Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/ED072BBEC7F511EEAE167CA7775412E6.roa
File: ED072BBEC7F511EEAE167CA7775412E6.roa (raw, json)
Hash identifier: SzRG68dc82t4Ds0BiBiKCKfXQdbygv24YE6FK8iab/0=
Subject key identifier: 5B:B4:B6:DC:45:1C:97:0C:A2:E1:9A:5B:55:F7:14:88:CD:C9:B1:DF
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D30
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/ED072BBEC7F511EEAE167CA7775412E6.roa
Signing time: Sat 10 Feb 2024 09:22:36 +0000
ROA not before: Sat 10 Feb 2024 09:22:32 +0000
ROA not after: Mon 10 Feb 2031 09:22:32 +0000
asID: 50028
IP address blocks: 161.123.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3376 (0xd30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Feb 10 09:22:32 2024 GMT
Not After : Feb 10 09:22:32 2031 GMT
Subject: CN=65c7405c-5906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3c:bc:af:c6:d5:dd:96:9e:ed:23:a5:51:f6:
62:3c:af:bc:2e:8d:80:07:e5:04:ee:d0:9b:dc:19:
e0:d3:11:06:2d:09:60:c1:aa:84:64:b7:c0:93:5f:
b4:ef:6a:62:1d:d0:4f:5c:4b:c2:27:c6:63:4b:17:
06:60:cd:96:5f:df:9c:87:b3:36:cb:8e:9e:e4:7a:
35:d8:57:90:5d:4a:9f:f3:73:0a:6b:ff:41:65:ca:
cc:9a:e6:9e:3c:d3:27:c2:a0:29:3f:42:99:af:f2:
ea:2c:ed:b1:8d:16:af:d3:29:b1:52:e9:f5:f4:cf:
77:8a:01:65:9a:73:64:40:6c:18:6f:fe:96:94:61:
77:62:37:7a:65:5f:73:4e:3f:f5:e6:82:d5:0e:7c:
dd:0b:a3:44:48:37:2b:83:a3:8b:ac:87:9d:e6:5d:
17:d3:fe:79:34:e8:dc:3a:c4:b5:14:70:66:76:4c:
b2:4b:82:a5:94:04:cb:22:23:00:19:7a:12:74:d6:
cb:74:d8:95:a5:8a:1d:a7:ee:6b:29:fe:53:3c:55:
ad:03:1f:d8:73:22:d2:c3:b6:fd:c1:cb:c6:87:7f:
78:68:58:56:c1:a7:f5:a3:aa:4c:c6:25:00:7d:8e:
1b:e9:7c:2b:31:9d:75:3f:df:3b:d0:39:84:69:ee:
61:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B4:B6:DC:45:1C:97:0C:A2:E1:9A:5B:55:F7:14:88:CD:C9:B1:DF
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/ED072BBEC7F511EEAE167CA7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.35.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:8b:ab:a7:69:eb:53:05:dd:f5:77:e6:61:c3:ef:44:34:1a:
7d:e4:8c:ac:28:65:f0:4c:be:b8:da:7e:9e:cc:2f:1a:e0:a8:
e0:f0:d8:a0:bc:c0:b2:4e:f6:d4:ea:db:22:17:80:04:48:b5:
a0:e4:ca:44:33:37:7a:45:82:8f:d7:5b:0d:8c:eb:17:8e:ca:
df:36:49:1b:e4:a8:d8:0a:c7:ab:03:4e:9d:66:5e:1f:75:fa:
a7:03:fb:bf:7f:42:f5:5f:1e:ea:15:8a:ee:83:3f:67:1f:4b:
22:30:94:34:7c:68:d6:53:51:a5:42:48:03:56:5f:6d:da:f6:
2e:25:8f:18:dc:c4:71:b2:91:89:1e:a9:6a:c3:6b:ea:2c:87:
cb:7d:4e:cf:b4:1b:75:53:37:d4:dc:ab:88:04:3e:bd:cd:e8:
e8:54:f2:1d:3b:a3:36:24:d1:18:71:c0:05:b8:ba:8c:92:aa:
3c:25:e7:7a:93:95:29:b9:bc:e0:fd:b7:7e:6b:9f:25:55:61:
8b:65:35:48:e9:d5:45:1f:d9:68:89:aa:f5:96:bf:fd:e6:f9:
8b:ba:24:df:44:5c:a8:0d:46:7c:64:5c:32:77:a0:aa:d0:7e:
ec:0c:7b:df:57:a9:99:58:a1:c9:9b:40:b7:e1:93:63:36:fc:
e1:9b:fe:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:53:22 2024 by rpki-client on console-fra.rpki-client.org