Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/76AACB30D0CC11EE896CA59F775412E6.roa
File: 76AACB30D0CC11EE896CA59F775412E6.roa (raw, json)
Hash identifier: zpObwO80uz0oFLSgsYzdb5WpoPv160lhPMbqiM7JoOA=
Subject key identifier: 9B:34:44:EE:6C:81:87:D4:F6:A6:6D:2A:A6:FF:05:2C:81:34:69:54
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D42
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/76AACB30D0CC11EE896CA59F775412E6.roa
Signing time: Wed 21 Feb 2024 15:18:28 +0000
ROA not before: Wed 21 Feb 2024 15:18:24 +0000
ROA not after: Thu 21 Feb 2030 15:18:24 +0000
asID: 50028
IP address blocks: 161.123.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3394 (0xd42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Feb 21 15:18:24 2024 GMT
Not After : Feb 21 15:18:24 2030 GMT
Subject: CN=65d61444-c91c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:05:be:76:cf:75:8d:59:49:ab:db:76:3c:0c:
d3:f1:04:b5:3d:f5:d1:ad:f6:18:30:c7:08:ce:fd:
03:03:43:89:36:1b:36:1f:db:ef:1b:b7:84:24:cf:
0c:fe:bb:8d:e4:a4:0f:80:ca:ab:9a:ca:ca:70:72:
da:58:64:63:6b:c8:34:3f:00:6e:24:24:c5:04:05:
40:53:58:53:2d:ec:c7:44:11:e4:04:b5:de:d9:91:
31:a0:b7:17:ed:c1:84:b6:56:86:43:38:6f:b3:e9:
ae:03:ed:54:f0:92:50:ca:60:53:c0:4f:b8:2b:df:
51:92:f3:59:66:5d:90:0c:29:87:10:a7:28:55:af:
01:1d:b4:6c:27:24:b3:d0:32:96:db:2c:27:7a:41:
68:84:00:13:b2:88:f2:63:bb:c4:87:70:73:e7:d8:
e3:86:0d:18:af:2e:7b:c7:fc:1d:32:14:fb:5a:18:
30:4d:0e:79:57:06:96:cc:34:5e:7b:c0:2f:7d:1f:
ce:82:72:33:89:a2:5b:84:85:20:22:9c:e3:02:8c:
65:4d:3d:cb:02:c2:62:df:4c:94:c7:a2:13:c5:45:
c2:00:f0:a2:72:c2:55:32:63:d4:56:b8:4e:e8:d9:
3c:e7:a0:c4:44:37:80:c9:5a:6f:7b:9f:ea:76:be:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:34:44:EE:6C:81:87:D4:F6:A6:6D:2A:A6:FF:05:2C:81:34:69:54
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/76AACB30D0CC11EE896CA59F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.241.0/24
Signature Algorithm: sha256WithRSAEncryption
45:70:11:d2:54:09:ad:f2:bc:4c:a5:4d:45:8c:61:7d:33:a4:
20:e8:c3:6b:a4:d6:ef:6f:9e:5b:4b:3c:93:6e:97:4a:2a:cf:
04:8b:6a:f1:53:fc:78:b9:d8:f6:54:7a:15:c1:a8:98:ae:f6:
30:6f:a3:85:6a:95:9e:60:a0:51:55:d3:28:9d:a9:98:04:15:
fa:7a:e0:ff:88:4c:a3:b2:62:5e:05:0d:c8:49:dc:2d:da:86:
09:ad:08:ba:f7:8f:f1:a1:c5:7d:34:7a:30:a1:df:2a:62:60:
01:16:d5:de:99:a6:b0:b7:62:bd:13:79:9b:4b:5d:7b:fa:25:
2f:2c:35:d0:c8:9e:0e:13:fa:f2:ff:67:92:f7:28:fa:19:bf:
d6:7d:e3:77:25:bd:d2:ef:2b:66:fc:33:18:3d:1d:0d:07:5f:
06:35:29:c1:95:12:bd:89:d4:4a:0b:ef:8d:69:71:aa:62:49:
53:ab:1b:ff:2b:6a:c0:1c:39:32:9f:cf:5c:d0:13:5f:ba:b8:
b4:56:00:ce:1d:4d:5b:0f:80:37:70:a9:a9:95:f2:1b:25:dd:
73:91:fd:e7:74:6a:84:20:cb:d4:fb:9d:73:fd:05:a2:01:22:
92:4a:98:c6:e3:a3:1e:00:a1:de:dd:df:4f:ea:53:ba:58:f6:
88:f8:43:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:04:07 2024 by rpki-client on console-ams.rpki-client.org