 359D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F5CB3723B2611EE8B0A07344AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:45:56 +0000
ROA not before: Tue 15 Aug 2023 04:45:53 +0000
ROA not after: Mon 27 May 2024 04:45:53 +0000
asID: 140627
IP address blocks: 156.247.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13725 (0x359d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:45:53 2023 GMT
Not After : May 27 04:45:53 2024 GMT
Subject: CN=64db0304-03d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3e:74:f9:1a:31:02:c5:6c:24:fe:85:04:88:
10:39:ff:79:b6:f9:ee:18:3e:94:80:4d:ab:15:1a:
90:3a:e4:25:6a:52:94:26:3a:78:b2:03:96:a9:ce:
2a:07:5c:98:96:d7:96:0e:c1:13:61:53:84:84:fc:
fa:07:38:79:59:17:fd:ab:5e:8c:f8:15:09:8b:64:
89:c7:c6:bc:95:84:09:46:44:54:23:e4:68:e9:4b:
54:95:69:4c:9f:c1:eb:bd:b9:9f:47:45:e9:f1:bb:
37:e3:3a:6e:98:02:ce:ad:e4:45:2b:be:4e:df:01:
36:56:23:6a:88:5f:fb:71:95:44:96:72:9e:42:19:
3f:ae:ba:a7:6f:66:af:c0:e8:e3:34:de:d6:88:c6:
fb:59:21:20:0b:85:7c:20:c5:16:81:f3:ba:ac:c4:
b0:54:69:97:a2:0f:bb:8b:b0:4c:14:aa:4d:b7:40:
4d:5e:16:b2:f5:3c:e7:cc:cd:b6:f6:41:03:ff:5f:
65:1e:73:f0:d2:78:b4:65:91:7c:d5:95:06:b2:e1:
25:82:49:3c:0e:04:b3:5f:94:46:a2:33:e5:30:90:
06:dd:f6:c3:ab:2f:da:43:c9:85:e7:a1:12:d9:85:
e2:a8:0f:a2:eb:d2:08:38:9a:a2:32:50:9f:37:22:
25:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A0:94:93:84:9E:A6:A9:8E:00:0F:F9:20:B5:FC:D0:10:08:39:12
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F5CB3723B2611EE8B0A07344AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.237.0/24
Signature Algorithm: sha256WithRSAEncryption
19:ab:9a:fe:62:37:c8:7d:87:df:1f:c4:f3:65:25:8a:74:55:
5b:bf:00:d8:f6:57:ba:9f:47:f1:87:27:f5:24:97:23:72:96:
4d:aa:a3:af:f9:8b:f4:81:a2:e6:cb:06:5f:4b:84:38:49:5a:
c7:5a:34:8c:0e:6b:e0:75:39:60:8c:a4:8d:a4:ba:c0:5c:0a:
69:d4:6d:c2:17:c9:47:6c:f5:1a:da:93:74:d4:cc:3a:6a:7e:
a2:7f:cb:56:eb:aa:6c:99:50:38:f8:d6:3a:66:63:bb:b9:6f:
88:2d:38:fd:05:36:fa:af:dc:c0:a0:27:2c:57:6e:83:12:02:
39:a2:12:bc:fb:df:56:17:1f:10:d0:c0:cf:38:ec:f4:19:07:
51:83:ce:80:0d:86:e5:a9:7b:6d:fc:88:3d:21:30:bb:cd:1d:
16:35:bc:62:28:e3:fb:2f:82:31:2e:f0:c9:eb:7b:4b:e6:cc:
13:81:9e:61:dc:38:1b:4c:0b:37:04:35:87:56:ee:3f:e6:1c:
56:66:f3:21:7e:52:f2:6d:5e:cf:d7:e9:14:6c:61:b1:01:ae:
7a:81:b2:48:7f:22:11:5d:b7:53:e7:84:84:1c:f1:f5:74:7a:
8c:aa:36:1f:78:65:6e:42:9a:9f:94:e4:43:9a:0b:93:a1:bf:
49:81:90:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:13 2024 by rpki-client on console-fra.rpki-client.org