Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/95FAE6505CFA11EE9A19F23F4AD9E6FC.roa
File: 95FAE6505CFA11EE9A19F23F4AD9E6FC.roa (raw, json)
Hash identifier: Bmoq3xrNoY+kRsPoLNI1XHU06ikKOSp32Q25jTJWlZo=
Subject key identifier: E7:FE:9B:3C:42:3B:F5:F1:91:82:19:45:33:9F:D9:03:B4:D7:91:2A
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C05
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/95FAE6505CFA11EE9A19F23F4AD9E6FC.roa
Signing time: Wed 27 Sep 2023 05:56:22 +0000
ROA not before: Wed 27 Sep 2023 05:56:19 +0000
ROA not after: Thu 28 Sep 2028 05:56:19 +0000
asID: 212738
IP address blocks: 161.123.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3077 (0xc05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 27 05:56:19 2023 GMT
Not After : Sep 28 05:56:19 2028 GMT
Subject: CN=6513c406-da84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dd:df:db:91:55:aa:38:1c:31:d1:a6:f1:3b:
19:26:80:08:ad:14:86:70:77:34:37:4c:62:93:f3:
81:eb:39:6f:ef:11:7f:c3:d3:4c:ee:35:a0:7c:ff:
8a:89:ab:4f:0e:b0:76:a0:4f:c0:27:83:8e:c6:77:
86:aa:2b:b4:3c:15:dc:cf:53:65:1a:6b:c7:f5:2f:
b1:10:72:3d:ab:01:75:ed:29:07:aa:28:2a:d3:59:
fe:1d:2b:8c:d5:51:ca:39:75:bd:f3:89:1e:a3:c9:
65:50:bd:9c:e5:9b:56:1c:08:e1:c8:17:fd:33:21:
8d:15:31:b1:21:50:f9:6f:dd:fc:72:22:d8:ae:74:
cf:16:80:83:40:a3:32:06:7d:21:c6:ba:6c:40:3d:
ac:4b:00:c5:b6:7d:f4:f6:ec:ef:69:04:9a:dd:4f:
8d:36:de:bf:2d:f3:5f:97:42:d6:02:cd:eb:4e:3e:
28:a5:1a:ec:62:90:28:2e:e0:54:c8:84:f5:77:c7:
47:9e:31:ec:15:2a:85:9a:ea:65:fa:d0:be:1a:a3:
90:20:60:bf:cb:80:47:2d:e6:d6:c3:0e:8b:83:bd:
2f:14:e7:22:dd:66:2f:a3:08:31:f0:77:00:03:5b:
8e:7e:c4:8d:dd:61:6c:8e:03:77:aa:01:d9:05:b2:
6f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FE:9B:3C:42:3B:F5:F1:91:82:19:45:33:9F:D9:03:B4:D7:91:2A
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/95FAE6505CFA11EE9A19F23F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.68.0/24
Signature Algorithm: sha256WithRSAEncryption
58:e7:6a:af:e6:bb:66:8f:96:80:9e:01:f5:e8:2c:96:2e:e0:
a2:d2:35:21:3d:2d:13:64:0a:95:d6:47:cb:81:6a:da:cc:ca:
c8:e9:45:27:2f:1a:a3:7f:ad:75:22:06:17:74:2b:2a:33:1b:
e8:7e:00:fb:1e:11:55:0d:37:e8:92:28:08:58:4f:99:02:fe:
17:2e:3a:26:4d:03:83:a5:ee:7b:02:5e:9f:fe:45:a2:74:e0:
7e:01:e6:b5:ab:73:2b:75:eb:d7:f5:07:2f:37:bd:e5:c7:7f:
08:80:3e:ff:b3:52:c2:2c:a5:eb:96:0a:35:df:5e:63:61:7c:
b8:25:30:57:01:d2:23:1f:f4:79:41:7a:26:f5:40:e1:3c:dc:
78:2e:36:29:6f:bf:b7:b1:38:f7:1d:61:12:5e:1b:52:fa:c8:
23:c7:ea:8a:84:38:b7:b8:02:df:2a:41:fa:74:a1:0d:26:e7:
b5:58:06:06:82:fb:34:65:7f:94:3f:43:8d:14:0b:2b:48:f5:
e6:56:cd:45:2d:d6:43:27:fc:82:88:39:be:05:6e:6c:37:72:
1c:75:38:5b:5e:9e:9e:44:b1:fa:de:4e:e9:af:97:37:f3:22:
0e:d5:7d:25:27:ac:25:4a:e1:fa:83:79:82:cd:1a:e4:b3:f3:
16:cf:20:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:40:12 2024 by rpki-client on console-ams.rpki-client.org