Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A17EE896212211EEAFDE901D4AD9E6FC.roa
File: A17EE896212211EEAFDE901D4AD9E6FC.roa (raw, json)
Hash identifier: GLBbDYT1kwOrJiFSS4yK4/5F6XHjd9yLDKJUFsBF+Sc=
Subject key identifier: 90:6C:A9:12:5D:F3:5F:EF:26:FB:F6:30:69:AD:38:F1:D2:F3:52:8D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2FC2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A17EE896212211EEAFDE901D4AD9E6FC.roa
Signing time: Thu 13 Jul 2023 02:11:52 +0000
ROA not before: Thu 13 Jul 2023 02:11:48 +0000
ROA not after: Wed 03 Jul 2024 02:11:48 +0000
asID: 132471
IP address blocks: 156.229.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12226 (0x2fc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 13 02:11:48 2023 GMT
Not After : Jul 3 02:11:48 2024 GMT
Subject: CN=64af5d68-729c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:9a:91:e3:c4:5d:ab:96:4c:70:38:e0:1b:
6a:60:d0:bb:1d:82:b0:84:ee:ea:ce:fa:2d:2d:af:
01:de:49:54:a4:bb:e4:64:8f:cf:cf:13:ad:c1:10:
ae:1f:17:39:f5:66:31:96:33:76:be:b1:b6:72:d4:
e4:04:3a:49:a5:ec:ed:33:c5:0b:bc:7b:ff:1c:91:
36:d9:05:d2:fd:7d:b3:53:58:00:cc:25:b2:40:ba:
06:43:c1:e0:0e:cd:e3:61:c9:ed:a4:60:db:68:79:
bf:1b:ae:58:18:9b:92:52:76:e4:48:86:25:68:45:
8c:5c:8e:d1:3e:f5:2b:97:78:fa:4a:d9:37:b8:6f:
ea:89:03:0b:82:98:a3:c3:33:d7:ba:01:71:8f:34:
bf:3f:55:8e:96:3e:f4:7a:c5:b6:bb:a3:a9:80:64:
da:9e:7d:f8:3d:c9:51:7a:5b:fe:aa:6a:a1:64:53:
71:61:fc:b1:40:18:7a:ce:bf:14:12:78:fc:40:b3:
26:90:e9:be:42:fb:12:04:6d:b5:4c:d0:67:68:b3:
68:a6:c7:7c:e1:64:4d:73:9c:3f:c8:ca:1d:8c:c7:
32:8d:27:e7:9e:4e:0d:40:f4:f9:bd:da:37:a8:31:
02:a1:d9:fd:b7:e4:d2:f9:8f:23:04:39:c2:eb:af:
c9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:6C:A9:12:5D:F3:5F:EF:26:FB:F6:30:69:AD:38:F1:D2:F3:52:8D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A17EE896212211EEAFDE901D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.34.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:ce:b2:07:1d:56:d2:7a:60:6e:fa:e2:f9:9c:31:4f:37:7b:
0d:9a:7f:19:16:75:86:b7:1c:97:61:78:a7:d9:2d:0e:97:91:
2b:5a:2b:47:d7:37:28:da:bf:87:d8:b1:f0:76:83:1c:46:c0:
36:d8:3d:94:f4:8e:3f:d9:3f:99:74:83:ff:52:12:64:18:73:
9c:5e:d0:1f:93:0b:c7:0d:e0:66:f3:91:38:d5:13:78:72:55:
12:a3:58:2c:0f:2c:c3:1f:2a:4b:d6:b0:58:87:fb:c3:e5:d0:
a8:c1:17:09:40:87:78:14:97:39:2e:a7:44:65:19:a3:73:d8:
3c:fd:8e:9e:0d:44:6b:5c:32:67:d7:18:25:3e:83:24:2d:2b:
3b:25:63:2a:00:f8:b7:e9:0f:e6:4b:16:6e:dc:c2:2e:f0:c1:
e9:2d:ff:8d:1d:7d:b0:04:d5:a0:48:92:cf:f2:97:21:d2:aa:
71:87:49:99:00:88:41:5c:80:5a:80:29:63:6c:2f:18:87:55:
cf:a3:10:95:f4:db:f3:be:e4:e1:5c:6a:f2:bc:86:14:24:bc:
f6:56:9a:7d:55:c2:42:5c:15:02:dd:56:b4:7c:05:ae:bc:01:
36:ce:0c:ba:ca:eb:7a:b1:43:35:e2:d7:03:67:a1:58:b1:fd:
a1:43:32:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org