Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/DD9EDDE45DE611EEADE74F314AD9E6FC.roa
File: DD9EDDE45DE611EEADE74F314AD9E6FC.roa (raw, json)
Hash identifier: eShq/YuvurdBph76p6ul7JJPK2VIXWalkY0qDkKjZHA=
Subject key identifier: F9:17:DB:7A:83:DF:49:63:FD:43:3A:97:E4:D1:9E:EC:86:10:7E:5A
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C2B
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/DD9EDDE45DE611EEADE74F314AD9E6FC.roa
Signing time: Thu 28 Sep 2023 10:07:44 +0000
ROA not before: Thu 28 Sep 2023 10:07:40 +0000
ROA not after: Sat 28 Sep 2030 10:07:40 +0000
asID: 203999
IP address blocks: 161.123.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3115 (0xc2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 28 10:07:40 2023 GMT
Not After : Sep 28 10:07:40 2030 GMT
Subject: CN=65155070-41fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b9:aa:71:5f:ea:cb:7a:c8:95:2b:4f:22:25:
6b:e9:91:28:98:6b:ae:eb:37:99:c3:44:8a:55:22:
ff:6e:6e:8b:ce:e7:dc:7c:07:5e:c1:12:a1:e2:fc:
92:e2:49:43:09:2e:00:f4:cb:43:c5:99:16:21:48:
5a:a2:0a:4f:fc:f1:63:4b:a7:0f:f1:4e:57:3b:ee:
4a:e3:48:de:ab:1a:b3:4d:2a:00:7f:c2:16:a7:bf:
65:8d:dd:bb:7c:c8:7d:5c:87:57:82:ee:d1:b5:5a:
d2:69:8e:ab:4a:4b:5d:e4:af:b4:9b:16:74:af:82:
d4:ea:ee:80:02:a1:ea:28:d8:b5:6a:98:71:5d:88:
8f:f4:09:a4:00:4a:20:af:40:a0:c5:c7:5d:54:6d:
b5:32:1c:29:04:87:1c:dc:8d:bd:ab:94:e1:4b:06:
18:18:10:e5:7f:e2:ec:ad:6c:76:c5:2f:38:76:0c:
45:55:2f:44:a5:bd:fa:1f:26:1a:41:90:c2:6c:f6:
01:79:8c:4c:21:a5:47:6c:5b:0c:1d:31:af:db:5c:
ee:21:50:e1:2c:93:ba:52:8f:3a:7f:ea:15:00:63:
41:5d:27:9b:de:11:92:32:eb:98:24:cf:55:37:60:
58:59:58:9a:b6:f2:71:57:87:bb:f2:a5:c0:1c:32:
92:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:17:DB:7A:83:DF:49:63:FD:43:3A:97:E4:D1:9E:EC:86:10:7E:5A
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/DD9EDDE45DE611EEADE74F314AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.5.0/24
Signature Algorithm: sha256WithRSAEncryption
be:ef:ae:49:ac:dd:1a:3f:64:3a:9e:87:71:3f:8f:7f:1d:0f:
04:e0:9c:cc:ef:d3:67:fd:09:e3:94:76:e4:7f:ec:04:08:e6:
e8:ff:78:11:b2:a1:b7:55:ce:9e:cb:88:f7:6d:18:0b:0f:1d:
8e:b3:65:57:81:15:93:37:66:1d:ab:7d:de:54:8f:2d:f8:64:
17:6c:aa:9c:5f:fd:67:b6:91:1c:72:7c:74:d8:de:6e:c3:e2:
b7:09:df:e4:48:c8:2a:86:65:36:8d:6c:42:61:60:de:44:ba:
a0:99:62:22:25:74:9c:7e:68:83:7f:62:0e:b1:fb:06:0b:53:
d9:0f:d1:00:2e:fd:f4:83:e3:03:db:70:61:53:59:51:d3:9e:
ad:b0:82:a5:83:16:47:36:b6:d8:de:1d:39:16:19:9a:5e:76:
2e:c4:60:d2:97:62:96:32:90:ff:b3:80:ca:e4:b7:99:ca:58:
fd:7c:a0:67:c3:ce:a4:f1:1e:48:c4:8b:fd:10:1c:0a:d6:07:
7d:91:da:fe:f8:2a:43:47:fe:05:99:ca:8d:63:20:ae:8a:84:
ba:8c:5a:15:ba:75:3b:04:fd:9d:3f:46:3f:b7:8d:05:a3:36:
84:10:0e:a7:4d:6f:91:da:57:98:76:d9:13:94:44:3c:2d:34:
b5:98:a0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:40:12 2024 by rpki-client on console-ams.rpki-client.org