Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDA2DD9EFEA011ED882F9C684AD9E6FC.roa
File: EDA2DD9EFEA011ED882F9C684AD9E6FC.roa (raw, json)
Hash identifier: kV9/dr1WVsdHPdtFgiczonWd8kbA62z5DhT8pcPSoEY=
Subject key identifier: 90:29:52:58:4F:03:BE:03:AE:8D:FC:10:BB:07:A3:02:34:21:32:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2833
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDA2DD9EFEA011ED882F9C684AD9E6FC.roa
Signing time: Tue 30 May 2023 04:17:45 +0000
ROA not before: Tue 30 May 2023 04:17:41 +0000
ROA not after: Wed 15 May 2024 04:17:41 +0000
asID: 63888
IP address blocks: 156.255.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10291 (0x2833)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 04:17:41 2023 GMT
Not After : May 15 04:17:41 2024 GMT
Subject: CN=647578e9-b165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:33:bb:46:02:df:80:2c:d2:de:8b:2e:69:91:
84:5e:8c:29:a6:fb:1b:26:4c:d9:0c:da:69:57:bc:
9f:86:af:f5:8e:2a:cb:67:75:56:ff:99:13:12:25:
12:02:84:5f:5d:6b:df:e1:87:aa:4e:2f:ad:c9:b9:
6e:7f:a8:c1:58:6d:50:56:ef:36:59:2a:0c:2a:e4:
58:a5:97:3d:b2:bb:5c:92:7a:5e:f5:ab:d3:ac:53:
64:62:a0:29:cc:51:87:af:bf:c6:7f:77:eb:fb:96:
07:8f:63:a7:9e:a4:9c:f7:f7:19:ce:d6:27:65:ed:
da:ce:88:fe:2d:8e:a9:fa:c0:53:b4:10:8f:17:9c:
5b:e7:43:f5:46:dc:2b:bc:b3:10:a9:54:b4:3d:95:
fb:c9:2a:69:45:8c:f8:f6:b9:bb:0b:37:ad:e3:d0:
65:c6:3d:c9:23:b3:88:78:12:af:32:c2:20:48:39:
b9:e5:c9:4b:14:e6:8e:4b:80:16:61:cc:30:25:af:
84:7e:47:e4:2b:06:d1:26:6b:2a:b6:83:45:3d:65:
0e:50:d0:9b:e1:3e:a5:7f:9d:af:25:16:51:6a:8c:
0f:10:0f:f0:c6:a5:f9:00:00:26:9b:83:7d:11:82:
4b:21:fd:06:2e:f1:c6:a7:38:14:7c:e2:5a:c3:41:
3e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:29:52:58:4F:03:BE:03:AE:8D:FC:10:BB:07:A3:02:34:21:32:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDA2DD9EFEA011ED882F9C684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.89.0/24
Signature Algorithm: sha256WithRSAEncryption
57:fc:28:d4:2f:a4:8e:10:7d:65:8e:17:40:98:f3:ec:b8:89:
5f:3c:42:eb:ca:93:dd:1a:0c:df:81:0a:04:32:b0:65:5f:bd:
93:1d:79:f1:ab:94:9d:20:e0:ca:a8:2b:1d:4e:d4:6f:62:d0:
88:f5:17:61:1d:8a:03:9a:43:f8:98:e0:ac:ac:3e:6e:27:52:
fd:5d:9d:ac:2d:e1:35:9c:c4:20:e3:35:44:94:c6:72:d9:20:
76:80:1d:46:c4:2c:0f:31:77:39:9f:bb:8f:b4:0c:eb:f6:dd:
eb:be:90:eb:e8:32:ba:66:2d:14:31:ff:65:72:cd:aa:7b:14:
40:2f:d7:81:c8:84:37:90:fb:c3:b7:e5:01:3f:05:fd:f0:40:
38:23:30:b4:79:17:a5:e8:bb:4d:c1:64:dd:55:37:a6:78:65:
e4:b8:88:2a:7b:f3:7e:e9:e6:94:03:f6:b4:70:99:18:c5:5f:
70:6a:76:ff:5b:9c:59:47:21:b1:0d:f4:9e:b0:a8:ff:1e:ad:
98:94:04:f9:0b:36:fc:cc:cf:cc:57:d5:43:99:35:6f:d8:90:
e8:35:4a:e6:1e:95:58:f2:5b:ec:63:db:75:f3:7c:74:0b:be:
50:a9:1a:d0:34:1e:70:7d:61:68:84:c0:88:ab:e2:b5:df:0a:
d6:e0:ea:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:10:14 2024 by rpki-client on console-ams.rpki-client.org