Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CFBDD3145C4D11EE94A353124AD9E6FC.roa
File: CFBDD3145C4D11EE94A353124AD9E6FC.roa (raw, json)
Hash identifier: 8Y3eJWoEAcTsnj4HfflM6owlSSBuZ6LGXoYbsaz2mBs=
Subject key identifier: EB:23:6B:6B:FA:4A:50:20:62:D3:08:D5:DA:12:62:EA:DC:50:8D:82
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0BF8
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CFBDD3145C4D11EE94A353124AD9E6FC.roa
Signing time: Tue 26 Sep 2023 09:19:36 +0000
ROA not before: Tue 26 Sep 2023 09:19:33 +0000
ROA not after: Thu 26 Sep 2024 09:19:33 +0000
asID: 203999
IP address blocks: 161.123.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3064 (0xbf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 26 09:19:33 2023 GMT
Not After : Sep 26 09:19:33 2024 GMT
Subject: CN=6512a228-fe08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ca:7a:03:55:a1:4c:90:8a:c9:31:b2:a7:aa:
72:d7:29:47:f6:a6:47:56:fd:d2:ea:b0:b2:3b:55:
e5:c9:6e:26:f0:05:af:fc:74:c3:d1:c0:d9:6e:a0:
04:37:24:ca:0f:bd:4c:ef:b4:77:59:62:fd:f4:7f:
98:28:8d:7e:ee:7a:b3:1c:e7:70:68:b8:90:bd:c3:
01:d6:7b:2d:40:d7:c0:0a:1a:9b:f4:5d:04:3b:48:
ea:f8:21:08:7b:da:c8:7f:b5:1e:49:c9:c9:0c:00:
4f:b1:cf:8a:98:af:6f:fc:07:52:b0:22:81:7a:62:
4b:69:c9:6c:e1:68:4c:f5:d1:12:de:6e:9a:15:49:
56:aa:44:23:98:65:a2:b3:7a:11:b3:29:90:21:52:
0c:df:ec:ca:73:a6:74:b1:0b:7d:51:e9:3a:5e:20:
03:50:a6:96:01:e1:dd:59:32:d3:99:ea:a5:ac:69:
84:2b:9e:ff:a7:12:41:6c:1c:35:1e:8c:b3:84:f6:
77:3b:70:c8:0e:c6:a5:69:37:9e:3e:d8:3b:58:de:
ba:a6:c1:c7:42:02:5e:75:08:1b:0a:b6:71:ea:c3:
65:50:85:c7:4b:44:bb:c4:db:e4:91:11:62:45:95:
11:a3:80:cb:8d:d1:be:e4:95:67:2a:de:d0:00:a7:
f1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:23:6B:6B:FA:4A:50:20:62:D3:08:D5:DA:12:62:EA:DC:50:8D:82
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CFBDD3145C4D11EE94A353124AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.56.0/22
Signature Algorithm: sha256WithRSAEncryption
20:d7:5d:9a:75:6b:9a:78:68:c4:22:de:db:ff:32:c7:95:0f:
5f:b7:8f:bc:fa:c2:cb:96:61:e6:09:4f:fd:9a:56:6e:01:26:
7b:d4:8b:eb:8c:dc:97:2f:49:b9:a7:7f:77:62:a3:7a:cb:7d:
66:94:94:da:19:ee:9f:3b:31:71:b0:9f:c1:e0:e1:98:68:8a:
d9:72:73:11:41:3c:5b:fb:95:fd:2f:36:51:f8:ed:ae:10:5b:
e0:4f:dd:14:3f:e2:9b:11:aa:32:8c:6d:b8:cf:64:34:66:b6:
e3:df:1c:e0:4a:eb:92:8e:bc:ab:db:f7:8e:91:bd:18:22:ed:
39:4f:78:b1:94:de:f1:af:f3:3b:29:f3:5e:df:78:51:5a:cc:
95:08:00:a0:dc:96:cf:e7:5b:ca:17:57:c6:0b:75:a2:53:75:
3a:bd:ce:0e:75:42:a4:60:32:cf:7c:24:5b:00:c2:b6:7f:a5:
f8:e0:f0:12:36:a3:4b:95:c3:df:46:9e:d3:94:3f:a7:39:c0:
3f:42:de:13:ca:d7:1c:3a:1f:ab:2f:38:bb:cc:09:bb:5c:52:
c9:79:60:ad:0d:ff:76:12:d2:7b:46:f5:e2:10:fc:51:b6:63:
4f:de:4b:9a:40:33:94:0c:6e:7a:77:34:9a:d0:c8:93:b7:b3:
e9:23:41:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:40:12 2024 by rpki-client on console-ams.rpki-client.org