Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/305BC3ACB9F011EEBC9DDB9A775412E6.roa
File: 305BC3ACB9F011EEBC9DDB9A775412E6.roa (raw, json)
Hash identifier: sLZQFHEB/9igEZuOEFAtKQvq/jWvIj08qOzw9CC+sDo=
Subject key identifier: 93:F2:0C:F5:F7:ED:E4:9E:AB:5F:F0:30:AD:D6:38:67:FA:37:7A:0B
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 0231
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/305BC3ACB9F011EEBC9DDB9A775412E6.roa
Signing time: Tue 23 Jan 2024 13:06:15 +0000
ROA not before: Tue 23 Jan 2024 13:06:12 +0000
ROA not after: Wed 22 Jan 2025 13:06:12 +0000
asID: 174
IP address blocks: 66.251.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 561 (0x231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Jan 23 13:06:12 2024 GMT
Not After : Jan 22 13:06:12 2025 GMT
Subject: CN=65afb9c7-6ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:73:1e:99:37:d6:ca:e2:3f:fd:45:5a:7b:be:
5a:b9:2e:2a:b0:24:ee:83:cc:c3:6c:df:60:e8:98:
c3:90:3d:a5:91:8a:d4:e1:4b:c4:68:e7:4b:b1:0e:
1c:74:bb:a6:9b:e9:3f:d8:f2:dd:0b:cc:2e:7c:99:
f0:90:04:b1:6e:02:16:47:ad:b1:95:24:a3:b4:f9:
1f:33:29:01:ce:f1:a9:c0:b3:3e:67:81:ac:31:f6:
9a:9e:62:56:74:3e:57:ce:8c:54:77:8c:ec:23:8a:
be:0e:85:cc:41:a1:5b:40:ed:9c:59:fa:c3:38:36:
94:88:c8:d0:9b:7e:84:50:a9:b4:7d:46:42:10:f0:
c1:62:67:cc:c2:39:91:6d:3a:be:5d:fe:8f:4a:e7:
79:19:e5:18:93:11:2b:4a:c2:9e:2b:9b:5d:04:7c:
d4:e2:75:25:4f:cb:e9:76:79:16:c9:1f:49:49:a8:
57:a4:51:f4:ce:c1:ac:93:a0:52:3b:ff:39:88:9d:
b4:53:b5:28:d7:7f:5c:cf:24:18:45:2f:7f:2a:29:
fd:cb:02:c9:90:b0:f8:68:d1:32:ba:36:7c:a5:cf:
7f:94:db:97:71:26:0a:b8:f6:ca:f0:a7:a1:86:d1:
49:b4:9e:ce:63:2d:a1:7f:b5:e6:32:72:be:ac:b8:
ce:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F2:0C:F5:F7:ED:E4:9E:AB:5F:F0:30:AD:D6:38:67:FA:37:7A:0B
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/305BC3ACB9F011EEBC9DDB9A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.160.0/24
Signature Algorithm: sha256WithRSAEncryption
19:28:e6:37:68:fa:1d:a1:0f:5c:97:f8:62:45:7e:2c:8a:30:
f6:5f:d9:0a:3b:d0:d4:b7:51:5f:34:e7:e4:d5:bd:02:9b:2b:
7c:d4:1e:10:e9:52:3e:ae:d8:a2:35:0b:d3:60:65:55:2f:f0:
b4:92:36:8a:e1:31:d2:1f:14:18:f7:4a:c6:9d:a6:15:9c:5f:
32:99:81:bd:c3:dc:f1:7d:54:71:d6:e0:0f:26:d0:58:93:8e:
31:73:46:33:64:08:78:0b:da:86:26:86:d0:ca:ff:e9:f3:65:
b7:da:32:03:79:2a:0e:6e:83:4c:d5:59:85:d2:6b:86:b9:0d:
54:1e:69:ae:39:b0:bc:3e:85:b9:4a:6f:d0:b2:6d:44:77:46:
93:8b:52:85:d4:b8:23:f1:af:7f:67:15:a4:a3:1d:70:13:23:
30:50:0e:d1:59:aa:c1:b9:72:e0:01:f8:94:b4:8e:6b:eb:9b:
ec:2e:b6:ee:e5:f2:80:ab:c7:b5:66:51:9b:2a:65:38:10:56:
9e:e0:b8:6c:a9:19:95:51:9c:5e:5d:a6:cf:80:e0:0b:e5:c8:
d6:6b:76:97:b5:73:94:d3:a4:f8:17:4d:a2:3f:3b:6e:4d:73:
8b:fa:92:30:27:ba:81:ce:e0:54:ac:f9:27:a3:84:bc:c7:5b:
d9:9d:e0:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:03:39 2024 by rpki-client on console-fra.rpki-client.org