Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/08F8E9A8E50F11EE9EAF6E69775412E6.roa
File: 08F8E9A8E50F11EE9EAF6E69775412E6.roa (raw, json)
Hash identifier: N7t/CzBkurufYMCOKltWklleDzFVWxUc9a/Onl+emsM=
Subject key identifier: 54:1C:45:80:8D:09:19:67:99:B8:EE:2A:72:46:EC:05:13:6B:97:B8
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0905
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/08F8E9A8E50F11EE9EAF6E69775412E6.roa
Signing time: Mon 18 Mar 2024 10:05:23 +0000
ROA not before: Mon 18 Mar 2024 10:05:20 +0000
ROA not after: Tue 14 Mar 2034 10:05:20 +0000
asID: 207429
IP address blocks: 192.142.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2309 (0x905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Mar 18 10:05:20 2024 GMT
Not After : Mar 14 10:05:20 2034 GMT
Subject: CN=65f811e3-fd8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8f:05:e5:f4:31:7f:ff:62:77:56:22:58:e8:
7e:d9:75:12:aa:5b:48:e0:2f:3c:a5:82:c5:85:44:
99:ac:b5:2f:ce:4f:d3:51:15:1b:c8:d5:91:f3:0e:
5d:78:d9:70:90:60:94:68:eb:9b:75:d1:c0:f1:2b:
e0:f7:5f:42:49:e2:4e:41:d3:48:71:08:ea:d2:32:
63:13:78:4e:2f:c6:a2:a7:d1:fa:7d:40:d4:7e:8e:
e5:4d:06:d1:e0:0c:b7:6d:a1:0a:46:b1:a3:2f:0a:
46:e0:77:f7:87:cf:c3:8f:e9:29:e1:49:b7:2d:61:
6a:8e:b1:24:9d:32:34:2b:aa:24:76:e9:56:41:58:
17:fb:61:6c:59:31:75:c9:a0:cc:5c:25:5b:ee:bd:
d9:30:52:4a:af:a0:91:72:70:ac:08:a5:58:ce:d3:
d4:7f:56:f6:95:26:3a:15:8c:f2:cc:89:a0:3d:da:
1a:f9:02:b1:a2:84:88:f1:cb:72:f5:75:21:cd:59:
ab:76:47:6a:4a:87:34:8b:95:a4:da:5e:35:92:7a:
75:75:6f:4a:0a:6c:61:7f:cc:ec:08:81:5f:bf:18:
1e:83:0f:9e:ca:f4:c3:fb:bf:ea:c1:09:b0:75:84:
cd:4e:37:f7:f9:78:f7:34:1b:bb:3c:97:60:b8:53:
b6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1C:45:80:8D:09:19:67:99:B8:EE:2A:72:46:EC:05:13:6B:97:B8
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/08F8E9A8E50F11EE9EAF6E69775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.173.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:b5:15:51:48:f8:52:16:81:f0:84:e5:c6:56:08:52:8e:eb:
1d:c6:1c:41:f3:75:b5:c5:2d:bc:ba:cf:32:86:0e:05:76:89:
e2:e3:14:4d:4d:d6:30:70:d8:90:8a:89:3c:3d:6e:7d:b6:07:
68:ab:1d:6e:e7:cc:fb:18:47:ab:d9:a9:33:53:05:a3:3d:2d:
80:86:8e:a3:4d:d5:76:b4:93:2a:8c:14:4a:eb:67:9c:b1:80:
ff:e3:3f:53:cc:b1:8b:fd:3c:a2:10:55:a5:41:48:e8:40:cb:
9c:97:36:63:6c:47:7d:43:b8:58:f8:7a:c5:1f:05:91:c5:ed:
a3:79:9f:c0:08:50:00:f1:f9:72:59:e3:1a:76:c0:d1:00:f7:
43:3c:f7:e7:37:a3:de:91:91:b1:1e:21:e6:d4:09:a5:78:b3:
a9:b0:de:46:f7:1a:71:34:f2:3b:68:dc:dc:70:4c:ac:81:ab:
4d:33:18:b9:a0:1f:68:22:57:51:36:b5:dd:d3:02:58:25:23:
4a:22:68:06:f3:fd:ee:e6:89:90:c1:af:c4:75:b3:e2:ed:2c:
b0:6e:db:5c:b7:c0:25:84:8e:31:8b:e5:6a:65:9e:49:8d:a9:
84:4e:64:39:5c:8c:7f:70:c6:4c:00:08:f9:ee:8e:98:7d:2d:
3d:20:e7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:52:46 2024 by rpki-client on console-ams.rpki-client.org