Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7D69A20A5CFC11EE9ADC77464AD9E6FC.roa
File: 7D69A20A5CFC11EE9ADC77464AD9E6FC.roa (raw, json)
Hash identifier: kSjVeVDhSvRj+s82RpVamMKmnXAaxn7uqIFqkv22+D8=
Subject key identifier: BA:16:0F:88:65:18:98:BC:C4:87:D5:B0:66:D4:50:C7:68:22:48:54
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C1B
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7D69A20A5CFC11EE9ADC77464AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:10:00 +0000
ROA not before: Wed 27 Sep 2023 06:09:57 +0000
ROA not after: Mon 30 Sep 2030 06:09:57 +0000
asID: 203999
IP address blocks: 161.123.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3099 (0xc1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 27 06:09:57 2023 GMT
Not After : Sep 30 06:09:57 2030 GMT
Subject: CN=6513c738-58ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:97:26:43:41:44:f5:22:2f:53:39:a3:59:39:
29:66:4b:42:da:35:c5:bd:e3:d2:71:c5:62:ad:3c:
f6:c2:87:77:63:74:03:3f:a2:7b:96:4e:e1:33:13:
08:14:26:1a:66:95:41:0d:8e:34:22:d7:c8:98:fc:
b6:3b:ee:8e:fd:0e:04:80:54:f4:9a:f4:33:ef:94:
2b:44:0f:72:df:f1:c1:01:ea:64:67:a6:6c:6b:23:
e7:a0:34:17:b0:5c:d3:fd:4e:15:6e:26:d9:15:6f:
7c:82:c6:fc:29:8e:b3:b9:01:48:59:73:ae:2a:39:
d1:a8:75:e4:b2:3a:fc:50:c3:81:75:e4:66:9e:ce:
07:1a:86:83:79:23:48:d1:77:95:09:e7:dd:5e:7e:
81:30:92:42:1f:04:96:a3:ba:b1:36:62:ab:37:c8:
a2:61:96:cb:58:bd:b2:97:4f:b9:38:3e:d3:e1:98:
f3:66:b3:48:9f:9b:1a:40:09:dd:14:10:37:8b:97:
52:6f:65:e5:1a:38:0e:d8:12:23:d7:71:74:62:76:
03:a3:59:dc:b6:85:c2:a6:7b:82:bf:06:47:47:69:
51:69:a6:6e:0f:35:d5:0a:bc:dd:1e:88:65:0e:1d:
0d:db:55:eb:e5:3b:d2:f8:17:bd:cb:fa:60:35:f9:
a4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:16:0F:88:65:18:98:BC:C4:87:D5:B0:66:D4:50:C7:68:22:48:54
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7D69A20A5CFC11EE9ADC77464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:da:2e:14:d4:f9:93:69:2e:57:e9:b1:54:18:c4:ed:aa:e9:
5e:9f:1a:84:fe:86:34:fc:63:67:7b:62:25:08:64:c2:f7:01:
9d:96:03:32:40:47:ba:1a:df:47:18:f7:6b:73:2a:58:1b:3d:
9d:5e:5d:7f:d4:dd:12:42:73:b9:36:e6:32:64:2e:40:0b:25:
8c:0c:10:0f:23:9b:c1:c3:fa:4e:3e:99:04:ce:36:20:d9:ad:
94:31:86:df:69:f6:ff:7f:77:87:d1:04:e8:49:c5:39:59:0c:
1a:cf:72:0c:df:f7:03:ef:52:53:5a:50:07:82:5f:87:fd:09:
59:6f:08:f8:58:26:fe:e0:d4:c7:1c:aa:3f:08:c0:4b:ed:54:
07:d4:83:34:00:90:f9:ed:2e:15:3d:ee:4f:ca:cb:d1:96:da:
b3:f7:d6:ae:bb:98:6d:96:90:c5:c6:61:db:df:30:6f:f5:5e:
be:bc:5d:73:d9:de:58:c2:81:43:f0:e1:c3:3b:f2:24:27:07:
14:ba:df:95:7c:91:68:fd:f3:aa:ae:f5:aa:fb:1b:a5:3c:8a:
30:ee:e2:09:2c:16:86:59:99:2f:3d:40:38:54:65:c6:cf:ce:
a8:6e:2d:58:19:36:a3:12:3a:b4:8e:e8:5b:de:5b:30:46:76:
df:9c:2a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:04:07 2024 by rpki-client on console-ams.rpki-client.org