Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/24819A6CE50F11EE8AB99469775412E6.roa
File: 24819A6CE50F11EE8AB99469775412E6.roa (raw, json)
Hash identifier: 9Lr74oRHh22zJfFq7bH0UDv5XecA2PIW2U19n7N6/88=
Subject key identifier: E1:EB:23:5D:6F:29:DB:A6:4D:E5:1F:80:B3:94:F5:2D:1C:AA:4F:04
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0907
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/24819A6CE50F11EE8AB99469775412E6.roa
Signing time: Mon 18 Mar 2024 10:06:09 +0000
ROA not before: Mon 18 Mar 2024 10:06:06 +0000
ROA not after: Tue 14 Mar 2034 10:06:06 +0000
asID: 207429
IP address blocks: 192.142.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2311 (0x907)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Mar 18 10:06:06 2024 GMT
Not After : Mar 14 10:06:06 2034 GMT
Subject: CN=65f81211-300c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:73:9c:97:cf:60:e4:7c:0a:a1:ae:68:35:74:
ac:67:74:f6:7f:66:69:ba:3e:93:9d:a6:32:5c:52:
41:26:ed:28:8d:70:a0:82:5d:a8:c6:77:a2:dd:36:
af:20:48:5c:85:24:11:d3:64:4e:5c:43:a4:b5:70:
40:8d:ff:c2:9f:22:c8:cf:1a:28:c1:27:81:03:66:
ba:95:99:5e:b1:6f:8c:51:41:f6:39:0a:e4:eb:c7:
b2:51:c5:bc:fe:4e:f5:cf:ef:f9:f2:19:8d:26:52:
f5:7c:a1:23:e7:5e:3e:bd:7d:b7:f7:a4:e0:0c:a8:
d2:e9:7f:68:cb:14:74:63:fb:da:59:9d:2a:94:c8:
c6:0a:f9:c5:9a:67:d5:a3:37:53:4f:7f:ff:e5:86:
ab:58:69:c0:9f:a2:c1:d5:a7:b7:dd:39:6d:48:74:
c1:8c:3b:1a:d4:da:a7:30:29:99:31:8d:d9:ff:97:
c2:c0:73:4a:cd:7c:13:55:c1:ad:56:3f:14:69:8c:
56:3b:2b:c5:b3:ac:b9:02:d0:4b:3c:7e:a0:2b:e7:
e5:eb:4b:26:94:75:78:37:12:6e:78:75:43:1c:9c:
c5:f5:87:4e:d7:e3:8f:07:ea:0c:ee:38:cd:a5:00:
55:db:fb:f2:1f:26:aa:f7:d9:d6:66:78:78:44:30:
84:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EB:23:5D:6F:29:DB:A6:4D:E5:1F:80:B3:94:F5:2D:1C:AA:4F:04
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/24819A6CE50F11EE8AB99469775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.5.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:20:a4:01:6c:be:90:c1:45:34:b9:50:93:d2:77:a5:f8:8c:
c4:e7:1d:91:ed:0b:23:a0:08:ac:9a:d1:1d:a6:8e:30:ee:98:
9c:95:90:e6:3b:f4:c0:c7:f3:d6:b3:52:73:e6:41:dd:c8:b1:
37:c4:e4:55:83:5d:47:c3:ac:97:91:d4:17:86:57:2b:b4:4e:
1d:f3:89:e6:88:2c:e4:18:09:b2:72:a8:f7:b1:14:ef:85:e2:
ef:20:86:f2:21:34:37:ac:c3:60:5b:95:d7:c5:c2:1a:65:41:
7b:95:5a:89:ad:41:9f:33:eb:93:e2:e9:f9:ef:96:32:19:a8:
99:d9:fd:a4:4e:55:e8:cf:81:45:db:24:b8:51:8c:7b:56:f6:
27:1a:1e:c7:4f:a1:17:92:ab:77:9a:80:20:51:ed:ea:ed:df:
67:b0:15:08:2e:9b:71:32:65:03:d7:a9:d7:8d:6e:23:5b:93:
bd:05:97:34:d6:31:2d:5f:e4:e7:44:48:7b:c1:4e:38:4f:52:
24:d5:f7:3b:7c:90:6a:d7:0a:ef:21:b8:63:1c:cd:cb:b9:37:
5d:3c:de:1f:fa:a5:5f:73:17:e1:67:57:3f:3f:cc:e2:7b:44:
01:e8:3d:fa:64:58:84:a3:0e:3b:be:f7:0e:4e:ed:c1:68:a5:
c0:05:3e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:52:46 2024 by rpki-client on console-ams.rpki-client.org