Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCBDAFE2544811EE814C60814AD9E6FC.roa
File: DCBDAFE2544811EE814C60814AD9E6FC.roa (raw, json)
Hash identifier: xIARIF2yYAYPsqc5hCRrY/GYoNEJ9flDh9fSr4UIklE=
Subject key identifier: 23:13:BF:75:43:1D:C2:B6:D7:99:BE:D9:4C:21:10:9D:4D:B1:6C:67
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3A3F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCBDAFE2544811EE814C60814AD9E6FC.roa
Signing time: Sat 16 Sep 2023 04:24:01 +0000
ROA not before: Sun 01 Oct 2023 04:23:58 +0000
ROA not after: Thu 08 Aug 2024 04:23:58 +0000
asID: 133861
IP address blocks: 156.247.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14911 (0x3a3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 04:23:58 2023 GMT
Not After : Aug 8 04:23:58 2024 GMT
Subject: CN=65052de1-a340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e4:9c:b7:ac:2f:fb:8a:d1:79:52:c7:2d:13:
14:e7:43:09:42:02:1f:e5:02:e4:8f:7f:6e:ec:9e:
5c:b6:20:9f:55:e5:24:24:26:e4:3d:32:71:a9:5b:
21:40:be:b4:fa:ba:1a:49:fb:57:5e:8f:78:aa:e4:
e3:04:23:4c:14:05:f1:b3:1b:d1:53:ca:00:9d:56:
56:4a:e8:bc:6b:21:e0:f4:1f:0c:ce:d2:31:e6:22:
b3:55:d5:71:8b:1b:39:67:49:ce:17:0f:c9:39:23:
d7:55:0b:cb:df:68:3b:7f:08:21:31:d5:70:43:4d:
a7:2e:eb:cd:d8:17:57:16:70:ee:fe:4e:37:97:10:
06:a2:0a:db:91:27:b2:2a:cc:3a:5e:32:73:d8:c8:
99:98:ed:07:a8:d7:76:d6:11:8a:53:31:73:72:4a:
c2:04:49:a0:8e:fa:39:8b:00:2c:4c:85:3e:5d:94:
1b:cf:a6:9e:9e:14:9a:c8:da:57:2f:3b:01:d6:ea:
41:b5:fb:bb:c5:d1:00:be:82:23:74:91:64:97:75:
c6:cb:69:ce:35:5b:34:c2:49:3a:bd:ac:d7:51:37:
15:49:b5:ea:30:49:43:b4:cb:86:61:15:f6:c6:ed:
bb:d8:1c:c9:d2:6d:55:63:d6:3b:d9:b8:9c:a4:dc:
4b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:13:BF:75:43:1D:C2:B6:D7:99:BE:D9:4C:21:10:9D:4D:B1:6C:67
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCBDAFE2544811EE814C60814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.12.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:d2:66:1b:86:f2:cf:fb:fa:b7:74:bb:89:6f:cd:ee:d8:9f:
54:09:5a:2b:f9:02:5a:53:11:b1:fe:8c:3c:0d:47:e9:6f:83:
38:8b:05:d1:b1:ae:80:dd:e5:a5:85:95:07:e7:bc:fc:2d:10:
d7:2c:88:31:7f:2a:29:0c:0b:2c:81:17:4b:d7:91:6a:c8:0e:
7b:28:f6:ee:01:ce:6a:f1:9a:38:b5:13:cc:2a:03:ef:12:89:
ba:d9:a4:31:0c:2e:10:1c:12:ae:7e:91:f7:1e:4d:0c:05:cf:
5b:69:66:51:67:b7:2c:21:34:5d:22:00:83:c5:9c:9c:4c:50:
e5:11:72:d4:88:be:4f:13:50:70:17:5a:74:40:a4:8e:cb:33:
a0:b6:5a:08:00:a9:01:00:78:59:e1:39:5b:92:c4:12:df:32:
ac:a1:25:b5:2c:a0:00:86:6e:be:cd:ab:54:2f:83:4b:97:96:
c0:81:00:ab:90:09:fa:12:b5:1e:de:75:2f:1d:89:93:e9:0e:
87:78:5d:2d:28:63:74:61:75:17:af:62:b4:75:43:04:78:b9:
a5:76:cc:91:52:69:db:2c:e2:4d:b4:3e:f1:11:dd:64:e1:8a:
06:97:f4:28:01:b0:16:1b:10:3f:46:d4:8a:42:a8:d7:bd:d7:
ad:25:bc:df
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICOj8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzEwMDEwNDIzNThaFw0yNDA4MDgwNDIzNThaMBgxFjAU
BgNVBAMTDTY1MDUyZGUxLWEzNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC95Jy3rC/7itF5UsctExTnQwlCAh/lAuSPf27snly2IJ9V5SQkJuQ9MnGp
WyFAvrT6uhpJ+1dej3iq5OMEI0wUBfGzG9FTygCdVlZK6LxrIeD0HwzO0jHmIrNV
1XGLGzlnSc4XD8k5I9dVC8vfaDt/CCEx1XBDTacu683YF1cWcO7+TjeXEAaiCtuR
J7IqzDpeMnPYyJmY7Qeo13bWEYpTMXNySsIESaCO+jmLACxMhT5dlBvPpp6eFJrI
2lcvOwHW6kG1+7vF0QC+giN0kWSXdcbLac41WzTCSTq9rNdRNxVJteowSUO0y4Zh
FfbG7bvYHMnSbVVj1jvZuJyk3Ev5AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUIxO/
dUMdwrbXmb7ZTCEQnU2xbGcwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0RDQkRBRkUyNTQ0ODExRUU4MTRDNjA4MTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc9wwwDQYJKoZIhvcNAQELBQAD
ggEBAJzSZhuG8s/7+rd0u4lvze7Yn1QJWiv5AlpTEbH+jDwNR+lvgziLBdGxroDd
5aWFlQfnvPwtENcsiDF/KikMCyyBF0vXkWrIDnso9u4Bzmrxmji1E8wqA+8SibrZ
pDEMLhAcEq5+kfceTQwFz1tpZlFntywhNF0iAIPFnJxMUOURctSIvk8TUHAXWnRA
pI7LM6C2WggAqQEAeFnhOVuSxBLfMqyhJbUsoACGbr7Nq1Qvg0uXlsCBAKuQCfoS
tR7edS8diZPpDod4XS0oY3RhdRevYrR1QwR4uaV2zJFSadss4k20PvER3WThigaX
9CgBsBYbED9G1IpCqNe9160lvN8=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:18 2024 by rpki-client on console-fra.rpki-client.org