Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/6A9FB93EEDF211EE93997877775412E6.roa
File: 6A9FB93EEDF211EE93997877775412E6.roa (raw, json)
Hash identifier: XM6yy1m883fYV0LgumHvTWIofUyGBXB33jjOUd+TqUQ=
Subject key identifier: 5A:DC:5F:3C:12:F4:18:52:13:C2:B0:28:51:A5:C7:9B:C9:AC:71:29
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0920
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/6A9FB93EEDF211EE93997877775412E6.roa
Signing time: Fri 29 Mar 2024 17:33:12 +0000
ROA not before: Fri 29 Mar 2024 17:33:09 +0000
ROA not after: Wed 15 Mar 2034 17:33:09 +0000
asID: 199760
IP address blocks: 192.142.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2336 (0x920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Mar 29 17:33:09 2024 GMT
Not After : Mar 15 17:33:09 2034 GMT
Subject: CN=6606fb58-fcc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5b:09:0a:7f:6b:eb:b6:49:96:e6:ff:f7:26:
04:73:74:75:28:b9:a6:91:85:2d:72:d9:ec:20:be:
f2:73:0e:cf:a0:45:70:14:57:f6:ad:c0:8f:d1:7a:
e1:d8:df:58:cc:88:d6:32:2c:e5:33:30:1d:4e:58:
40:68:15:e4:28:f7:ce:0e:e6:80:b9:34:d1:50:6f:
97:7c:f6:96:4d:ba:7e:37:d9:bf:09:7e:19:3a:1a:
c5:76:61:22:aa:ed:fe:4a:ec:9c:c3:0d:1e:a9:8a:
1f:1a:9d:d9:d4:37:09:0c:8f:73:26:f8:cc:f4:df:
eb:b3:e8:f6:1b:83:b0:47:7d:8a:cf:75:94:df:e2:
53:8d:c9:60:e5:2c:c3:de:77:bc:10:ed:8e:63:bb:
f8:01:13:4f:55:7b:0b:64:f1:a9:bc:f1:1e:12:e4:
17:b9:e8:58:fd:48:00:e7:b2:16:31:ae:e2:f1:61:
9f:16:4b:b2:f3:23:77:b9:ad:30:ce:23:5c:74:fc:
32:3e:b4:e4:08:7d:16:9a:67:da:3d:db:49:e5:44:
34:25:db:4e:ae:25:2b:96:26:1a:da:d5:e4:c8:a6:
e8:c4:96:a5:26:fd:c9:4d:43:73:10:0c:38:4b:8d:
98:03:42:a6:7b:7c:db:90:b0:a1:ae:81:ed:fc:dc:
74:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:DC:5F:3C:12:F4:18:52:13:C2:B0:28:51:A5:C7:9B:C9:AC:71:29
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/6A9FB93EEDF211EE93997877775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.28.0/24
Signature Algorithm: sha256WithRSAEncryption
48:45:2d:b3:74:5a:12:ba:2e:2b:48:70:1c:8f:49:78:af:6f:
d4:db:7e:ab:da:02:14:47:71:a6:f4:e6:be:65:c8:93:3a:a5:
fb:18:95:a1:07:60:a6:46:29:ca:03:3b:0c:19:35:d4:e2:39:
0e:ba:35:d0:d9:56:90:b5:4a:bb:1b:da:14:41:f8:78:c0:c2:
14:74:aa:64:f7:c0:b9:91:00:4e:a5:0c:56:6a:96:92:24:2f:
d7:35:e1:58:f7:3d:30:34:dc:2b:8e:21:3b:5b:0f:a6:57:83:
2f:9b:88:68:ad:9f:cd:f6:19:a4:9b:d8:ef:60:0b:47:0a:ae:
04:1c:7b:04:16:37:82:63:af:72:79:48:31:e0:ec:52:e7:f1:
d9:56:bc:34:97:ef:31:ec:88:48:9c:07:c6:d2:b4:0c:d4:f6:
f0:9e:2c:f5:c7:ac:86:45:72:68:a4:12:f3:3b:f7:91:c0:66:
44:c9:8e:30:7d:82:4b:f6:0c:c8:e7:0d:92:6a:bc:36:df:88:
ed:01:c2:48:c7:88:33:7f:09:25:26:7b:c4:a3:64:9a:10:cc:
29:05:c4:ca:6e:2c:39:3d:aa:ac:73:a9:91:c2:c9:17:04:16:
af:a6:fc:e3:fd:8e:ef:15:55:6c:9c:f1:4f:2b:a6:e7:4c:de:
64:c1:f1:ab
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICCSAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yNDAzMjkxNzMzMDlaFw0zNDAzMTUxNzMzMDlaMBgxFjAU
BgNVBAMTDTY2MDZmYjU4LWZjYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDEWwkKf2vrtkmW5v/3JgRzdHUouaaRhS1y2ewgvvJzDs+gRXAUV/atwI/R
euHY31jMiNYyLOUzMB1OWEBoFeQo984O5oC5NNFQb5d89pZNun432b8Jfhk6GsV2
YSKq7f5K7JzDDR6pih8andnUNwkMj3Mm+Mz03+uz6PYbg7BHfYrPdZTf4lONyWDl
LMPed7wQ7Y5ju/gBE09Vewtk8am88R4S5Be56Fj9SADnshYxruLxYZ8WS7LzI3e5
rTDOI1x0/DI+tOQIfRaaZ9o920nlRDQl206uJSuWJhra1eTIpujElqUm/clNQ3MQ
DDhLjZgDQqZ7fNuQsKGuge383HRLAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUWtxf
PBL0GFITwrAoUaXHm8mscSkwHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4LzZBOUZCOTNFRURGMjExRUU5Mzk5Nzg3Nzc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADAjhwwDQYJKoZIhvcNAQELBQAD
ggEBAEhFLbN0WhK6LitIcByPSXivb9TbfqvaAhRHcab05r5lyJM6pfsYlaEHYKZG
KcoDOwwZNdTiOQ66NdDZVpC1Srsb2hRB+HjAwhR0qmT3wLmRAE6lDFZqlpIkL9c1
4Vj3PTA03CuOITtbD6ZXgy+biGitn832GaSb2O9gC0cKrgQcewQWN4Jjr3J5SDHg
7FLn8dlWvDSX7zHsiEicB8bStAzU9vCeLPXHrIZFcmikEvM795HAZkTJjjB9gkv2
DMjnDZJqvDbfiO0BwkjHiDN/CSUme8SjZJoQzCkFxMpuLDk9qqxzqZHCyRcEFq+m
/OP9ju8VVWyc8U8rpudM3mTB8as=
-----END CERTIFICATE-----
Generated at Wed Jun 26 02:10:04 2024 by rpki-client on console-ams.rpki-client.org