Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4F6A942FA0B11ED81EBF47B4AD9E6FC.roa
File: B4F6A942FA0B11ED81EBF47B4AD9E6FC.roa (raw, json)
Hash identifier: 3XXETLzeZ5y+qgttz+ctp8gipXLQ2T4/2rrjizUc2h4=
Subject key identifier: 9D:8B:76:0C:D8:7F:7D:30:7F:33:5E:25:F9:4D:B0:E2:AD:74:0D:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 272F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4F6A942FA0B11ED81EBF47B4AD9E6FC.roa
Signing time: Wed 24 May 2023 08:19:31 +0000
ROA not before: Wed 24 May 2023 08:19:27 +0000
ROA not after: Tue 15 Oct 2024 08:19:27 +0000
asID: 399674
IP address blocks: 156.248.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10031 (0x272f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 08:19:27 2023 GMT
Not After : Oct 15 08:19:27 2024 GMT
Subject: CN=646dc892-82c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e0:af:9a:43:bf:a3:b9:84:12:c2:a3:da:05:
d9:ef:be:9b:9a:f3:79:ea:4a:ef:3f:06:cd:d3:76:
e5:14:9f:f8:10:a8:ed:41:9f:b1:d3:a6:c7:08:79:
94:b9:1f:7c:67:f1:9a:84:14:02:32:71:7a:a6:2f:
bb:77:06:2d:25:9f:fa:3c:9a:c7:74:bd:51:b2:ed:
3a:64:41:f8:26:d9:c8:31:92:12:6a:41:4e:64:ca:
d2:8e:29:27:6b:43:5e:3d:26:41:fe:d4:5c:b2:90:
ab:fe:6a:8a:50:94:c3:72:81:c6:74:e6:97:25:6e:
1f:9c:3b:94:8a:61:4f:24:b2:3a:8f:87:dd:46:20:
1a:46:39:07:57:74:b3:ae:1e:83:21:ee:f7:b6:fb:
65:c5:ea:b7:b4:c4:f7:f3:35:bc:41:8e:c3:14:9c:
7e:60:a4:c2:17:90:54:f9:86:80:92:36:c1:14:3c:
f9:ba:2f:05:e5:46:84:63:61:1a:a4:72:1b:9d:ca:
d3:a2:6c:7c:ab:47:5b:e5:fd:86:bb:3e:78:58:ac:
bc:8e:8b:d1:b4:6d:9f:5e:0b:21:67:47:a8:08:e2:
9a:44:97:1d:b3:a6:02:64:92:e7:32:6e:cc:5c:e1:
fc:ec:76:10:80:55:2d:b6:99:56:52:8f:5a:9d:09:
24:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8B:76:0C:D8:7F:7D:30:7F:33:5E:25:F9:4D:B0:E2:AD:74:0D:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4F6A942FA0B11ED81EBF47B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.192.0/19
Signature Algorithm: sha256WithRSAEncryption
b3:ae:fb:58:f6:7c:4d:5e:23:b0:20:1c:04:3a:ff:b1:37:07:
ec:1b:04:2a:04:5d:0c:e1:1e:2f:06:66:3a:10:e9:c0:0f:85:
5c:ca:d9:9b:01:2c:f2:c3:2d:90:53:b3:fc:51:b2:30:8c:b7:
ba:0f:a5:93:0f:c8:33:63:f4:46:33:54:c3:a7:76:ba:d8:b6:
29:d2:64:e5:de:f8:30:b0:a9:ae:99:16:66:e5:72:bd:05:39:
b8:00:ab:69:84:eb:bb:6e:8f:2c:0d:0f:32:7d:7a:38:94:c6:
46:6e:8e:24:9d:9d:1c:01:78:0c:2c:b0:7c:2e:15:89:e7:d1:
fe:2b:f1:08:c9:75:4a:26:17:fa:e2:84:13:d0:a6:bd:14:3d:
b5:ed:f5:56:20:e7:f8:31:a1:f2:88:27:4e:44:71:a3:6d:92:
91:e6:3c:b8:e7:11:6f:e1:cb:53:d3:5d:c2:6a:8a:24:52:b8:
67:f7:45:c6:d4:13:50:2b:3d:24:09:76:b4:74:c2:8a:4e:be:
db:c7:1d:90:70:cd:b8:32:87:62:89:a6:42:5b:4c:48:c0:6c:
81:a4:46:28:cf:20:9e:3d:3e:9e:5d:d2:42:cc:8c:e3:70:aa:
e9:c5:d6:cb:bc:cc:fe:a4:50:4a:31:7e:ee:36:6b:49:6c:79:
2c:7d:31:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:50 2024 by rpki-client on console-ams.rpki-client.org