Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/DB0B1D6A5DBC11EE94BE372F4AD9E6FC.roa
File: DB0B1D6A5DBC11EE94BE372F4AD9E6FC.roa (raw, json)
Hash identifier: jD2qGWU9HADDMg+CnrJ9KaA0BsnFfxgcxMQcP7O7Sgc=
Subject key identifier: BB:2E:B0:10:CA:A9:01:9A:72:BF:6D:DB:E2:F8:EC:79:09:E2:7E:3C
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 07DB
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/DB0B1D6A5DBC11EE94BE372F4AD9E6FC.roa
Signing time: Thu 28 Sep 2023 05:07:01 +0000
ROA not before: Thu 28 Sep 2023 05:06:56 +0000
ROA not after: Wed 28 Sep 2033 05:06:56 +0000
asID: 212219
IP address blocks: 192.142.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2011 (0x7db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Sep 28 05:06:56 2023 GMT
Not After : Sep 28 05:06:56 2033 GMT
Subject: CN=651509f4-ca37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:32:f9:55:1c:c0:d6:05:59:a7:6d:1d:4d:b0:
f5:63:cd:a5:67:a2:f2:d3:76:dc:5d:83:07:45:98:
5b:85:b8:8c:2c:89:83:d1:86:33:95:d7:94:83:6b:
cd:83:85:62:37:c1:f6:40:35:df:04:6a:4a:15:34:
de:4e:6f:58:39:53:b3:09:b2:6a:55:d3:13:6a:ad:
7c:32:8f:91:43:60:31:27:25:35:a0:20:d3:f8:d4:
02:01:dc:4f:98:d6:fe:c1:7b:7d:4f:a2:80:35:84:
e5:67:f6:4e:15:12:be:e8:a3:b8:59:4d:c7:99:7a:
59:f0:ed:f2:0a:99:fb:61:d8:c1:29:08:51:f1:c3:
92:ad:d2:cc:4d:2b:cc:75:c7:41:c8:6d:ec:d9:87:
9d:48:ee:7e:8f:c8:b1:97:f1:36:0f:d6:c1:ba:7a:
55:6d:54:9d:82:3c:da:32:33:9f:0e:61:30:e6:8c:
b7:da:e7:8f:8c:14:8e:77:7a:a3:34:fb:20:5e:e4:
7e:14:dc:a8:d9:21:53:47:e3:e6:33:3e:40:86:ba:
76:af:35:26:75:f8:a4:ee:d0:10:e3:c4:be:04:8e:
42:59:78:97:ac:c2:d7:53:6f:8a:76:d8:c9:f4:25:
50:f8:1b:20:8d:47:0f:dc:b7:f4:d6:98:bd:b9:c5:
fb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2E:B0:10:CA:A9:01:9A:72:BF:6D:DB:E2:F8:EC:79:09:E2:7E:3C
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/DB0B1D6A5DBC11EE94BE372F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.95.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:36:21:53:f9:85:f6:4e:8c:af:f9:9d:65:0c:eb:44:a3:cb:
7b:07:a9:66:02:b8:bf:31:6c:db:31:3d:db:b5:56:8c:16:ac:
9e:22:85:9b:79:cc:db:0e:17:11:35:5f:24:0a:d1:73:e7:65:
61:66:70:71:96:a4:64:ee:46:b6:12:29:c3:55:4b:50:14:8f:
e6:79:76:87:8a:d7:dc:6a:f2:d6:5e:98:a9:17:1c:05:fb:b0:
d7:08:b4:02:4d:88:31:80:7c:c4:5c:53:de:dd:af:8e:b0:3b:
15:35:48:62:2d:ab:ad:10:83:dc:d9:5f:1c:82:43:09:79:33:
27:9b:1d:49:5b:0a:f2:e2:4d:ef:8a:83:da:04:39:63:ee:43:
d3:a7:c6:cb:c6:a8:f2:3f:a3:d1:95:4b:15:ea:0c:4a:30:3f:
52:c4:bf:dd:43:c3:f3:bc:f7:2b:6f:92:5e:de:ca:b3:d0:fa:
76:65:e4:45:7e:7a:c7:24:36:db:f1:9a:b8:66:9c:01:13:f0:
49:f3:82:a5:2b:ae:99:a9:13:d0:0c:ac:d8:a8:a7:04:b2:7f:
dd:e6:76:4f:12:a5:87:fa:16:ff:01:09:60:86:e4:3c:7d:c9:
64:aa:94:87:80:2c:43:9a:de:fa:28:b3:6d:9e:1f:f3:ec:62:
31:e8:5d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:16 2024 by rpki-client on console-fra.rpki-client.org