Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5BC9A8BA52FD11EEBE624B554AD9E6FC.roa
File: 5BC9A8BA52FD11EEBE624B554AD9E6FC.roa (raw, json)
Hash identifier: 4NyBa+E1KqWFdf3ZCi08RWAI7Mdvx/yEQAEeN1+OHxA=
Subject key identifier: 68:99:3E:3A:B9:43:E6:48:55:C1:CD:4B:43:27:66:4D:E1:60:C9:EF
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 07B7
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5BC9A8BA52FD11EEBE624B554AD9E6FC.roa
Signing time: Thu 14 Sep 2023 12:51:01 +0000
ROA not before: Thu 14 Sep 2023 12:50:58 +0000
ROA not after: Wed 14 Sep 2033 12:50:58 +0000
asID: 212219
IP address blocks: 192.142.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1975 (0x7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Sep 14 12:50:58 2023 GMT
Not After : Sep 14 12:50:58 2033 GMT
Subject: CN=650301b5-168c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e9:bb:90:0b:49:37:bc:10:72:a1:b7:e6:04:
e1:5e:ff:2b:52:5a:ee:99:75:26:dd:49:b8:aa:dc:
08:af:0b:a7:5d:27:07:3f:b0:19:16:24:68:ee:d6:
6d:f8:1d:c3:fc:0c:7a:d3:7c:86:c4:8d:c4:ef:18:
92:eb:7c:b7:39:29:71:4d:c0:cc:45:45:14:0f:34:
d0:c7:5c:46:7d:f6:9a:bb:95:81:20:9d:03:26:51:
df:f7:ea:2d:4b:48:fa:6d:ef:13:b7:5b:08:c0:b5:
d0:4c:35:f0:56:4b:0c:97:8e:98:e6:e9:52:98:96:
da:68:be:8e:23:37:03:8e:82:29:92:c6:99:23:20:
88:35:e7:7d:95:e3:fc:69:d8:4f:ae:71:d8:86:1a:
72:56:1d:63:73:fa:1e:2b:8c:19:4d:14:f8:bd:27:
e2:5b:a2:e1:68:50:d6:46:d1:96:5d:81:cb:66:c8:
ce:24:91:b6:84:92:af:eb:92:65:20:6e:c2:2f:c0:
49:da:a1:b5:53:cd:94:d6:d7:7c:d8:8c:d9:1d:90:
b9:b4:e4:12:45:02:d2:b6:71:19:82:8e:d9:1b:4f:
33:cc:53:55:f9:79:5b:55:6e:61:13:fe:ec:4d:a5:
43:3a:8b:bc:09:53:b7:b2:9d:6d:73:ca:f7:9f:7a:
3a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:99:3E:3A:B9:43:E6:48:55:C1:CD:4B:43:27:66:4D:E1:60:C9:EF
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5BC9A8BA52FD11EEBE624B554AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.141.0/24
Signature Algorithm: sha256WithRSAEncryption
85:65:43:86:67:bc:c3:0e:38:bd:1e:6c:4f:48:80:78:89:a5:
3f:86:22:83:8a:45:5d:b0:dc:fd:e4:7d:f2:0b:4e:dc:d6:46:
c5:45:f1:d4:5a:ca:24:89:99:19:be:dd:a1:48:8a:39:0e:2c:
ce:fe:5f:89:b1:48:ff:e5:24:39:5f:ea:88:9b:c7:db:90:eb:
91:b4:90:7a:bf:84:72:5d:78:3a:88:e1:36:81:c8:d8:e6:c5:
9a:99:fd:44:4a:0a:2f:ba:37:05:81:ac:91:d8:c5:8d:60:0b:
6d:66:d2:7f:b7:9e:d1:60:a1:38:88:be:ca:08:48:9c:8c:99:
81:eb:9d:1a:14:69:8c:6b:34:96:44:e3:ef:d1:c9:d6:22:b7:
7d:8a:80:89:d9:be:f6:d3:f2:d7:c0:66:a8:96:d0:19:3a:0c:
1f:d7:07:4f:d4:67:ec:87:96:0d:7e:38:8d:84:49:52:29:28:
7d:86:31:fe:44:ea:a0:75:2c:39:1b:ef:1b:0e:dd:26:3b:14:
56:ad:94:4d:42:a5:25:47:df:d7:c4:b7:a8:27:dc:ad:4b:b6:
ea:88:d8:99:20:66:e1:ee:6c:6f:5a:c1:81:48:e8:5c:b2:55:
89:21:61:99:21:ab:e4:42:67:80:53:6e:1a:85:ec:c2:7f:8e:
c5:15:f3:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:16 2024 by rpki-client on console-fra.rpki-client.org