Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDFCDADA167911EE960896284AD9E6FC.roa
File: CDFCDADA167911EE960896284AD9E6FC.roa (raw, json)
Hash identifier: kHS7KmoV4BgjZTa16nLeX1w1tDvlbwC5/aDaSkk5iiU=
Subject key identifier: 7D:0A:08:C9:C8:9C:9E:76:C0:BC:1B:B5:0F:68:D1:75:19:99:61:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2E23
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDFCDADA167911EE960896284AD9E6FC.roa
Signing time: Thu 29 Jun 2023 12:38:10 +0000
ROA not before: Thu 29 Jun 2023 12:38:06 +0000
ROA not after: Fri 10 May 2024 12:38:06 +0000
asID: 133929
IP address blocks: 156.224.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11811 (0x2e23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 29 12:38:06 2023 GMT
Not After : May 10 12:38:06 2024 GMT
Subject: CN=649d7b32-b044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:37:64:ae:5c:c8:d3:59:79:c1:93:19:13:b6:
ea:be:80:61:7f:2d:a4:f2:67:72:d9:c2:e6:d4:c3:
89:b0:26:73:5c:c6:0f:80:a3:16:7a:f6:cc:df:45:
ff:1a:02:c4:ea:f6:fd:b4:ec:d5:e6:fb:9b:6e:2a:
9a:71:86:f5:37:46:c1:a7:75:fe:c2:79:1f:ab:f0:
53:5c:3c:c7:01:8f:b6:38:7c:dc:bc:f4:5c:9f:b8:
b1:36:a9:a7:d7:54:d6:d0:ed:08:db:fd:83:a2:46:
07:57:16:95:ec:e7:12:9c:fb:ad:4a:24:72:fc:cb:
5c:32:b2:a5:c9:4a:83:a7:f9:2d:09:f2:1e:9f:19:
0a:96:58:77:08:f3:11:19:26:60:ef:5d:2f:80:84:
b9:52:98:bb:19:78:85:13:79:a4:ba:c3:a4:0b:51:
ef:19:63:7f:f4:0e:63:ca:e5:2a:05:b1:09:00:24:
2d:84:60:35:a8:87:b6:21:64:7f:b0:56:cb:57:4d:
f4:4d:fe:9b:01:cc:06:78:e3:bf:f5:13:4e:5a:31:
e3:48:65:fb:52:11:82:38:97:60:ff:c7:5d:2d:04:
da:07:fc:47:93:b2:01:8a:d8:b9:05:4c:8e:67:37:
34:ec:c7:92:f1:b9:76:8f:c5:23:36:b5:1b:93:30:
4e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0A:08:C9:C8:9C:9E:76:C0:BC:1B:B5:0F:68:D1:75:19:99:61:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDFCDADA167911EE960896284AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.1.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ca:75:6b:2c:35:97:9a:46:b8:3f:21:dd:1b:5d:2d:90:a8:
f1:7c:8e:bd:dd:0d:53:69:51:f4:4c:fa:d9:bb:f5:2b:9e:c5:
2c:ff:09:e9:fa:5b:a7:cd:3c:b6:e8:b7:02:4b:05:cd:89:07:
13:36:58:22:0b:38:5d:3a:6c:f0:76:8d:c3:42:6b:93:65:01:
ac:df:61:e2:30:8d:15:b9:a4:49:16:69:0d:68:a5:0f:d0:a1:
90:fb:f6:68:83:6d:d5:6e:48:7b:d3:40:3b:6a:81:96:54:29:
10:19:3e:91:01:31:54:16:bb:98:5c:93:f7:52:7a:41:ff:ac:
16:1d:5b:bf:50:b1:c0:df:15:a3:db:a6:a7:c7:b7:54:a2:4c:
fa:c2:f2:68:e7:23:93:42:b4:12:43:95:fa:ad:04:d0:5f:ad:
c5:6b:b2:d4:ba:f6:c4:12:54:e9:54:2a:55:cf:08:55:b1:4d:
4f:bd:60:cc:ba:d4:41:30:50:65:e6:08:b5:d8:7e:f0:b9:d7:
90:20:d4:3f:d9:8b:8d:82:73:bc:47:bd:8e:32:1e:d5:26:e1:
d5:c2:19:57:ac:3c:56:c8:1f:40:7d:cf:c0:cd:d6:17:b5:39:
b4:c2:06:61:ca:74:53:8c:91:3e:7b:46:e8:b7:1e:7c:34:2a:
8b:1f:d3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org