Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/D8A1110C677511EEA95AE00F4AD9E6FC.roa
File: D8A1110C677511EEA95AE00F4AD9E6FC.roa (raw, json)
Hash identifier: lQ3w+g+egeVaiRf8i20abMGAcxtWSl4QyO728iot9bs=
Subject key identifier: 95:38:C0:06:00:5D:FB:FA:49:79:2D:66:4F:F4:73:20:E1:97:67:B1
Certificate issuer: /CN=F369591CAR/serialNumber=0728C9B8455C65977FA30987DE4941DF018C651C
Certificate serial: E0
Authority key identifier: 07:28:C9:B8:45:5C:65:97:7F:A3:09:87:DE:49:41:DF:01:8C:65:1C
Authority info access: rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/D8A1110C677511EEA95AE00F4AD9E6FC.roa
Signing time: Tue 10 Oct 2023 14:03:54 +0000
ROA not before: Tue 10 Oct 2023 14:03:50 +0000
ROA not after: Fri 10 Oct 2025 14:03:50 +0000
asID: 15964
IP address blocks: 165.210.0.0/15 maxlen: 15
165.210.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.mft
rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224 (0xe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAR/serialNumber=0728C9B8455C65977FA30987DE4941DF018C651C
Validity
Not Before: Oct 10 14:03:50 2023 GMT
Not After : Oct 10 14:03:50 2025 GMT
Subject: CN=652559ca-3fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:96:c7:7a:6f:85:56:d9:80:f7:3e:f3:30:
2c:d6:5f:08:14:15:77:07:9f:87:e4:37:57:0a:af:
ff:fb:67:d7:e9:97:97:68:dc:17:b1:b5:68:b4:f8:
ba:f9:36:cb:b5:8f:4d:51:ab:bd:b9:ff:73:43:85:
14:4e:5a:75:fe:d0:b1:2f:d4:39:52:41:d0:c6:d9:
be:44:55:a5:13:c3:6f:ff:15:22:db:d9:4f:fb:49:
36:7c:35:9f:c4:18:7f:07:7c:94:1b:0b:01:c8:a4:
5e:1c:6e:73:26:7a:cb:b2:c8:5b:5a:e8:b4:04:3a:
9f:c2:98:ed:d1:fc:34:ce:1b:5d:ab:cd:b1:a1:59:
26:3d:c2:82:7f:aa:8b:61:f5:25:cd:b2:8f:db:fc:
0c:f9:ac:61:6a:86:67:8b:7d:83:96:ab:aa:8c:3a:
83:83:98:16:98:c3:e0:7d:9b:c7:8e:f9:b1:3f:28:
8e:c3:ed:51:0d:62:4b:eb:8b:fe:05:be:8c:12:be:
a2:ee:ff:6b:c1:78:ec:91:d4:e0:eb:a4:fb:89:bc:
aa:2a:f3:c6:f4:5e:41:ab:f9:58:e5:ec:53:82:db:
72:3a:c1:68:74:59:c5:de:a1:62:ac:ee:eb:78:e8:
b5:00:99:e7:fc:50:d7:c9:05:ea:2f:d6:a2:f2:7c:
c5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:38:C0:06:00:5D:FB:FA:49:79:2D:66:4F:F4:73:20:E1:97:67:B1
X509v3 Authority Key Identifier:
keyid:07:28:C9:B8:45:5C:65:97:7F:A3:09:87:DE:49:41:DF:01:8C:65:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/D8A1110C677511EEA95AE00F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.210.0.0/15
Signature Algorithm: sha256WithRSAEncryption
69:c4:6d:fb:4b:8f:ef:c6:03:12:bc:54:b8:49:a3:c3:b9:6e:
83:65:90:45:83:6d:f2:a9:15:2d:63:7b:8f:3d:5b:44:43:18:
6f:bb:49:a6:54:b0:61:28:35:c3:76:d5:b4:6a:1c:08:62:b3:
b4:9a:66:b6:90:46:e4:5b:b8:39:57:c0:a0:39:0a:90:3e:38:
20:5a:11:87:9b:db:ad:1e:1f:7e:c3:16:c3:9c:f2:77:63:7a:
c1:4b:57:c5:11:d5:36:03:56:5b:77:bb:2f:a7:1f:f7:ff:62:
ad:84:db:e7:a6:50:b6:2d:71:9e:c5:00:6f:bc:ce:28:79:26:
35:a6:56:27:6b:8b:f3:e0:c5:fa:3f:1c:20:8b:22:81:f3:94:
45:e9:ee:f6:39:f8:8d:5d:e8:a7:89:d7:41:6c:8d:3c:dc:29:
6a:24:c0:57:47:a6:f3:95:34:d7:df:74:11:eb:34:be:14:2d:
9d:80:3b:95:4b:d3:3f:22:b6:b2:46:44:93:a9:d4:74:62:74:
e9:c5:5c:fa:8c:51:1d:ad:1e:3e:43:51:c0:ef:a6:b1:a9:1f:
6c:45:c6:62:7a:63:89:b4:5a:47:1f:83:4e:af:db:eb:75:38:
6e:24:d3:b6:fc:dd:59:6e:bd:3a:6a:e3:ba:40:37:f5:ac:75:
5c:99:9c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:14 2024 by rpki-client on console-ams.rpki-client.org