Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2A1719629C811EEB588403D4AD9E6FC.roa
File: E2A1719629C811EEB588403D4AD9E6FC.roa (raw, json)
Hash identifier: Zk+iAYKvCtMBqwx2k/jm0ruWti8dK39IPYeXCIGjvdU=
Subject key identifier: EC:B7:CF:DC:4A:0E:F0:65:E6:68:C2:2E:7D:5B:95:F8:36:B1:6B:A2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3234
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2A1719629C811EEB588403D4AD9E6FC.roa
Signing time: Mon 24 Jul 2023 02:22:07 +0000
ROA not before: Mon 24 Jul 2023 02:22:03 +0000
ROA not after: Wed 10 Jul 2024 02:22:03 +0000
asID: 150313
IP address blocks: 156.238.208.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12852 (0x3234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 02:22:03 2023 GMT
Not After : Jul 10 02:22:03 2024 GMT
Subject: CN=64bde04f-f2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:e5:cb:4a:71:bb:71:42:3e:0e:2d:e8:f7:19:
4c:e7:e1:f9:ea:33:18:cc:66:b9:12:85:fe:94:7b:
49:15:2a:79:74:a1:3c:08:bd:18:c5:71:57:07:a6:
e9:c3:5f:4d:b2:29:24:ca:6f:af:43:3b:2a:1c:68:
49:43:69:95:72:68:7c:60:6f:89:06:20:3c:da:8e:
a2:5e:29:e8:9f:11:ff:ce:5d:b8:9d:f9:c1:0d:11:
3e:b6:a1:11:25:f3:d6:c6:da:f3:a8:52:21:02:24:
4c:69:8b:4c:f3:de:73:40:47:7d:f4:93:7f:d9:b9:
b0:4a:ad:ad:b2:28:ee:32:cc:73:81:07:54:1e:b2:
3e:e9:03:5a:54:7c:17:6b:5b:22:05:80:24:74:90:
b5:79:49:8c:6a:ff:66:a2:a9:e5:f2:5f:8b:b5:7b:
82:9d:a1:5f:35:9f:6c:e2:75:47:d0:57:51:5f:47:
01:8d:b3:27:bb:d5:cb:f7:2f:b9:5f:58:40:3b:8b:
1a:43:b0:5c:02:63:a6:19:f1:97:a2:fa:ee:02:b3:
74:0c:cb:91:61:de:41:fa:c5:f0:fb:37:c7:4a:86:
4e:85:66:ae:50:dd:bf:87:17:e8:bf:5c:cb:45:13:
a1:8b:9e:5d:a6:ba:54:f9:78:6e:09:50:34:04:c3:
4d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B7:CF:DC:4A:0E:F0:65:E6:68:C2:2E:7D:5B:95:F8:36:B1:6B:A2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2A1719629C811EEB588403D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.208.0/21
Signature Algorithm: sha256WithRSAEncryption
03:de:15:3c:09:db:fd:4c:09:96:40:4f:eb:89:50:82:0e:d7:
5e:a7:d3:fa:21:1b:7f:d3:10:b7:4c:c4:ab:9f:7e:00:fb:f6:
cc:d2:40:bc:9d:ce:9f:70:46:c3:5d:5b:3d:98:9a:07:66:af:
fd:fb:99:69:9b:bd:b9:d1:1d:36:b7:8e:06:f0:ea:5b:77:38:
17:fe:98:dd:48:09:05:c9:76:e0:66:f4:44:0e:71:ca:a8:63:
e1:70:a8:b9:c8:7e:3f:8a:6f:98:b2:5e:6f:37:a9:84:c9:a6:
df:66:8d:e2:0d:18:38:fe:b1:9d:4c:52:47:fc:9b:79:ed:43:
fa:2f:c1:79:6c:69:f8:07:5f:8a:1e:b5:8e:64:64:ef:96:73:
11:00:40:d2:69:b8:c6:18:d5:f6:a9:de:19:0a:c2:65:05:d4:
79:5b:f7:6d:e9:b9:57:5a:c3:12:19:9d:47:b8:1d:7f:fa:58:
4d:28:5d:26:2d:c5:18:df:65:9e:e9:96:29:53:2e:ec:6f:a5:
50:e9:3f:37:89:70:1d:15:76:67:fc:23:54:4b:2a:07:3a:7e:
59:14:e4:7c:35:50:6d:9b:97:93:9f:89:1f:3d:17:75:0c:3a:
2f:3f:5d:7a:58:fd:f9:c5:63:ad:c5:f3:9f:03:43:81:d0:1f:
6a:4c:57:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org