Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0933C896022611EFA5DBF968017001B1.roa
File: 0933C896022611EFA5DBF968017001B1.roa (raw, json)
Hash identifier: sw89e7980/n9eLUGV1VQXgiY7N9ZeRYSd96RxRif8Xo=
Subject key identifier: 52:EF:F0:CC:C5:4F:66:22:F1:E1:D7:47:0E:D8:FF:59:4E:49:9B:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 84E6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0933C896022611EFA5DBF968017001B1.roa
Signing time: Wed 24 Apr 2024 10:33:06 +0000
ROA not before: Wed 24 Apr 2024 10:33:02 +0000
ROA not after: Thu 12 Sep 2024 10:33:02 +0000
asID: 135097
IP address blocks: 156.250.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34022 (0x84e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 10:33:02 2024 GMT
Not After : Sep 12 10:33:02 2024 GMT
Subject: CN=6628dfe2-c279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cb:e7:69:99:9c:b7:d0:0d:9e:29:c9:9a:6a:
fa:58:49:e8:c5:e1:b4:90:7a:21:28:bc:82:db:a4:
af:e3:79:48:98:46:90:87:a4:96:be:ca:98:4c:6a:
fc:77:94:c6:28:6e:9b:fb:3d:ab:4c:3e:c3:b0:9d:
2b:65:fb:02:ca:03:6f:07:c5:72:7d:45:f2:20:b1:
92:22:db:68:fb:a5:37:c5:0e:ed:c7:ef:fc:6e:6c:
4f:d4:f0:e9:7b:4b:a8:fa:86:7a:e0:8a:18:a8:42:
83:45:7e:dc:08:93:bd:2b:63:ca:db:94:a8:e7:ee:
2c:6a:4a:a1:d1:d5:c8:3e:e2:a1:5f:48:76:eb:7f:
92:01:7e:dd:e4:99:80:fc:c0:37:6a:90:f2:e1:5e:
ac:9a:3f:4a:a1:56:f4:84:62:ca:36:b0:04:ce:74:
8e:ea:ca:6e:7a:ca:ae:86:b4:d5:cf:c7:3c:f3:d0:
bd:85:a1:c1:dc:9c:46:ac:15:89:a0:c1:fd:ee:6b:
7a:a3:16:be:d4:81:9d:5d:da:8f:dc:fd:13:68:65:
94:fc:3e:5e:8d:17:5a:31:2c:51:5a:e0:09:17:4f:
13:e7:de:9b:71:df:c4:e9:73:1d:45:db:d4:03:d0:
66:12:f3:fe:ff:49:ed:fb:15:8e:1e:ee:a1:27:e7:
a6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EF:F0:CC:C5:4F:66:22:F1:E1:D7:47:0E:D8:FF:59:4E:49:9B:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0933C896022611EFA5DBF968017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.8.0/21
Signature Algorithm: sha256WithRSAEncryption
84:ae:e5:84:d9:67:62:7d:23:3a:75:7d:ee:1c:c8:ae:a5:78:
a7:52:f7:13:3f:d3:bc:ac:74:8b:f5:7f:43:5c:40:16:24:15:
a2:fb:cd:99:33:ea:46:45:76:c7:71:b7:b1:bc:9b:8d:d9:d5:
07:61:72:12:45:01:10:0f:f1:32:b0:02:8d:86:0b:f3:00:76:
e4:10:9d:98:62:c5:98:2a:b0:66:d5:91:45:fa:92:5e:30:c8:
ff:4c:8f:bb:16:c1:14:2b:fb:d4:b2:c6:fe:bd:b2:a8:3f:95:
23:de:9b:b9:ed:b1:8a:db:34:d5:03:0c:1b:dc:a0:bc:06:dc:
47:71:14:17:c2:a2:19:1e:22:71:fd:01:dd:4f:ca:25:a1:61:
a5:90:bb:17:11:61:67:d1:e1:37:a2:58:1d:ba:30:cd:79:41:
d2:2b:b7:b5:c5:cb:d5:ac:6f:18:26:92:dd:06:05:a8:85:9b:
07:e7:22:95:59:e4:62:18:fa:e9:28:23:14:71:35:7e:1c:3d:
e0:59:15:59:46:a4:76:08:8e:c4:14:3c:3f:2e:9f:41:42:15:
05:4e:46:5e:b8:51:3c:b0:6a:59:f6:7d:c4:2d:8c:91:ae:9d:
2b:0f:8d:0f:a2:b7:a2:45:4d:0a:a4:9e:cd:ba:92:21:60:24:
ea:bd:78:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org