Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/1D3D76F67CD511EEA78C4F474AD9E6FC.roa
File: 1D3D76F67CD511EEA78C4F474AD9E6FC.roa (raw, json)
Hash identifier: n/jNxkApmWylNvTMx82dvqQfg3GPlR5/tve6/kphmQY=
Subject key identifier: 5C:09:EF:A6:1F:50:6B:AD:97:F8:5E:66:24:5A:36:5E:70:50:48:75
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C8D
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/1D3D76F67CD511EEA78C4F474AD9E6FC.roa
Signing time: Mon 06 Nov 2023 18:48:46 +0000
ROA not before: Mon 06 Nov 2023 18:48:42 +0000
ROA not after: Mon 06 Nov 2028 18:48:42 +0000
asID: 207990
IP address blocks: 161.123.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3213 (0xc8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Nov 6 18:48:42 2023 GMT
Not After : Nov 6 18:48:42 2028 GMT
Subject: CN=6549350d-eac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5b:e2:bc:7e:75:b1:f1:71:a9:53:2d:a4:a7:
3b:de:4c:66:ae:54:ca:bb:3d:ed:69:a3:a4:88:f3:
73:bc:dc:1b:7f:70:52:65:42:fd:17:1d:aa:a3:9b:
ca:fa:f9:bd:01:46:87:15:91:60:c2:b8:a1:8b:09:
88:d9:94:50:ca:fd:f3:68:08:0b:0d:1d:7f:5b:2c:
ef:72:a1:a2:9e:09:42:95:d7:d8:d0:47:89:f3:fd:
f8:c8:1e:22:93:d1:fd:d3:56:42:52:e7:24:0e:fa:
25:9f:29:3f:dc:bb:69:ba:a7:cf:6a:3f:95:f9:3f:
ab:04:4d:a4:14:1d:de:8f:8e:37:bc:b4:e3:c8:16:
4e:71:d1:83:ea:41:7b:67:aa:5c:de:60:f9:6d:13:
21:a0:f7:1f:2f:c8:0c:e7:91:01:6d:81:3f:68:3b:
e9:87:d2:c1:fe:21:d3:ff:5d:93:50:21:32:83:9c:
f6:e1:46:29:01:a4:75:a8:bc:e5:08:f7:87:1f:26:
08:74:25:0a:51:4c:4f:c5:15:dc:c9:07:bc:b5:d4:
f6:08:99:f5:4b:67:ee:31:07:8f:c3:84:0a:f2:97:
e4:df:e0:f7:fe:d6:8c:23:07:27:3a:f9:27:fe:0b:
4e:07:a1:bb:17:c9:2c:43:86:2d:d5:9d:6e:35:f7:
f8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:09:EF:A6:1F:50:6B:AD:97:F8:5E:66:24:5A:36:5E:70:50:48:75
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/1D3D76F67CD511EEA78C4F474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.22.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ea:57:67:e6:ef:b6:2d:b5:30:8b:71:2b:7d:84:f6:f2:21:
93:d5:37:25:67:5c:20:98:a7:dd:d9:0c:0f:32:f7:d6:77:73:
14:62:b5:99:fc:3d:0b:8a:4c:9a:69:fc:5d:e9:ac:d7:f4:0a:
5c:97:0b:a3:c5:b7:b7:32:85:b8:ca:73:1e:ca:89:6d:59:de:
df:2c:52:05:90:f9:2e:a4:fa:82:10:76:09:d1:2a:be:29:9f:
01:eb:84:6b:4a:28:f1:0a:23:76:41:cb:96:66:e2:04:3c:3c:
31:3f:f3:4a:63:cc:f7:80:97:b7:28:6a:aa:eb:5f:48:ad:e2:
dd:1d:f1:16:d6:1a:c0:1e:4b:c0:43:2a:f9:7f:1b:b3:15:9a:
fa:ef:ed:1d:c4:dd:f0:18:a8:ec:5b:9e:84:67:eb:2a:84:9a:
74:2d:10:00:9c:05:05:be:78:0b:cc:43:b3:6c:93:f7:7f:ed:
28:d3:cf:62:b9:d9:92:3f:fa:a2:b4:e2:a7:11:eb:ee:58:26:
69:9d:48:24:5f:b4:82:61:12:9e:a0:10:ae:ea:cd:c4:d1:88:
08:6c:7c:a7:a6:64:2c:eb:1a:ff:68:d1:e1:3b:14:34:f7:b5:
08:63:b4:21:2c:fc:30:23:75:ed:38:6c:c5:eb:cb:81:a7:32:
c9:72:7f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:04:06 2024 by rpki-client on console-ams.rpki-client.org