Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/49108DB6EDF211EEBF8CDA73775412E6.roa
File: 49108DB6EDF211EEBF8CDA73775412E6.roa (raw, json)
Hash identifier: TWpDKckNz8imh9b91PgJ0kLJOJhsld7mGCYs7DqEzcA=
Subject key identifier: 69:DF:DD:5F:8E:91:88:77:C5:3F:3F:D4:E4:93:94:2A:D6:B7:29:51
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 091E
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/49108DB6EDF211EEBF8CDA73775412E6.roa
Signing time: Fri 29 Mar 2024 17:32:16 +0000
ROA not before: Fri 29 Mar 2024 17:32:11 +0000
ROA not after: Wed 15 Mar 2034 17:32:11 +0000
asID: 199760
IP address blocks: 192.142.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2334 (0x91e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Mar 29 17:32:11 2024 GMT
Not After : Mar 15 17:32:11 2034 GMT
Subject: CN=6606fb20-3115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cc:73:22:3f:5e:ad:9e:41:7a:b8:df:9a:2a:
58:e8:2c:8f:64:5a:70:4c:eb:09:e7:cc:ab:ce:28:
b9:b1:d0:5e:36:dd:7c:fe:6e:92:c6:37:58:10:a1:
19:72:5b:63:5f:33:e3:9b:bd:a7:64:f3:4e:9e:9a:
ce:1e:95:76:94:b9:6e:0b:68:95:48:4f:b6:e4:b9:
f4:6b:38:f5:db:e4:9a:1d:9f:18:c9:ae:2c:f0:e5:
32:1b:ea:a5:b4:88:44:bc:36:1a:94:35:2c:7f:dc:
d7:c7:7a:d8:d6:5a:c3:ba:92:d9:2a:39:ce:17:97:
90:ed:ba:16:4a:a3:50:99:f5:93:76:b2:5d:11:90:
93:20:24:9d:48:05:f1:a7:a8:e8:6f:ee:47:62:bc:
b8:73:76:25:f0:91:52:f1:07:a5:3a:83:65:ee:68:
a4:25:aa:1f:00:ed:4f:fb:76:e8:09:ee:a2:79:1a:
18:1e:0e:e8:eb:e6:c2:e3:27:2a:7b:0a:30:05:00:
9c:fa:01:37:96:20:38:48:31:6a:86:0e:63:4c:9b:
e6:c7:35:c0:00:cc:f8:2f:be:0b:52:59:eb:27:e4:
d1:29:65:48:0e:03:4e:de:8e:47:25:9c:53:56:99:
f0:28:c3:32:c4:06:a8:2b:32:10:bf:e3:f9:96:87:
57:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:DF:DD:5F:8E:91:88:77:C5:3F:3F:D4:E4:93:94:2A:D6:B7:29:51
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/49108DB6EDF211EEBF8CDA73775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.106.0/24
Signature Algorithm: sha256WithRSAEncryption
01:63:ee:92:bc:db:3d:a4:40:dc:a2:b2:9a:87:37:9a:4c:26:
92:10:7e:4b:00:cb:2c:c7:c6:be:54:e2:ff:e2:b8:b1:e2:3e:
08:e5:0b:73:63:c9:cc:15:49:9e:ef:54:0d:20:12:33:27:8d:
ed:43:4a:c8:22:9b:21:2a:02:b6:84:32:f7:26:a0:44:24:e1:
02:4b:63:f7:bc:06:34:42:71:3a:93:5f:e2:94:7d:0b:51:db:
ff:9a:89:bb:bd:20:6b:c7:cc:61:fc:b3:d4:c1:a0:31:11:7c:
e9:a7:f0:fd:0e:fc:a8:c3:73:2c:32:f0:b3:39:5e:45:36:0f:
ad:85:28:a5:51:57:76:0f:54:3d:c4:62:9b:a4:d3:ce:1e:b4:
f7:08:2e:e9:cf:38:d4:90:b0:68:46:6c:5e:3d:0b:7c:23:99:
24:ee:46:f6:a6:36:b9:83:86:35:84:43:7d:2b:d4:4b:a9:4e:
d8:11:f0:45:d4:7c:ed:15:70:b0:8d:da:ae:17:47:0c:fc:d7:
f4:37:fc:dc:9b:cf:e8:4d:73:ae:7a:0f:bb:d8:a9:9c:f8:97:
62:5e:bb:7f:2b:9e:89:5f:57:5e:25:18:eb:35:3c:91:5a:f6:
ba:fd:ec:03:78:46:b5:23:49:fd:93:19:ca:5d:a9:91:96:51:
51:1f:a6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:16 2024 by rpki-client on console-fra.rpki-client.org