Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A3BD7B14094211EFB51EBB5B017001B1.roa
File: A3BD7B14094211EFB51EBB5B017001B1.roa (raw, json)
Hash identifier: OUjrD16DsAN6U+OTjq0a21y+0L7mmQILHKZ9zIOOM3Q=
Subject key identifier: 0B:55:40:C1:CC:CF:BE:A2:73:5D:41:B9:D3:EF:D8:8F:FF:13:1E:05
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0950
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A3BD7B14094211EFB51EBB5B017001B1.roa
Signing time: Fri 03 May 2024 11:45:29 +0000
ROA not before: Fri 03 May 2024 11:45:26 +0000
ROA not after: Wed 10 May 2034 11:45:26 +0000
asID: 64286
IP address blocks: 192.142.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2384 (0x950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: May 3 11:45:26 2024 GMT
Not After : May 10 11:45:26 2034 GMT
Subject: CN=6634ce59-e01c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e3:b2:2d:e2:d6:6c:3f:c8:95:43:4c:9a:3c:
fe:fd:8c:ed:f3:61:b1:ed:a2:40:69:16:18:dc:25:
4c:0b:20:bc:ca:17:7e:b0:56:0e:04:ef:ae:ba:20:
b1:e3:fa:19:2c:66:ce:95:02:7a:f3:77:ec:e6:98:
30:01:9c:db:48:cc:68:99:bd:cd:51:30:a9:e7:c7:
1c:89:08:3a:3c:c2:01:48:d5:9a:57:f6:82:ce:7f:
c3:92:1c:71:19:3b:f7:8c:2f:a8:f1:1f:e9:05:8a:
1d:8b:05:8d:35:9e:8f:3f:c7:5e:8f:da:5c:bb:c7:
9d:36:0c:89:56:9b:6e:b9:08:f1:59:45:e0:49:58:
d5:50:10:d4:08:74:d7:b9:be:e1:39:5f:0b:29:4e:
28:20:8a:71:40:94:94:bb:9a:c6:c3:40:e6:91:e2:
cf:5d:0c:7a:3c:8e:ea:62:70:36:7e:34:f8:84:28:
dc:7a:a4:54:85:b6:74:da:43:52:7a:6e:22:f1:ae:
d2:52:26:16:9a:98:de:03:5b:2d:1a:d0:b3:04:cf:
c6:ca:56:8a:8f:37:9e:5a:c8:57:20:8b:d5:79:66:
d6:e2:04:fe:a2:0b:de:a6:16:c5:06:b8:ec:f1:44:
1f:26:67:9b:3d:f0:c6:49:fe:0c:87:5d:91:51:ad:
6f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:55:40:C1:CC:CF:BE:A2:73:5D:41:B9:D3:EF:D8:8F:FF:13:1E:05
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A3BD7B14094211EFB51EBB5B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.136.0/24
Signature Algorithm: sha256WithRSAEncryption
70:5d:c5:de:83:43:fc:14:a1:96:78:30:4a:1e:e3:e4:5a:41:
2e:6b:81:61:56:d2:1a:a2:c1:fd:7b:11:ac:8e:03:dd:44:7b:
1a:24:3a:17:c6:bc:36:c1:4f:a0:e0:34:9c:2e:85:cc:46:18:
63:52:9c:95:2b:f7:76:23:e5:8d:8e:a4:fc:f5:d9:a0:d0:54:
1e:03:87:3b:20:ec:40:a8:cd:fc:ad:66:1e:f7:61:6b:15:13:
1a:6a:d5:34:49:91:08:c7:48:59:69:e8:9a:24:fb:4d:06:18:
42:99:ec:6c:c8:f2:11:5b:32:83:83:4b:e5:a0:59:4b:95:19:
76:da:0e:4d:43:e5:86:71:4c:b4:5d:5d:82:fe:74:7a:38:0b:
fd:b5:fb:00:8e:15:9f:1f:43:5b:2b:82:85:cf:9f:16:6e:92:
75:70:0b:30:26:16:81:1d:02:35:9e:66:b5:31:81:42:f9:f0:
ce:75:42:1d:f0:68:a3:cc:09:2d:4a:a2:e4:ba:ff:0e:6d:3a:
1c:e4:8e:7b:2f:57:32:b4:29:7d:44:a2:ee:2a:34:f4:1f:2e:
1e:c8:47:96:01:c9:2a:d7:f9:68:7e:c7:5a:2e:75:f5:2e:19:
d4:c1:51:b3:12:66:7c:00:2a:1c:3f:b0:ec:94:1a:d5:4f:0a:
b7:95:bf:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org