Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2E5F0E62506711EEAF585B1D4AD9E6FC.roa
File: 2E5F0E62506711EEAF585B1D4AD9E6FC.roa (raw, json)
Hash identifier: SSa1Q5q0hJZ4IL9V6rGE7AC8RR/smZfx7FQonRiYTNA=
Subject key identifier: 28:DB:B3:D5:DA:1C:F8:2F:41:C5:D4:B0:F2:0A:4A:3B:E7:57:F6:B5
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 079C
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2E5F0E62506711EEAF585B1D4AD9E6FC.roa
Signing time: Mon 11 Sep 2023 05:50:59 +0000
ROA not before: Mon 11 Sep 2023 05:50:55 +0000
ROA not after: Wed 14 Sep 2033 05:50:55 +0000
asID: 197555
IP address blocks: 192.142.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1948 (0x79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Sep 11 05:50:55 2023 GMT
Not After : Sep 14 05:50:55 2033 GMT
Subject: CN=64feaac2-8510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:17:11:de:b0:a5:b7:5d:25:f3:88:95:92:22:
ba:07:6c:12:08:4e:1f:f4:33:ef:e8:74:46:66:3e:
df:84:21:fe:d7:51:c7:c7:5f:97:bf:28:cf:f5:bf:
9b:3e:68:e8:32:74:aa:24:ce:95:6b:d9:28:ec:f5:
17:19:99:29:dd:f1:b6:1e:49:58:fa:a8:38:16:eb:
df:fe:a7:72:9e:d4:25:8e:0c:6a:b6:9b:e0:1b:68:
d4:e7:1b:e3:0e:fa:f9:c1:c0:04:18:59:47:d6:a7:
d3:5b:eb:27:1e:5a:a4:17:c5:97:ea:02:3c:f1:ea:
b1:83:14:a8:3c:a1:04:20:d7:bb:78:64:fe:1a:8c:
f5:f0:0d:a4:68:f8:2e:59:d0:33:49:7d:c7:2b:2a:
b4:65:01:5e:c6:77:1b:77:e1:61:13:09:fd:88:8c:
0a:71:9a:40:5f:2c:11:39:d3:9d:d6:75:58:c6:f6:
79:1c:6a:c4:a2:02:66:bc:dc:6f:1f:0f:94:6c:91:
62:9d:e9:1f:4b:84:12:44:de:4f:4c:4f:ba:94:3f:
47:17:cf:db:75:d2:23:5f:7d:db:55:71:5a:13:7b:
86:4c:8c:a4:94:6c:f1:a2:63:d6:a3:bc:08:b1:cc:
f2:99:b5:fd:23:f2:d1:20:3b:8a:b3:22:d3:4f:42:
a7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:DB:B3:D5:DA:1C:F8:2F:41:C5:D4:B0:F2:0A:4A:3B:E7:57:F6:B5
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2E5F0E62506711EEAF585B1D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.85.0/24
Signature Algorithm: sha256WithRSAEncryption
29:79:97:3a:05:be:82:cf:d8:94:9f:ad:a9:9e:57:9a:b3:8f:
ad:44:19:25:40:f8:93:5a:fc:73:52:97:d0:f4:98:73:bb:f3:
6d:78:a6:61:c5:8a:4d:df:ee:b9:1e:0d:2b:35:20:34:c7:65:
80:69:07:fd:b1:c4:23:d0:88:f1:5c:67:a3:d9:b4:eb:cf:a2:
54:bc:8b:fe:40:b2:56:42:34:4b:11:2a:1b:33:ea:5b:96:84:
52:c9:b4:b9:25:60:75:fa:22:c3:1e:02:9b:a5:be:08:58:a6:
67:90:1a:19:62:82:25:93:2f:17:2a:89:15:9c:39:d1:d9:11:
dd:28:d5:24:5f:3e:2a:ce:e3:3b:42:a3:f3:08:95:7d:d9:a7:
4b:bd:50:65:2d:01:e5:cb:51:c9:0c:6d:62:58:62:83:7d:d0:
e0:2d:18:28:ed:c9:d9:7a:64:4e:56:14:43:95:08:b5:ca:74:
b4:70:ef:f0:a6:c5:d5:12:06:58:5d:2a:51:3c:56:42:d7:28:
a5:a9:89:24:86:b4:6c:ff:68:2e:a8:57:55:b1:38:60:8b:61:
e2:03:56:03:03:5c:00:50:d4:75:76:80:77:ed:2b:da:4c:84:
b5:b8:23:06:8a:1a:e5:42:67:4c:ed:ef:ae:f4:ae:80:67:8d:
f9:34:b4:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org