Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/1133E6AE5DE711EEAC45F5314AD9E6FC.roa
File: 1133E6AE5DE711EEAC45F5314AD9E6FC.roa (raw, json)
Hash identifier: C69jV9/A68I76iUr1QdFhN9dAhT7NBYWX10mee85L78=
Subject key identifier: A3:D6:F2:39:CE:18:EF:69:56:12:CA:F9:4A:9E:9D:B1:40:E8:5E:5B
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C2D
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/1133E6AE5DE711EEAC45F5314AD9E6FC.roa
Signing time: Thu 28 Sep 2023 10:09:10 +0000
ROA not before: Thu 28 Sep 2023 10:09:07 +0000
ROA not after: Sat 28 Sep 2030 10:09:07 +0000
asID: 203999
IP address blocks: 161.123.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3117 (0xc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 28 10:09:07 2023 GMT
Not After : Sep 28 10:09:07 2030 GMT
Subject: CN=651550c6-2bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:95:c4:d9:96:2e:e4:af:f4:78:80:b5:45:c0:
66:6e:6f:cd:f1:0b:2d:91:53:4d:dd:f3:e7:53:64:
04:95:d8:35:61:e3:4e:20:33:a3:b4:c3:ee:db:19:
c7:87:17:86:4e:1b:ff:a6:54:d3:30:e4:eb:ed:31:
9b:05:4b:a9:c1:b5:66:8a:a1:69:35:73:bb:b2:76:
a5:4a:7a:11:15:bc:a1:ba:2c:43:98:d1:d4:d7:93:
b1:57:33:f9:65:1e:85:6e:48:1d:df:96:30:aa:51:
e8:79:33:03:c9:e0:00:dc:00:bc:0c:3a:98:e0:cf:
dc:b2:2a:5f:20:8a:c4:ea:eb:de:27:c2:87:24:a3:
3b:cb:77:aa:98:6c:6e:23:a0:93:a6:f2:2e:bc:fb:
f6:18:33:fe:ca:aa:08:d4:8b:56:e5:84:a1:dd:f2:
f4:f5:48:b8:df:f1:9b:ee:06:32:46:03:b9:30:ba:
e5:49:d0:af:eb:67:e7:18:17:a2:77:12:db:47:01:
29:86:0e:b8:44:d9:51:11:5c:e2:56:e7:0b:2e:ab:
20:00:2a:2d:c8:aa:5d:f4:d7:a0:45:bb:d7:63:a6:
a1:30:3e:4e:5c:dc:3c:c4:66:0f:2d:f7:d5:67:f8:
12:2a:e0:34:db:15:b5:8f:58:9d:00:52:db:90:f3:
65:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D6:F2:39:CE:18:EF:69:56:12:CA:F9:4A:9E:9D:B1:40:E8:5E:5B
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/1133E6AE5DE711EEAC45F5314AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.54.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f9:3b:b7:02:4d:25:64:f2:66:52:81:f6:57:02:a9:fc:38:
58:f0:c0:fb:a9:fa:3c:ee:10:e7:1f:1c:dc:13:49:2f:30:15:
8c:2f:bf:2c:e0:a2:4b:58:d9:67:93:85:8c:a4:4b:5a:75:0e:
36:cd:dc:48:c8:b0:94:76:aa:9c:45:b9:c1:fe:e6:b0:ce:2d:
5d:9c:bb:ae:99:e6:9a:f5:39:6f:9c:8f:4a:94:2e:7b:76:a8:
b8:e3:83:9b:81:f1:94:e9:97:35:5c:0c:24:2c:8d:48:68:a1:
72:07:5f:6c:82:ba:a3:25:a3:43:e9:4d:f6:c1:e2:de:79:b8:
91:d9:c6:3c:07:f3:3d:78:11:77:0f:bb:95:dd:67:47:19:73:
f5:3f:58:5f:34:f7:38:35:4f:46:f3:74:9b:08:b5:0d:a6:ee:
3b:3c:d7:b7:e9:e7:69:1e:73:69:d8:16:06:36:89:6c:e3:87:
97:1a:dc:4e:af:32:88:60:b7:05:66:21:21:e6:e4:ba:51:aa:
29:e7:16:0f:01:c9:b0:e6:98:48:bc:88:c2:a4:53:20:65:f8:
0c:9b:e7:95:cb:1b:2e:5b:23:47:5f:42:2d:1e:d1:c1:14:b7:
2e:8a:6c:9f:4f:6f:30:e8:0c:ee:24:31:62:04:3d:fc:99:0a:
48:56:84:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:28 2024 by rpki-client on console-fra.rpki-client.org