Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/68C25A4A950F11EE95FAF84FD25BE465.roa
File: 68C25A4A950F11EE95FAF84FD25BE465.roa (raw, json)
Hash identifier: lBx+dAQIXmwG0B6LKCIySmD3P+nQxGfr4NooSdtAEpM=
Subject key identifier: C5:BF:24:FC:32:7B:AE:BC:BE:C7:A1:60:1C:28:3A:D4:4D:93:EE:1B
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0CD8
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/68C25A4A950F11EE95FAF84FD25BE465.roa
Signing time: Thu 07 Dec 2023 14:46:31 +0000
ROA not before: Thu 07 Dec 2023 14:46:28 +0000
ROA not after: Thu 07 Dec 2028 14:46:28 +0000
asID: 207990
IP address blocks: 161.123.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3288 (0xcd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Dec 7 14:46:28 2023 GMT
Not After : Dec 7 14:46:28 2028 GMT
Subject: CN=6571dac7-d2ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:da:21:88:a1:9d:02:48:96:7f:ae:f2:bf:c8:
cd:58:76:74:9d:f0:b9:01:f2:d9:09:df:f2:86:57:
3a:b9:63:a1:03:05:0d:d0:cd:05:60:e0:01:db:ae:
3b:df:2d:4b:ec:4f:3b:97:34:7f:8c:e0:e6:85:8a:
57:62:58:42:fd:47:02:13:eb:d8:98:6f:93:d7:15:
5a:7f:59:4a:50:a6:50:72:2c:c5:5e:05:f4:79:fa:
ef:d7:85:95:72:d9:6f:17:9e:a9:ad:d0:25:33:7c:
cd:f8:45:89:e6:38:17:35:6f:fe:e3:b6:45:8c:6a:
01:b8:bc:2e:4b:46:d7:45:dc:23:fa:8e:9a:b4:32:
72:5d:03:ad:3d:28:b6:2e:dd:45:98:c0:50:f5:30:
41:91:ec:4a:91:9f:c2:e1:5a:2e:f6:13:c4:51:a9:
5b:48:e0:ea:25:4d:ea:5e:75:8d:1e:1f:c2:e7:a8:
ec:5f:44:d7:02:1c:16:7c:53:99:b3:60:a5:67:d4:
c4:70:20:37:c1:1a:d6:f4:ed:73:6e:bc:31:64:df:
56:fa:22:09:58:0e:72:10:65:d7:a7:5b:8f:2f:12:
6e:26:6d:2a:e2:d0:dd:ed:cb:49:b6:7f:95:3d:40:
50:3d:84:07:8d:ac:dc:af:b2:5f:aa:9a:2c:6a:fe:
2d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BF:24:FC:32:7B:AE:BC:BE:C7:A1:60:1C:28:3A:D4:4D:93:EE:1B
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/68C25A4A950F11EE95FAF84FD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.128.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:4d:19:e3:02:ad:d5:c8:cb:ac:2b:6a:d3:f7:18:ca:d9:31:
52:76:ce:a1:38:5d:5b:bb:e8:ba:db:bc:27:80:ac:98:f5:43:
9d:f0:a9:7c:8c:00:9c:03:f8:f9:4d:11:d9:c2:e1:0f:87:c1:
be:96:80:8e:cb:87:fc:ca:50:31:0d:2e:41:f5:75:46:9e:ce:
44:8e:71:13:fa:db:e1:c3:c1:7e:d7:2f:10:6c:59:42:19:3a:
23:7d:b1:a1:c5:78:13:1b:4a:f0:c7:ea:57:8a:84:80:9b:3f:
d1:79:1e:8f:2b:72:1d:0e:38:59:88:bb:9f:7b:d1:7c:76:58:
70:79:f4:e3:85:2d:4f:76:0a:7f:12:6d:e7:6b:82:b9:9a:6e:
1e:ca:26:69:04:76:ab:2b:f2:71:62:e5:4a:72:29:32:8a:0e:
f0:43:67:d5:19:f4:88:4d:0d:c2:c8:fd:f1:2b:10:da:0e:3a:
63:77:dd:b5:21:ac:b1:02:c1:f7:5f:c5:4a:a7:f1:5b:26:0a:
79:ad:f9:15:3c:1d:0c:ae:62:5b:3a:aa:9b:50:63:fd:65:69:
92:1d:97:8b:aa:35:92:e4:27:bb:c8:d9:87:05:fc:c6:22:e4:
92:92:35:f3:1a:e4:ee:0d:89:30:1d:4e:e7:5f:e6:94:3a:92:
2b:30:20:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:04:07 2024 by rpki-client on console-ams.rpki-client.org