Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7A6D98C0BB7211EE92D95B62775412E6.roa
File: 7A6D98C0BB7211EE92D95B62775412E6.roa (raw, json)
Hash identifier: dzS2f33wuUednkg4mCO7nzn9dnb1sdtsZ8KCVIz6VZw=
Subject key identifier: 94:22:5A:C5:10:25:6E:E8:4E:88:A8:60:13:EB:42:83:CE:7B:6A:97
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D1A
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7A6D98C0BB7211EE92D95B62775412E6.roa
Signing time: Thu 25 Jan 2024 11:11:25 +0000
ROA not before: Thu 25 Jan 2024 11:11:22 +0000
ROA not after: Fri 25 Jan 2030 11:11:22 +0000
asID: 212738
IP address blocks: 161.123.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3354 (0xd1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Jan 25 11:11:22 2024 GMT
Not After : Jan 25 11:11:22 2030 GMT
Subject: CN=65b241dd-87c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b3:27:67:9c:50:5f:4f:5a:72:5e:22:d7:aa:
36:3f:3a:54:81:2d:28:de:cd:50:a0:9d:f8:1b:80:
49:03:ab:ed:a5:29:c7:51:7f:0e:cc:c8:50:21:5c:
e1:aa:18:48:a2:70:cf:aa:c3:99:e8:a0:1c:d3:de:
66:78:75:9a:e5:c9:53:c7:44:c7:32:49:7f:d2:ee:
a1:d9:e5:03:fd:d5:01:ef:1e:18:c0:18:fa:3f:da:
d6:b7:07:dc:ba:a6:fe:e6:bf:f2:2f:75:37:ed:a7:
2e:ca:84:28:d1:c7:68:95:d4:2a:f6:f1:5b:3d:39:
e5:48:37:06:a4:8b:03:08:d0:66:16:d0:57:a9:d5:
56:b3:e4:14:4d:af:4d:90:94:65:bd:5e:f7:5f:7f:
69:bf:85:f4:e5:89:2d:c0:b5:a4:9f:a7:1f:75:d4:
ee:e0:b3:a6:71:4f:03:33:9d:55:ff:15:fa:72:96:
4b:b3:0a:c4:04:49:a1:55:01:75:89:e8:77:30:9f:
9b:38:0e:5f:8a:94:9a:c7:51:70:19:cc:e2:c5:ef:
39:f7:82:e8:31:3e:44:50:87:d1:36:3c:1b:05:dc:
77:c4:c6:c2:79:47:09:fe:5b:71:dc:ed:49:a4:a8:
92:dd:4b:65:44:21:d3:73:63:5e:54:a9:39:02:57:
f5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:22:5A:C5:10:25:6E:E8:4E:88:A8:60:13:EB:42:83:CE:7B:6A:97
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7A6D98C0BB7211EE92D95B62775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.220.0/24
Signature Algorithm: sha256WithRSAEncryption
79:4d:1f:2f:9e:78:97:91:06:c4:b7:85:3d:34:10:ce:cb:92:
72:ca:75:b3:cd:d1:36:e2:20:8d:04:0c:d8:d4:ec:df:48:92:
29:f2:55:f6:f5:29:cc:7a:7a:b8:dc:06:c4:f6:5d:f0:28:de:
a5:3d:94:fd:49:62:97:41:60:c4:f4:6e:07:44:d2:bf:50:bf:
49:63:35:3f:3f:09:e1:ca:6b:88:59:35:fc:45:04:d7:48:7d:
7c:28:fc:52:f9:a4:f2:e8:7c:af:96:56:01:21:e6:ad:8c:ec:
d2:3a:75:22:78:ba:95:e5:d4:b6:aa:92:a8:ab:fd:c0:90:4f:
4e:56:eb:8a:07:be:45:9a:67:80:41:4b:b2:cc:67:3f:0c:15:
44:da:a5:c7:d7:1c:4c:6d:bf:63:1e:a6:85:0c:8d:1f:cc:b9:
75:a7:65:33:40:44:66:e3:d2:3e:23:08:c5:ae:d0:42:d6:c6:
6d:45:fe:22:ba:96:bd:f9:73:2c:ed:2f:a2:40:5c:d3:7d:38:
fa:8a:7c:06:16:1f:9e:d0:2c:9f:0b:62:bf:e9:a8:54:b9:d9:
27:97:59:99:6d:dc:61:ce:c2:e7:7a:00:88:85:ca:c2:c8:6a:
38:2f:45:3c:20:70:81:22:7d:9a:ed:ce:f1:b4:6e:2e:96:da:
75:c4:f9:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:28 2024 by rpki-client on console-fra.rpki-client.org