Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/5497EF8AF93D11ED98F7B98A4AD9E6FC.roa
File: 5497EF8AF93D11ED98F7B98A4AD9E6FC.roa (raw, json)
Hash identifier: 99eIbTRzNz53exWg6aPpMxTR/rujogtFKMLuBe4N93c=
Subject key identifier: CA:A5:CF:E2:E4:3C:C6:FD:67:B3:4F:06:6F:76:5F:C7:96:F3:1C:BB
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0AD2
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/5497EF8AF93D11ED98F7B98A4AD9E6FC.roa
Signing time: Tue 23 May 2023 07:42:13 +0000
ROA not before: Wed 24 May 2023 07:42:09 +0000
ROA not after: Fri 24 May 2024 07:42:09 +0000
asID: 133499
IP address blocks: 161.123.118.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2770 (0xad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: May 24 07:42:09 2023 GMT
Not After : May 24 07:42:09 2024 GMT
Subject: CN=646c6e54-f3e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2e:4c:4d:b6:3b:23:11:af:54:c3:1b:db:f5:
f0:9b:82:29:f7:a8:bf:c4:ef:8e:ce:22:6e:19:bc:
5e:c0:b8:e4:31:96:e1:8d:31:43:96:d0:2c:18:4c:
fa:a0:e4:6b:0c:bf:1e:34:40:7c:03:93:8c:6e:6b:
4d:c0:6e:88:78:65:25:97:4c:26:94:83:7a:c3:17:
2e:b0:d1:47:f4:8a:08:e9:e1:db:4d:93:64:d7:d8:
76:d9:5c:70:1d:37:11:15:8d:81:b4:bd:70:f5:26:
e8:02:d3:e8:8b:02:7e:4f:39:40:3b:88:8c:cc:86:
51:de:58:4d:57:0c:ef:37:d2:cc:4a:3e:e0:ae:14:
b7:f5:8b:fc:c5:69:f1:6b:c6:e0:f1:a0:e3:7a:ea:
18:00:fa:91:c9:65:ac:cd:cf:b2:77:c3:a5:29:7e:
54:66:29:0a:f4:c1:dc:32:84:69:75:89:f3:f5:98:
00:2a:26:23:9d:ea:e9:3e:50:65:ea:70:93:d8:7e:
64:67:c7:19:d0:0d:26:40:90:a2:f6:9f:90:c5:85:
bd:0f:9e:9d:33:68:95:21:d5:1b:c2:e0:83:46:ce:
6e:88:ac:bd:ed:b3:85:a7:08:ea:01:03:42:a5:ec:
b4:b9:f2:ee:78:12:fe:d0:94:3a:ce:b2:04:d1:03:
fc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A5:CF:E2:E4:3C:C6:FD:67:B3:4F:06:6F:76:5F:C7:96:F3:1C:BB
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/5497EF8AF93D11ED98F7B98A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.118.0/23
Signature Algorithm: sha256WithRSAEncryption
59:c9:55:b0:c6:af:6f:f9:e8:b2:e9:dc:ca:ba:06:9d:5d:cd:
af:62:f3:9e:4d:2e:a5:1a:7d:28:15:62:71:65:32:47:cf:0c:
0e:49:99:ae:10:64:3f:17:78:5a:35:ed:60:da:2c:32:a0:e9:
c0:a9:b7:e3:a8:6d:ec:ff:94:5e:d3:2f:96:b9:dd:50:d2:61:
54:fe:c5:ec:1e:5c:61:ab:03:f2:07:da:9b:50:82:c8:ca:50:
7b:79:9f:0f:78:aa:f8:9f:40:db:57:d2:b3:ea:57:a7:9e:e8:
88:38:d4:1e:c2:c3:57:4b:58:6e:c3:a7:9f:4a:d9:da:5e:86:
5a:63:ff:cf:6e:2c:ad:4e:6c:aa:2d:f1:42:80:4e:39:cf:c9:
7b:11:99:9e:0d:10:7d:dc:73:f1:3b:fc:64:8e:91:92:06:d8:
d6:91:6a:36:6e:8d:5a:91:87:7e:31:d1:22:de:ef:82:45:a5:
9e:2e:91:3a:ff:a9:d9:fa:d2:09:31:c4:e4:ea:34:4e:85:71:
18:ab:04:eb:5f:d5:6f:d1:e4:bd:c7:5d:7b:e3:cf:c7:08:13:
9e:af:1c:1c:19:d5:65:54:1a:a2:5d:50:eb:9d:6e:5a:d6:d9:
65:8d:73:3e:85:38:f7:ca:e9:6b:1f:6f:46:dd:4c:1e:78:1b:
77:9a:66:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:28 2024 by rpki-client on console-fra.rpki-client.org