Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB8B4988FA0B11ED92FD3B7C4AD9E6FC.roa
File: CB8B4988FA0B11ED92FD3B7C4AD9E6FC.roa (raw, json)
Hash identifier: rvInBxWLVUgIfBG/QggMJ82fmJPwEF8y5Z27yNXROoI=
Subject key identifier: 69:A4:CC:90:B4:DB:44:59:94:2D:BE:3F:80:AA:95:6B:C6:E6:B4:E7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2731
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB8B4988FA0B11ED92FD3B7C4AD9E6FC.roa
Signing time: Wed 24 May 2023 08:20:09 +0000
ROA not before: Wed 24 May 2023 08:20:05 +0000
ROA not after: Tue 15 Oct 2024 08:20:05 +0000
asID: 399674
IP address blocks: 156.248.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10033 (0x2731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 08:20:05 2023 GMT
Not After : Oct 15 08:20:05 2024 GMT
Subject: CN=646dc8b8-c57e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:13:9f:d9:6a:11:4a:86:70:f4:72:6b:c6:2f:
c3:13:f4:00:00:3a:75:bd:b7:1c:57:ac:00:82:b9:
ee:ab:e4:3b:04:d8:ef:84:c0:28:49:cd:e5:6a:87:
d7:cb:ca:cc:70:aa:16:51:fe:f3:c2:fa:a3:1f:89:
d9:e1:aa:30:cf:e2:29:8d:9c:5a:ff:c4:e0:73:c8:
35:41:c0:d3:35:c3:61:3c:a3:53:29:80:6d:6d:f3:
12:58:37:7f:eb:54:6e:67:de:42:92:19:b4:94:65:
d7:cd:2a:0e:7b:54:3a:4e:b3:3f:ef:3c:c3:3d:9a:
c9:bd:27:56:1b:0a:30:38:32:4c:57:d8:ce:de:70:
50:1a:4b:66:0c:44:d4:90:58:c8:75:9b:96:c7:70:
84:ef:1a:78:c5:21:38:25:62:8c:66:e5:4a:c9:d8:
b1:0f:6b:a2:a1:c8:8b:33:a5:ee:fc:cf:78:53:f7:
01:55:31:5b:9f:84:0d:e7:3e:00:e3:40:bc:e2:ea:
3c:2c:71:a7:f5:f4:0e:a7:4f:0b:3b:c4:ab:2b:8a:
21:97:21:04:7b:01:92:31:49:56:7d:9e:9a:7f:4a:
09:88:12:e8:5b:cc:a2:a8:47:43:54:ca:cb:33:c5:
ee:9e:a4:6a:02:6f:82:08:94:a9:87:e1:2c:6f:7f:
d4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A4:CC:90:B4:DB:44:59:94:2D:BE:3F:80:AA:95:6B:C6:E6:B4:E7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CB8B4988FA0B11ED92FD3B7C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.224.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:2b:76:7c:55:9f:4e:79:2b:d9:9e:e4:7c:28:e2:25:a5:a4:
1b:63:62:80:bf:fa:66:d0:51:db:83:20:d0:5b:c1:c5:2e:0f:
3a:d4:fa:9f:11:1f:35:b9:bd:a3:04:7f:ef:b7:64:fb:ed:2c:
a8:b6:36:1b:db:f1:3d:e9:59:dc:86:4e:a9:f6:98:24:0d:cc:
6d:a9:76:8c:28:92:77:59:cf:09:39:91:d3:15:0b:97:9d:5d:
45:8d:e9:38:7a:61:91:b5:d5:43:58:ea:64:2e:55:bf:d8:d1:
32:de:15:95:9c:93:2f:8b:a2:a1:fc:c6:07:ae:29:b1:6e:31:
36:bd:9f:a8:e7:2b:c7:b6:2c:58:7f:b0:71:8b:69:54:3a:b0:
0c:39:15:2c:fa:f0:c8:2a:e8:f2:04:48:9c:2d:99:ff:2d:e1:
d4:e6:92:59:22:38:20:f9:23:08:87:a7:0e:e2:6c:2b:31:bc:
8e:14:cd:3a:a9:e9:6d:8e:47:55:b7:68:f3:9d:cc:47:c3:ca:
a2:f9:88:b2:0e:7e:b1:85:34:42:be:61:d8:a8:73:4f:4a:f8:
64:20:20:48:93:32:76:2d:35:ff:25:05:96:9a:f4:fc:21:f8:
25:e6:13:60:2d:4b:83:74:7b:4b:4a:1a:78:c3:f7:7c:fe:b2:
2e:0b:87:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:33:23 2024 by rpki-client on console-fra.rpki-client.org