Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD5400AC3B2A11EEBF9D96404AD9E6FC.roa
File: BD5400AC3B2A11EEBF9D96404AD9E6FC.roa (raw, json)
Hash identifier: bWNX5gFpgpN5Vsb30CdZAMBCALWEy22M9Zp+R3FgYd8=
Subject key identifier: D3:A2:0B:3A:F6:1D:69:15:20:A1:A0:22:7C:BE:66:64:1C:BF:5D:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35DD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD5400AC3B2A11EEBF9D96404AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:15:25 +0000
ROA not before: Tue 15 Aug 2023 05:15:21 +0000
ROA not after: Mon 27 May 2024 05:15:21 +0000
asID: 140627
IP address blocks: 156.247.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13789 (0x35dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:15:21 2023 GMT
Not After : May 27 05:15:21 2024 GMT
Subject: CN=64db09ec-085f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:f8:2b:52:e6:79:b0:7f:43:30:29:3b:58:
5a:84:0d:e3:40:c2:2e:93:ad:d2:0e:4a:c4:8b:49:
8e:82:42:a3:42:45:fa:9c:9f:ae:f1:ba:47:39:7a:
08:5c:27:80:2d:c1:b7:5a:72:88:55:67:a3:5b:81:
c0:af:55:c6:58:fd:c7:43:b1:ab:10:c3:bf:75:69:
78:5f:4c:6d:59:cd:6b:6f:0d:0e:4f:5e:0f:4d:b8:
09:22:e9:17:60:91:7e:2b:47:22:d0:da:83:c4:c6:
6d:0a:0d:2e:49:ab:fa:b7:e8:6d:57:35:23:93:b8:
b5:fe:3b:e5:9f:3f:79:f7:73:5d:15:f0:ab:50:2a:
8d:2c:ed:7f:e1:dd:58:a4:5b:c5:5a:2c:61:8f:0e:
af:74:ac:e7:ce:ac:7d:12:63:2b:ce:4c:c9:07:f8:
53:9e:27:2b:bd:9c:8c:19:07:c7:93:d6:c5:14:af:
e2:99:ee:25:df:66:8a:a6:0a:32:d6:a2:de:8c:39:
cb:92:9e:89:59:e5:8a:9c:e4:b9:fb:9a:ff:e5:ce:
08:04:f7:d1:9e:b3:a1:90:a0:66:41:01:4e:7b:9a:
2e:6a:ec:be:54:b1:44:f4:b2:fe:5a:ee:20:3c:90:
71:ef:5f:3a:d4:f0:4c:cb:1a:b2:b2:a3:de:87:5a:
0f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A2:0B:3A:F6:1D:69:15:20:A1:A0:22:7C:BE:66:64:1C:BF:5D:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD5400AC3B2A11EEBF9D96404AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.141.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:78:2e:9f:e6:e3:65:fa:7a:cc:c4:9d:d2:56:45:e7:05:af:
84:a2:29:15:cb:8e:1e:91:9d:8e:ed:2a:e5:2e:ec:a7:5a:e3:
b2:e0:2a:ac:5a:54:4e:e6:60:bc:42:53:e3:9c:36:c2:c1:3b:
ee:8a:97:15:ed:6f:c2:13:f9:4c:9b:c7:2a:23:ca:af:42:1e:
d9:8e:cb:73:e9:d5:d5:71:bd:c1:ee:13:80:9e:30:81:82:94:
ea:a3:58:e6:66:cd:d6:58:37:d5:7e:7d:cb:65:75:72:28:69:
92:e7:b3:92:20:31:04:a0:18:6a:4e:dd:d0:20:7c:94:1e:b4:
ae:95:bb:db:75:7c:57:1d:e0:29:58:0c:08:8a:71:9f:78:fe:
87:28:1b:35:01:66:5a:38:bd:65:d5:56:03:3f:57:26:36:d7:
11:b9:4e:3b:dd:09:42:0d:5d:59:75:d5:2a:6f:a2:11:5e:55:
99:78:61:ff:75:bc:dc:39:83:75:2f:23:0f:96:ec:39:54:e8:
66:d1:29:62:e0:9b:24:26:e1:90:6d:42:13:a0:fe:bf:0d:15:
3b:54:a4:cf:33:a9:b5:f4:f6:1e:ea:73:7a:9f:d3:de:ad:63:
52:c8:2d:ab:0d:83:3d:c9:51:f7:b5:09:d3:21:db:91:4a:12:
6b:10:4a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:16 2024 by rpki-client on console-fra.rpki-client.org