Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3620ACF/08A5FF82C21611EB8AA9356EF8AEA228/8B60EA52155611EC8AC0712FD8A014CE.roa
File: 8B60EA52155611EC8AC0712FD8A014CE.roa (raw, json)
Hash identifier: ufx3nbeHn5LIxNhzFCsFv+TFwX/35OEeaIqSDK5cW6k=
Subject key identifier: 0C:00:F4:CF:1E:B7:69:80:67:82:29:50:68:33:20:DB:A3:95:1E:B3
Certificate issuer: /CN=F3620ACFAR/serialNumber=5887700C5F2490F5584382F9E7E7526AD65548B3
Certificate serial: 7B
Authority key identifier: 58:87:70:0C:5F:24:90:F5:58:43:82:F9:E7:E7:52:6A:D6:55:48:B3
Authority info access: rsync://rpki.afrinic.net/repository/arin/WIdwDF8kkPVYQ4L55-dSatZVSLM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/08A5FF82C21611EB8AA9356EF8AEA228/8B60EA52155611EC8AC0712FD8A014CE.roa
Signing time: Tue 14 Sep 2021 12:23:19 +0000
ROA not before: Tue 14 Sep 2021 12:23:16 +0000
ROA not after: Wed 30 Apr 2031 12:23:16 +0000
asID: 327750
IP address blocks: 45.221.216.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/08A5FF82C21611EB8AA9356EF8AEA228/WIdwDF8kkPVYQ4L55-dSatZVSLM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/08A5FF82C21611EB8AA9356EF8AEA228/WIdwDF8kkPVYQ4L55-dSatZVSLM.mft
rsync://rpki.afrinic.net/repository/arin/WIdwDF8kkPVYQ4L55-dSatZVSLM.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 May 2024 00:16:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123 (0x7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3620ACFAR/serialNumber=5887700C5F2490F5584382F9E7E7526AD65548B3
Validity
Not Before: Sep 14 12:23:16 2021 GMT
Not After : Apr 30 12:23:16 2031 GMT
Subject: CN=61409437-7677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:68:c2:6e:d6:ea:bd:56:92:46:af:a5:b0:ec:
0e:e6:8f:c8:b4:7d:e1:7f:75:ba:40:9c:60:98:44:
39:84:98:ae:9b:1e:15:ae:9b:18:59:cf:d4:50:45:
29:82:0e:5c:26:ef:4b:c7:c4:18:93:af:3e:d9:5c:
fa:53:7e:00:85:2d:6f:0b:22:ba:be:f2:42:04:a1:
64:24:15:28:78:9c:61:aa:c4:89:1a:a9:7f:d5:cd:
69:0f:24:0a:74:b0:c3:36:fc:c7:ff:6c:6b:fc:12:
a1:eb:56:52:64:ab:b7:e0:f7:38:09:be:76:e4:a5:
17:0a:5d:6c:b5:6a:77:e2:8b:38:0f:d4:d4:ec:49:
f6:c5:d3:e4:b5:59:38:ae:cf:24:e9:65:02:b1:31:
af:4a:4b:50:50:f5:89:7a:89:2b:f4:8c:2f:af:11:
40:bb:4b:17:35:c7:15:5b:91:e2:0f:86:3f:00:1d:
69:18:4f:e2:28:57:20:2f:2a:63:ed:b4:38:19:e4:
39:16:03:1e:d2:86:e5:de:3c:d6:7c:a5:43:b3:54:
96:10:4c:ef:f0:a3:27:d3:cc:4e:82:5f:a5:1b:7a:
5f:89:82:10:3e:74:b5:a1:9e:10:33:f0:e3:99:13:
a3:6d:38:0e:46:4e:5b:c4:92:c6:f3:14:cf:67:01:
09:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:00:F4:CF:1E:B7:69:80:67:82:29:50:68:33:20:DB:A3:95:1E:B3
X509v3 Authority Key Identifier:
keyid:58:87:70:0C:5F:24:90:F5:58:43:82:F9:E7:E7:52:6A:D6:55:48:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/08A5FF82C21611EB8AA9356EF8AEA228/WIdwDF8kkPVYQ4L55-dSatZVSLM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/WIdwDF8kkPVYQ4L55-dSatZVSLM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/08A5FF82C21611EB8AA9356EF8AEA228/8B60EA52155611EC8AC0712FD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.216.0/21
Signature Algorithm: sha256WithRSAEncryption
53:d6:e6:19:d9:6c:cb:44:58:a7:22:ad:55:23:cf:09:da:91:
58:7b:7b:5c:72:db:36:21:ad:86:cb:de:e4:f0:60:a3:26:a5:
a4:36:78:15:38:54:e1:86:c8:e5:9e:2e:ab:2f:b1:04:a0:84:
db:2b:91:93:6d:28:e1:3e:91:26:c6:2a:48:28:96:f0:63:14:
ef:a3:d1:25:bf:96:47:01:bf:d1:27:52:96:c7:b8:ad:44:8b:
2c:b7:80:c2:1c:76:1f:7c:b5:a4:d7:e1:8b:80:4c:a6:06:37:
bb:9e:8b:e1:6f:f0:e5:b2:e7:d8:48:cc:be:21:e4:37:38:77:
8a:1b:46:e9:74:71:9a:6c:b2:f2:cd:0c:f5:f7:a2:73:5b:8e:
04:e6:14:1e:c4:3e:6f:53:1c:0a:42:02:82:7b:84:0e:4c:82:
83:c4:ae:11:50:70:33:0a:79:11:eb:7b:99:1a:a9:c2:59:1e:
18:04:9e:82:a5:5e:ed:36:9e:97:81:17:90:ef:bd:11:6c:e7:
bc:83:bf:a7:ba:d5:2d:1a:2f:c9:83:dc:e0:ef:74:20:e0:56:
eb:f4:d8:17:8d:b4:c1:70:03:de:96:a5:74:75:e6:9c:a3:c8:
0e:70:11:23:d5:1a:7a:68:13:b9:1f:59:14:c1:50:be:7e:a1:
df:14:42:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 04:39:24 2024 by rpki-client on console-fra.rpki-client.org