Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D78B7D16277E11EE8A8369144AD9E6FC.roa
File: D78B7D16277E11EE8A8369144AD9E6FC.roa (raw, json)
Hash identifier: SWuaxGRA5vOTAB/gFwHO9Y/xE1+PZIIxBn2lMpAVIiA=
Subject key identifier: 8E:40:7F:12:EC:3C:5C:BC:0E:B8:2B:F6:5D:31:3E:46:54:DA:40:CF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 31B5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D78B7D16277E11EE8A8369144AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:27:03 +0000
ROA not before: Fri 21 Jul 2023 04:26:59 +0000
ROA not after: Thu 13 Jun 2024 04:26:59 +0000
asID: 22773
IP address blocks: 156.232.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12725 (0x31b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 04:26:59 2023 GMT
Not After : Jun 13 04:26:59 2024 GMT
Subject: CN=64ba0917-55e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:49:4e:cc:4d:85:f9:85:b8:11:85:d3:21:a4:
9f:fd:f7:b5:b3:fd:21:c5:12:34:56:f5:ef:d9:0b:
30:4b:a1:1c:27:b9:60:1e:99:99:f5:6e:e9:ea:63:
e9:ea:b1:c8:1a:7e:b3:e7:0a:3a:48:8c:74:cf:13:
54:60:13:f4:6d:b7:d1:1d:83:9f:e7:21:f2:57:36:
47:5c:ad:4b:f2:bf:08:c4:0f:3a:cd:33:2b:32:ce:
a0:4d:8d:b0:83:2c:f0:c7:00:75:a0:cb:a8:3f:db:
9e:59:06:85:2f:38:9c:91:f4:87:f5:08:8a:f6:50:
d9:01:40:aa:f0:f4:37:81:fc:fc:b3:de:88:42:8c:
81:fc:0f:06:d5:6e:a2:27:53:c5:3d:8b:c0:b4:0e:
23:4f:cf:cd:6e:5d:29:27:97:f6:07:13:49:53:ae:
b6:6a:49:cd:fc:7a:33:eb:a9:a5:5e:4a:a3:ed:4f:
08:03:d8:81:a7:bd:04:9f:34:07:57:ab:16:bf:44:
b6:37:3f:78:ed:bd:4b:f1:5e:3c:e2:77:b2:13:b7:
3e:24:fc:e5:47:ea:74:f3:44:31:3d:11:03:0f:b3:
1e:78:21:bb:2f:34:98:fd:89:87:47:c6:b9:8f:37:
05:cf:df:10:3a:f1:f3:fe:44:d3:56:eb:4b:c8:4a:
3b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:40:7F:12:EC:3C:5C:BC:0E:B8:2B:F6:5D:31:3E:46:54:DA:40:CF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D78B7D16277E11EE8A8369144AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.0.0/23
Signature Algorithm: sha256WithRSAEncryption
87:c7:03:fb:56:cf:76:f3:03:c7:d7:28:cc:3e:53:70:5f:40:
50:b8:d2:bc:a3:58:e1:8b:af:09:a2:55:56:0c:0c:af:d0:96:
85:39:b2:a9:e6:f6:98:32:0f:32:bc:1e:1d:86:c9:38:3b:aa:
da:ab:48:cd:b3:eb:7a:0c:fc:85:bc:3e:7c:2d:1f:1e:c2:6a:
b4:76:51:f5:58:31:44:99:fb:26:e9:af:47:20:52:54:00:55:
66:d6:5d:e9:1d:39:93:cb:e2:d7:1a:fd:7f:e5:45:e8:10:16:
dd:10:d7:5f:49:87:3c:40:f7:63:1a:ce:10:c6:5b:d0:3e:ba:
3b:6d:09:ce:bf:7d:1e:97:b3:35:d1:bb:96:69:3c:dd:b9:5d:
be:d1:85:62:bd:6c:89:0e:c0:45:a5:14:5b:e8:e2:eb:85:50:
a2:db:f7:fd:d0:b0:9d:84:db:ab:41:d2:d9:fe:01:bd:d6:6f:
1d:17:44:72:9e:37:0e:a9:6b:07:e3:28:90:49:33:3f:d7:94:
57:a8:1d:f1:e7:fa:9d:ed:a1:7c:c5:12:9a:a3:07:00:b7:b5:
79:80:bb:cf:61:c9:75:d4:3f:ca:83:1f:f0:6b:c0:aa:6c:42:
53:e5:0e:9d:f2:1c:a7:eb:4c:c9:81:6a:ee:7d:b6:d0:6c:35:
de:c9:99:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:53:08 2024 by rpki-client on console-ams.rpki-client.org