Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC067652595B11EE893233274AD9E6FC.roa
File: DC067652595B11EE893233274AD9E6FC.roa (raw, json)
Hash identifier: /d9fMLN4DbEru1eFDeZOdmBFbCSe4hMVwmyzNutrt4g=
Subject key identifier: A4:9E:4A:73:85:9A:32:96:8F:CA:A6:14:68:04:FA:67:F4:85:56:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3B03
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC067652595B11EE893233274AD9E6FC.roa
Signing time: Fri 22 Sep 2023 15:22:36 +0000
ROA not before: Fri 22 Sep 2023 15:22:33 +0000
ROA not after: Thu 25 Jul 2024 15:22:33 +0000
asID: 3491
IP address blocks: 156.230.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15107 (0x3b03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 22 15:22:33 2023 GMT
Not After : Jul 25 15:22:33 2024 GMT
Subject: CN=650db13c-bdb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d1:f0:2d:b0:03:f0:b4:08:10:6a:d1:e5:d5:
52:a2:61:37:49:6e:52:8d:15:1f:e5:c7:62:64:74:
6c:48:5f:83:a4:2a:e6:e9:18:08:4e:c8:b2:c6:ce:
6d:ca:99:5f:d6:b1:72:61:e6:22:87:ff:94:70:ec:
4b:85:c9:8e:6a:47:64:b5:e7:bd:3a:99:70:ee:95:
a4:4b:74:94:94:f2:c5:34:98:5a:7d:4d:53:55:67:
db:f8:ee:b7:13:f2:56:9c:d3:ab:cb:51:5e:09:be:
1c:46:55:59:13:3f:54:65:05:85:22:7f:67:fd:b2:
1b:0c:39:ad:91:83:67:05:9d:bc:df:e1:69:9a:70:
e6:0c:01:1e:f1:72:56:5b:02:89:f0:45:05:6a:05:
69:d9:f8:ee:bf:47:44:ec:4f:ba:c6:73:69:79:21:
b9:6d:75:c3:63:d9:f3:7f:b3:73:66:c1:f5:6e:12:
15:45:8b:12:db:4c:20:31:6e:75:0d:48:ef:e4:cd:
34:86:0b:51:1c:4a:b5:9d:ce:93:8d:6e:63:3e:3a:
3b:e6:6f:71:56:ca:d7:9c:21:90:96:7c:93:e6:35:
db:bb:91:c6:84:1f:9e:d2:7f:f1:9d:1e:6c:66:e2:
bc:89:0a:c9:a7:c4:60:35:d4:fc:54:a5:61:ff:a0:
ee:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:9E:4A:73:85:9A:32:96:8F:CA:A6:14:68:04:FA:67:F4:85:56:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC067652595B11EE893233274AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:8f:bd:98:b9:29:cc:f0:35:8a:53:b7:f7:4c:2d:25:6b:b4:
f1:3f:01:49:ba:78:7d:77:ce:c9:75:43:52:0a:1e:99:43:11:
29:66:a4:2f:06:8d:29:ab:2e:1e:14:20:1b:26:32:bd:41:09:
52:ef:2d:5c:06:e6:d3:d4:95:08:b6:e4:d1:d9:a5:d1:46:d9:
e8:59:30:6f:b1:ff:85:9c:df:de:b0:31:9f:a8:bb:fb:83:01:
bc:f0:47:9a:fe:f2:8e:f1:a6:da:94:5d:a6:9b:66:36:b7:73:
12:c1:66:c4:9e:07:fb:fe:d3:b3:44:9f:fb:33:24:32:f7:45:
d8:07:69:f9:01:83:94:4d:38:a4:cb:58:9a:1f:42:90:c3:17:
64:d9:01:3d:96:51:c0:04:f2:5c:cb:ea:c3:64:0c:f8:70:57:
75:0a:a7:97:e6:b5:53:54:94:78:19:4b:c7:dd:67:55:4c:75:
c5:a3:ac:69:55:64:8f:07:41:20:bb:d9:4f:75:e2:88:06:66:
34:d6:bd:c2:66:20:e9:44:cb:a8:25:e0:96:ee:ec:b6:4d:5b:
d9:a4:12:b4:69:67:03:04:ab:37:b0:28:0b:e0:60:7f:13:eb:
1a:7b:ad:fd:7c:3c:5c:07:b6:1c:fb:8c:19:69:82:34:8e:2c:
df:29:c7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:10:13 2024 by rpki-client on console-ams.rpki-client.org