Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/E8821DF040BF11EEA12EBB394AD9E6FC.roa
File: E8821DF040BF11EEA12EBB394AD9E6FC.roa (raw, json)
Hash identifier: r7Z+Iwp8+jGToFipBpwK2R/Fh1n+H5b4CCpAJloedOc=
Subject key identifier: E7:3C:E4:86:7F:22:33:2D:D1:13:B0:44:7B:34:E4:EA:0D:66:80:C4
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0BCC
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/E8821DF040BF11EEA12EBB394AD9E6FC.roa
Signing time: Tue 22 Aug 2023 07:45:48 +0000
ROA not before: Tue 22 Aug 2023 07:45:45 +0000
ROA not after: Thu 22 Aug 2024 07:45:45 +0000
asID: 207990
IP address blocks: 161.123.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3020 (0xbcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Aug 22 07:45:45 2023 GMT
Not After : Aug 22 07:45:45 2024 GMT
Subject: CN=64e467ac-f3f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b2:e1:21:09:81:95:86:fb:d1:c4:f0:7f:ef:
dd:d3:cc:72:51:ea:ac:a7:5b:d6:84:a8:67:ac:77:
04:cb:3a:47:ed:89:5a:f4:a2:44:69:c8:5c:c5:fd:
3c:70:04:02:62:cd:bf:6c:ce:76:fd:4a:07:66:77:
83:f8:31:5c:0d:af:10:f9:84:c3:70:01:a9:b6:d3:
65:6f:3a:91:6f:37:4c:9c:1b:c1:37:84:60:2a:5a:
27:d3:69:29:01:cc:ee:e9:0a:26:3e:88:5f:3a:e2:
3c:94:c7:7e:9c:88:9f:65:0e:83:d1:9a:a7:da:68:
a0:ad:27:9a:76:a4:bf:ac:9d:3f:43:c8:2c:b0:7a:
50:10:89:3c:56:13:40:f3:a5:e2:26:d3:24:55:ac:
3b:9c:38:18:0b:ff:77:e6:b5:be:7a:81:ec:d6:86:
02:be:4d:b2:f6:c3:2f:f1:33:59:1f:87:86:b3:89:
54:8a:e5:98:67:bb:9c:42:ca:26:4a:e0:e6:4f:04:
fb:25:4d:ee:c7:3e:85:5f:5c:f8:9f:af:0a:8c:aa:
ff:8b:16:64:5e:46:8c:6d:33:03:a6:91:61:bf:e1:
2a:e2:57:22:f2:60:48:50:8e:27:b2:47:8b:b4:2a:
31:51:d5:46:50:b5:f1:68:1e:04:87:31:90:b7:5b:
fd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3C:E4:86:7F:22:33:2D:D1:13:B0:44:7B:34:E4:EA:0D:66:80:C4
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/E8821DF040BF11EEA12EBB394AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.228.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:2c:fd:b9:58:4d:4e:a4:89:59:7d:82:7f:eb:10:92:2b:26:
67:b2:b1:1c:c5:fd:dc:3a:8e:fb:8b:2f:d0:8f:f9:91:f4:b2:
29:0a:21:97:79:4c:46:71:31:a6:0e:d3:40:22:97:c5:ca:ab:
fe:ba:7e:68:65:a1:15:5b:72:9a:bc:c5:35:01:39:01:54:0d:
e2:40:c5:5c:81:e6:aa:6b:40:38:af:53:a4:1e:aa:80:d4:38:
a0:69:3c:48:0d:48:d7:ea:11:fe:a4:fd:5e:4d:06:5e:9e:8e:
89:90:63:7f:6c:5b:4a:83:da:78:c6:de:41:43:cb:a7:d1:6b:
a4:7b:54:2a:28:d5:34:86:7c:37:20:43:6a:78:c2:a3:4b:4f:
39:73:a1:16:36:b9:aa:a5:a6:ee:0c:68:ac:de:f5:17:37:07:
3f:48:b9:53:48:bc:3a:53:36:97:e0:26:ef:11:4f:ae:f3:f5:
4f:48:4a:0c:23:23:7d:1b:f7:e6:51:7a:23:43:60:cc:34:60:
63:1e:eb:ae:a4:c9:07:21:54:36:67:c0:9d:a6:c9:69:05:54:
ff:e8:1e:88:ec:c0:4a:0b:7e:d7:63:51:18:16:ee:7e:7d:f9:
13:f2:f6:3c:6d:8e:fb:58:59:86:32:7b:00:8b:24:bf:fb:30:
fe:06:7b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:28 2024 by rpki-client on console-fra.rpki-client.org