Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BB8DEE6C5CFA11EE8C1AA7404AD9E6FC.roa
File: BB8DEE6C5CFA11EE8C1AA7404AD9E6FC.roa (raw, json)
Hash identifier: MEyEKyQSjYLZ4SbolY5X4eWQIvIazYZIFHnfSg9xTnA=
Subject key identifier: D8:18:52:0F:A8:24:9A:5A:7B:31:75:2F:83:3E:5A:23:86:E4:27:6F
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C09
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BB8DEE6C5CFA11EE8C1AA7404AD9E6FC.roa
Signing time: Wed 27 Sep 2023 05:57:25 +0000
ROA not before: Wed 27 Sep 2023 05:57:22 +0000
ROA not after: Thu 28 Sep 2028 05:57:22 +0000
asID: 212738
IP address blocks: 161.123.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3081 (0xc09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 27 05:57:22 2023 GMT
Not After : Sep 28 05:57:22 2028 GMT
Subject: CN=6513c445-3f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:de:e1:61:c9:13:a9:9c:5a:c1:5f:01:de:ce:
41:e2:2d:23:bd:7e:9b:40:67:5f:fb:9d:88:5c:2d:
ad:f4:9b:65:7b:bd:02:5b:9a:7b:3a:fb:cb:65:6d:
a4:2f:3e:88:60:80:c8:40:0c:0f:02:c2:f9:d9:4d:
ee:45:f9:00:7c:36:09:d6:24:e9:82:36:2f:99:d6:
86:c0:ff:01:7e:66:af:54:60:33:ab:50:87:30:51:
d2:ae:28:80:de:f9:6f:7d:58:14:77:b7:a1:09:89:
9b:67:3d:f7:0a:bc:19:c9:be:2b:4b:8e:0b:15:3b:
78:d5:9b:6f:4c:7d:dc:70:bc:3f:bd:aa:23:d9:8f:
ec:c0:16:4c:36:33:65:2c:45:d5:5e:eb:f8:de:1f:
33:a1:43:31:c3:35:06:37:93:72:15:b4:cb:fe:aa:
f7:cc:a1:9f:7c:c8:6b:79:73:56:d7:05:52:52:99:
22:8a:bd:87:bf:31:09:26:9d:34:84:04:e3:84:81:
01:34:19:f1:c0:e6:25:b2:97:ce:bb:00:8a:14:a0:
f3:7d:cc:3e:9c:19:21:79:5c:e1:d5:2b:f1:85:c2:
5f:97:8e:52:08:80:e3:b1:b1:ea:20:95:0a:86:6e:
34:1d:9d:a1:0a:30:ea:4f:aa:c7:18:5a:ae:66:21:
f4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:18:52:0F:A8:24:9A:5A:7B:31:75:2F:83:3E:5A:23:86:E4:27:6F
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BB8DEE6C5CFA11EE8C1AA7404AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.34.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:59:50:01:a0:0f:76:c1:3f:51:5a:f3:e0:52:2b:17:f2:43:
88:52:d1:3c:c6:65:9d:94:dc:52:8e:76:80:c1:16:8a:d5:dc:
ef:3d:54:e0:68:f4:2b:34:84:c0:8c:05:9f:c7:03:57:e6:2b:
29:66:99:4b:a3:aa:b2:49:e8:d8:62:00:1e:14:42:4f:ff:5b:
4b:65:2b:13:cb:4d:b1:4b:77:6b:c0:81:dd:f3:8c:79:c6:7f:
ac:fd:2a:c0:63:7e:25:7c:bc:11:52:d5:65:90:92:66:4f:28:
8d:99:5d:98:a0:50:e6:21:2d:f1:0f:e4:56:2f:a0:5b:0c:2d:
42:7b:71:bc:2c:cf:bb:f3:b3:37:d9:7b:bd:86:2c:3d:ef:f8:
1e:ba:b7:fd:f7:81:90:56:f5:70:b6:11:fb:84:4f:9e:cb:24:
33:54:e0:6d:d8:96:63:23:0a:9a:bd:51:89:23:4a:0f:5b:e0:
12:53:d3:13:df:e2:ea:18:7d:59:9d:8b:9b:b4:1b:db:8a:11:
7c:6a:7e:ee:46:00:89:f4:c7:00:77:a9:c4:d5:74:65:55:8a:
49:54:ad:09:38:27:e1:1e:eb:41:3d:0b:77:d8:1c:9e:d0:e7:
9d:25:4d:72:df:7a:58:e2:a5:f2:38:fa:69:29:10:64:66:a2:
f4:df:7e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:04:07 2024 by rpki-client on console-ams.rpki-client.org