Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5D2C4B56F88C11EEB67A8229017001B1.roa
File: 5D2C4B56F88C11EEB67A8229017001B1.roa (raw, json)
Hash identifier: CdKZdVRvqucFRDkbLi2QmOFofKDFSA775COe8TEEd6s=
Subject key identifier: F3:32:A2:0E:31:87:EA:3F:D0:E3:3C:47:BC:67:59:8B:69:1B:AA:D1
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0930
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5D2C4B56F88C11EEB67A8229017001B1.roa
Signing time: Fri 12 Apr 2024 05:20:24 +0000
ROA not before: Fri 12 Apr 2024 05:20:20 +0000
ROA not after: Wed 12 Apr 2034 05:20:20 +0000
asID: 64286
IP address blocks: 192.142.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2352 (0x930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Apr 12 05:20:20 2024 GMT
Not After : Apr 12 05:20:20 2034 GMT
Subject: CN=6618c498-8b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bb:fb:2f:39:e0:d5:68:96:b6:19:6e:b2:f5:
37:55:f1:b3:28:14:48:2f:09:bb:f9:42:36:bf:d0:
91:57:af:d6:49:06:5b:04:19:17:ba:d5:9c:aa:fc:
f3:b6:48:64:06:43:3a:bf:22:87:9e:ff:31:c8:fa:
80:92:c3:28:dd:97:10:f9:1d:b8:f3:c6:21:b5:c2:
77:8f:49:ce:c1:0b:f5:18:93:89:13:09:e2:28:c6:
66:07:ee:0d:76:8f:52:f5:9b:5e:d7:ff:08:48:5e:
66:4c:92:31:fd:ab:01:32:60:d1:17:6f:4f:7f:1c:
eb:1f:5e:fd:7f:09:0f:a9:71:c1:37:f6:c5:76:24:
3b:67:0f:3c:0c:a5:f6:db:73:3a:b6:f8:f8:33:ca:
b4:2f:0e:44:c3:1e:b3:4b:e1:f2:1c:f1:9f:72:64:
3e:d2:58:46:a6:15:c9:b6:4a:a0:51:f0:92:a7:9f:
4c:62:f6:35:fe:f2:4b:7c:61:5e:00:55:32:56:9f:
af:f2:68:84:ab:55:55:95:97:4c:31:3e:06:5b:ec:
01:ea:f5:d8:47:77:f0:47:a5:d6:1d:18:bd:3c:6f:
d1:9c:12:76:f8:b1:07:c8:b0:2e:36:7e:67:07:3f:
6a:7a:b4:51:cc:12:a3:69:ee:b9:b7:a1:1a:85:44:
2a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:32:A2:0E:31:87:EA:3F:D0:E3:3C:47:BC:67:59:8B:69:1B:AA:D1
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5D2C4B56F88C11EEB67A8229017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.140.0/22
Signature Algorithm: sha256WithRSAEncryption
61:92:1b:a3:d0:06:9d:ff:4a:d3:6d:c1:26:a9:b6:82:cf:c0:
6b:d3:c3:b8:56:84:17:e6:a3:71:76:1c:cc:b2:f9:ca:73:64:
d6:bc:f8:03:16:ed:93:d6:cb:30:d0:46:c1:2a:ac:78:e1:2c:
cd:9e:8b:6c:f9:4f:d2:2a:68:ec:8a:56:4c:cc:a6:63:f7:91:
36:0a:6f:3a:3e:46:ca:85:61:38:ef:b9:8f:eb:ac:b8:e5:de:
cb:cf:ca:c7:0d:35:51:8a:09:0a:85:ff:1f:3e:58:ac:9c:d1:
1d:10:2d:27:5b:d4:ed:75:4d:f7:7f:87:53:b7:36:0a:c0:cb:
7b:bf:5a:90:4a:67:9b:09:40:4c:d2:c5:46:e9:9c:17:a5:7d:
d7:28:8a:d0:37:2f:01:6e:f6:07:b8:db:f6:98:d5:d7:4b:5e:
9d:7f:b9:11:3a:4e:80:e7:8f:aa:2b:74:ef:46:49:de:66:65:
8f:71:f9:c9:7e:6f:c2:16:a3:1d:1f:fe:f1:01:cc:26:41:2a:
02:f6:94:95:a0:a6:b0:04:d4:29:5a:c6:26:b3:a1:a1:af:c1:
f8:66:be:1e:3c:c6:2c:0c:77:64:61:46:bc:cd:aa:f9:f3:54:
93:80:b2:01:73:9b:01:8d:2d:d2:dd:a4:5c:56:74:f2:fa:be:
65:de:c8:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:16 2024 by rpki-client on console-fra.rpki-client.org