Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/FEEE7B1A3D9511EEB08AA2324AD9E6FC.roa
File: FEEE7B1A3D9511EEB08AA2324AD9E6FC.roa (raw, json)
Hash identifier: ypaeglWsIRc7oLFlaNkCvvCAhtMWd/qcEp1B2FbKe8o=
Subject key identifier: 3E:F5:34:E8:C0:CE:A1:56:49:9B:E4:ED:CC:6D:36:D9:8F:A4:B5:34
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0BA0
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/FEEE7B1A3D9511EEB08AA2324AD9E6FC.roa
Signing time: Fri 18 Aug 2023 07:08:13 +0000
ROA not before: Fri 18 Aug 2023 07:08:10 +0000
ROA not after: Sun 18 Aug 2024 07:08:10 +0000
asID: 203999
IP address blocks: 161.123.65.0/24 maxlen: 25
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2976 (0xba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Aug 18 07:08:10 2023 GMT
Not After : Aug 18 07:08:10 2024 GMT
Subject: CN=64df18dd-f65c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cf:94:3d:a5:1b:fb:bb:95:9f:fe:92:c6:8d:
c2:83:6f:44:3a:2b:3f:61:40:63:f3:2d:04:0a:99:
ae:f9:60:76:bf:ec:2b:b9:96:53:9f:9e:24:f7:1e:
d3:e5:a3:32:22:91:17:4c:5d:ae:dc:e2:06:4e:68:
0f:62:4e:2b:f1:66:4e:12:11:56:b1:dc:88:1c:b3:
7d:d7:96:7b:06:b8:95:7d:f6:1e:db:b5:69:9e:fe:
5e:fb:4c:3f:05:eb:7d:de:e5:04:1d:97:66:ae:15:
13:be:b7:71:d3:68:63:fc:98:17:6d:f3:3b:87:e0:
2e:55:e1:8b:7e:9e:51:fb:ac:a2:cf:0c:a3:c6:55:
ca:bb:50:4b:aa:2c:5b:ea:32:be:f2:b4:f4:11:4d:
85:61:67:d7:82:db:d8:1d:7b:12:13:e7:91:2a:8f:
10:d7:76:99:ae:fd:1c:ff:db:c5:73:6b:24:8b:2a:
24:cd:8f:fa:aa:46:c6:d3:44:ad:dd:84:87:50:5d:
c3:b2:df:4f:19:54:d5:43:f5:47:2f:7e:90:44:e3:
bf:e1:16:61:61:2e:2e:74:a0:66:28:cc:0f:b2:f9:
99:2a:8e:ae:df:7b:42:a5:16:d0:26:18:e1:6c:f0:
44:63:af:85:b6:f1:54:cf:3a:62:3d:18:c7:0e:a8:
e4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F5:34:E8:C0:CE:A1:56:49:9B:E4:ED:CC:6D:36:D9:8F:A4:B5:34
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/FEEE7B1A3D9511EEB08AA2324AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.65.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:dd:fc:e1:77:cf:97:77:2a:3c:9a:bf:11:9b:eb:5c:f5:77:
d1:63:27:6f:5f:84:6c:36:71:40:aa:0f:ba:7f:bd:09:d3:af:
d0:aa:70:c0:86:bc:92:37:17:69:07:48:41:9b:f9:de:33:6a:
9d:bc:b2:d5:22:c9:c6:8f:e8:57:47:50:19:22:a3:24:7a:d7:
dc:bb:c5:99:eb:db:4d:c4:dd:b4:7c:5b:fc:4a:37:dc:26:e3:
29:a2:f2:d9:e6:05:14:b6:9b:0b:d0:c5:ba:d6:7c:61:e8:76:
30:88:de:71:1c:e2:bb:29:c8:06:e4:1a:ae:f1:9f:65:a9:8d:
e3:1e:7a:fe:a2:8a:d4:a9:43:02:68:f0:da:95:97:d2:b3:f5:
6b:94:61:8b:d4:4d:be:a6:19:86:e7:c9:8e:27:0f:36:d3:5c:
42:3f:8b:94:d1:f0:29:50:4e:bc:83:3a:d0:64:db:5a:44:48:
cc:53:05:d7:9f:a7:7a:b7:56:06:a5:ac:b4:fc:bb:0b:08:2c:
eb:2a:80:cc:ef:75:d1:1a:b7:fe:62:ac:ab:67:42:28:f5:8a:
80:cc:76:2a:0d:e8:85:dc:80:72:24:e7:e6:9d:80:03:ed:79:
11:a5:a5:8a:24:b9:07:4c:66:23:62:c8:84:8a:f5:34:e5:30:
bf:cd:45:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:28 2024 by rpki-client on console-fra.rpki-client.org