Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/68587F42D46D11EE94D58DA4775412E6.roa
File: 68587F42D46D11EE94D58DA4775412E6.roa (raw, json)
Hash identifier: kiFz+BtjIAmKsAGKfGpYmYsh1YCXQva8k4fX8f1eMQs=
Subject key identifier: 53:FE:52:F8:31:E8:40:BB:37:F4:C4:FA:02:89:12:0E:78:AD:52:10
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 08E9
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/68587F42D46D11EE94D58DA4775412E6.roa
Signing time: Mon 26 Feb 2024 06:08:06 +0000
ROA not before: Mon 26 Feb 2024 06:08:03 +0000
ROA not after: Wed 15 Feb 2034 06:08:03 +0000
asID: 60707
IP address blocks: 192.142.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2281 (0x8e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Feb 26 06:08:03 2024 GMT
Not After : Feb 15 06:08:03 2034 GMT
Subject: CN=65dc2ac6-0380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:70:75:4f:75:82:9f:49:6a:39:1e:c0:91:90:
d0:7b:10:71:b3:9f:f3:c8:70:bc:4c:92:e0:37:4d:
c7:3e:dd:ef:28:3a:91:47:f3:29:0c:a3:80:8d:f0:
2c:a0:e5:9a:93:aa:5a:4f:1d:cd:c9:06:e9:40:af:
66:c5:d4:9c:72:db:96:e3:0b:7a:b4:c9:cc:60:a8:
db:d6:82:9b:16:56:43:2b:e4:38:ca:8f:8c:9b:4f:
72:65:c2:59:47:f6:2a:69:5a:d5:6a:31:fa:d4:95:
a8:e3:c1:9a:ce:cc:fd:43:0a:c4:e7:f4:f9:e4:06:
ea:2a:27:d4:4f:f8:e1:3c:ed:da:c9:4f:6a:d2:3b:
d9:5d:24:42:25:57:1e:8e:58:bc:93:88:c6:17:96:
99:72:10:4d:7b:2a:80:d4:d2:2f:ae:85:23:83:cd:
bd:c4:ff:84:86:12:8b:62:51:fd:5d:0b:ef:03:c0:
c8:e4:e6:d6:82:04:0a:47:bb:b7:3d:e3:39:99:30:
c2:34:72:48:90:e0:00:4d:df:fe:9d:8e:59:6c:6e:
48:ca:e6:2d:06:a3:3c:5f:99:f0:22:8a:f2:26:a4:
a2:c3:d2:0c:c0:21:59:91:b3:a8:72:27:5e:22:82:
8d:28:8b:37:9d:19:5a:2d:fc:2d:aa:fa:2f:3a:56:
d0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FE:52:F8:31:E8:40:BB:37:F4:C4:FA:02:89:12:0E:78:AD:52:10
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/68587F42D46D11EE94D58DA4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.130.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:25:99:d8:86:7d:e2:3c:3f:cb:58:9f:0a:c6:3b:20:ef:7e:
a8:bc:fc:63:c7:88:3a:d0:26:b7:1d:d8:87:23:7c:84:97:c5:
83:12:d5:ec:db:33:66:b1:9e:7a:9e:c6:fa:e8:d7:db:d5:8f:
3f:c7:93:00:37:88:61:31:1a:98:06:42:ca:8a:02:6a:71:67:
ee:49:45:20:1e:ea:aa:91:47:7a:bc:69:f5:29:4c:10:33:f3:
59:69:56:9f:e8:d9:74:b0:84:26:80:87:f2:1c:cc:e6:28:bc:
17:66:2c:df:af:6f:21:c2:c0:a8:22:24:a4:21:a2:62:09:ca:
a5:8c:b6:ff:7d:f5:c8:0a:3b:2c:76:81:82:e7:fb:c9:97:96:
d0:6d:9b:a4:2d:56:c8:d2:8a:49:35:bb:84:f2:8a:c0:98:e5:
04:cb:ef:7a:e6:73:15:15:49:37:a7:05:9d:d1:8f:5c:23:f4:
f9:d5:a5:b5:42:88:fa:a3:95:81:2b:01:bc:17:98:70:fc:68:
b2:13:69:91:28:9b:af:bb:54:ae:b5:0a:ab:b0:9f:5c:3c:80:
f3:45:db:5c:aa:4a:64:78:7a:c0:f0:1b:30:c6:4f:f0:75:93:
be:0a:13:4a:b3:ae:1e:f0:2c:45:ec:1a:04:af:72:f9:eb:e7:
76:de:e1:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org