Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/828BA510E13311EE8577AAAB775412E6.roa
File: 828BA510E13311EE8577AAAB775412E6.roa (raw, json)
Hash identifier: j4LLA/LugvSQmi4ud1toVp1pYH3ACT1ESo26FzN2fLc=
Subject key identifier: F5:B3:AE:02:F3:E6:8B:78:56:1B:97:7A:F8:FF:48:C9:AC:C8:84:74
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D5B
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/828BA510E13311EE8577AAAB775412E6.roa
Signing time: Wed 13 Mar 2024 12:16:25 +0000
ROA not before: Wed 13 Mar 2024 12:16:21 +0000
ROA not after: Wed 13 Mar 2030 12:16:21 +0000
asID: 212738
IP address blocks: 161.123.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 27 May 2024 00:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3419 (0xd5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Mar 13 12:16:21 2024 GMT
Not After : Mar 13 12:16:21 2030 GMT
Subject: CN=65f19918-927a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f0:d9:ed:2f:91:1d:38:f4:a3:63:f3:f6:dd:
5a:3b:49:df:f4:ad:93:68:42:36:f1:e1:60:d9:5a:
f0:36:40:f3:85:f9:c5:6e:4d:df:e6:f9:f4:a5:04:
39:48:d1:32:86:3a:8b:48:18:18:b1:ba:7b:ed:89:
28:72:41:4f:a4:e5:a7:94:0c:4f:d5:71:52:28:43:
fb:27:e7:06:ae:da:63:e5:87:ab:0f:80:74:03:05:
de:4e:56:89:29:56:10:dd:0e:37:c5:f0:4d:fc:91:
62:11:a6:94:b1:e8:7c:07:77:bc:10:f3:ef:b3:ae:
d0:04:22:9e:61:10:20:7a:0e:fe:55:6e:a7:60:05:
8a:22:d7:46:2b:9f:44:c1:9d:8f:ae:c0:7a:e0:47:
da:53:95:fd:d1:5d:c6:c3:61:3b:68:03:bd:d4:2c:
4c:33:06:cd:49:48:1b:04:9d:61:51:ee:e4:3d:c2:
86:67:b9:36:7f:01:2c:f0:f1:40:e1:15:86:2e:7e:
45:8c:29:3b:53:df:9a:1f:8b:34:cf:9e:0c:69:ea:
05:3a:36:27:e5:34:4b:cb:2b:07:f7:c6:0e:8c:70:
6d:23:5c:5a:4a:d5:5d:12:31:ad:2a:d8:95:06:0a:
91:fd:e9:80:9e:b7:7c:e6:e3:2e:cc:bb:f6:a7:ac:
09:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B3:AE:02:F3:E6:8B:78:56:1B:97:7A:F8:FF:48:C9:AC:C8:84:74
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/828BA510E13311EE8577AAAB775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.216.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5d:12:91:96:e0:26:49:46:fa:b6:75:f4:5f:c2:61:78:92:
b8:80:2f:de:f3:3b:72:03:51:d6:17:f1:94:33:77:cd:e3:ab:
84:ae:d2:e0:be:96:84:c6:0c:c1:5a:af:88:1a:bb:24:fd:c8:
b0:e6:6d:61:a6:b4:de:4e:22:08:99:e6:8d:9d:97:e7:75:16:
21:d0:0d:a3:9a:45:5f:ed:ee:bf:9b:75:a1:4e:10:6d:9b:f9:
ac:8a:0b:48:51:e0:bf:93:a2:a0:87:06:ae:1c:b2:ff:ff:18:
fd:cb:d6:b3:10:f9:c7:f8:3a:4a:3b:dd:ac:cd:3a:97:42:21:
8a:da:ac:b2:20:f0:ab:67:b8:91:e6:18:17:47:f9:a9:0d:4f:
b3:23:39:2a:31:99:7c:99:10:8f:5b:fd:a8:11:51:6a:06:7d:
07:a4:6f:c8:ad:6c:79:e1:41:2c:63:3f:35:92:be:b5:61:6a:
e6:2a:3f:c0:84:0a:14:5f:81:8c:2a:b6:04:46:a0:06:e7:0c:
c9:8f:02:01:33:1a:5f:53:1b:df:b4:96:5d:2c:d3:91:d4:78:
d8:7a:2c:14:d9:14:29:df:84:fc:e7:20:81:be:b8:d0:3c:ea:
bd:84:38:20:ed:6f:3a:a1:d6:c8:ad:31:e5:de:b4:40:29:7b:
28:9d:21:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 02:22:32 2024 by rpki-client on console-fra.rpki-client.org