Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3627A02/39577B2AB58E11E8B60A4064F8AEA228/673C61B4A88611ED9FE7EDD4F1222468.roa
File: 673C61B4A88611ED9FE7EDD4F1222468.roa (raw, json)
Hash identifier: m91FhF+zJneUBb3UfLyzUzRvHvpK/0b7/Z5lBS15Q2I=
Subject key identifier: 73:32:A7:80:84:6A:62:1F:5C:98:0B:85:05:AB:E4:0E:7F:2F:E6:9F
Certificate issuer: /CN=F3627A02AR/serialNumber=D6A4CEB250E1B89823C5AC439874D351F90C42E6
Certificate serial: 067E
Authority key identifier: D6:A4:CE:B2:50:E1:B8:98:23:C5:AC:43:98:74:D3:51:F9:0C:42:E6
Authority info access: rsync://rpki.afrinic.net/repository/arin/1qTOslDhuJgjxaxDmHTTUfkMQuY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3627A02/39577B2AB58E11E8B60A4064F8AEA228/673C61B4A88611ED9FE7EDD4F1222468.roa
Signing time: Thu 09 Feb 2023 14:31:13 +0000
ROA not before: Thu 09 Feb 2023 14:31:02 +0000
ROA not after: Fri 08 Feb 2030 14:31:02 +0000
asID: 37721
IP address blocks: 165.16.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3627A02/39577B2AB58E11E8B60A4064F8AEA228/1qTOslDhuJgjxaxDmHTTUfkMQuY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3627A02/39577B2AB58E11E8B60A4064F8AEA228/1qTOslDhuJgjxaxDmHTTUfkMQuY.mft
rsync://rpki.afrinic.net/repository/arin/1qTOslDhuJgjxaxDmHTTUfkMQuY.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1662 (0x67e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3627A02AR/serialNumber=D6A4CEB250E1B89823C5AC439874D351F90C42E6
Validity
Not Before: Feb 9 14:31:02 2023 GMT
Not After : Feb 8 14:31:02 2030 GMT
Subject: CN=63e503b1-c4d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d8:1a:b9:30:82:ae:01:82:48:c6:65:38:2e:
a4:c1:ee:7e:e3:b5:ed:e1:78:57:3d:66:62:4c:7a:
79:33:44:9e:0f:fb:43:eb:1c:4f:5b:56:ee:36:93:
70:4c:a6:16:36:0d:75:d1:ce:ca:f1:11:b4:f2:c3:
3b:c4:84:14:5d:71:37:4c:23:62:2a:05:1a:6f:f3:
9a:ae:5e:0f:96:c4:07:e5:d4:67:11:ad:19:a2:23:
d4:b4:86:a8:2b:9e:53:1d:54:9d:65:9c:c5:ec:2c:
b3:65:46:d2:66:e7:66:65:56:e4:ee:74:90:77:36:
a4:2b:c6:26:d4:b0:15:99:af:61:d5:35:07:8d:8e:
17:76:35:33:69:4d:8e:74:b4:0f:83:20:67:ee:1a:
9b:fd:38:72:bc:8e:2b:06:b5:cc:80:88:64:d9:73:
3a:a5:82:d2:08:19:48:c5:f6:c8:d3:53:64:09:54:
1f:81:ed:6c:69:9f:a3:ff:9a:fa:a8:1d:63:78:d4:
98:a4:e3:45:56:98:2d:17:5c:6d:c2:6b:bd:33:21:
ba:82:5e:ed:fb:66:20:00:d2:84:4f:a9:32:fc:af:
01:b3:8c:0a:8f:ab:b5:38:e2:50:6e:5a:78:f1:81:
f2:fd:f2:92:cc:4b:33:ea:84:a8:4e:8e:6b:1e:ae:
91:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:32:A7:80:84:6A:62:1F:5C:98:0B:85:05:AB:E4:0E:7F:2F:E6:9F
X509v3 Authority Key Identifier:
keyid:D6:A4:CE:B2:50:E1:B8:98:23:C5:AC:43:98:74:D3:51:F9:0C:42:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3627A02/39577B2AB58E11E8B60A4064F8AEA228/1qTOslDhuJgjxaxDmHTTUfkMQuY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/1qTOslDhuJgjxaxDmHTTUfkMQuY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627A02/39577B2AB58E11E8B60A4064F8AEA228/673C61B4A88611ED9FE7EDD4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.16.208.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:ae:06:d7:e6:db:16:7e:8c:37:86:94:fe:f7:ec:88:9a:03:
cc:2d:21:9e:ca:a9:bb:e4:06:72:7e:cd:49:65:75:3a:0f:6a:
cc:d5:fb:90:c8:34:69:77:58:02:0b:c4:ff:b5:6e:c8:f3:ff:
b6:ad:f4:3f:ca:dc:72:1e:6e:0e:ea:12:74:4b:19:04:7d:7a:
cd:7f:a3:60:ea:93:18:c5:92:2c:a5:a3:9d:2f:42:6d:4a:5e:
10:99:4a:2b:46:6b:39:f9:ee:70:94:15:01:1d:f7:6b:66:77:
9c:f2:5b:db:ba:02:d2:1b:b5:83:19:a6:60:74:18:b5:3c:4c:
7b:8c:32:8e:65:fc:81:a7:18:41:5c:ec:52:3d:b7:bc:07:c1:
f0:32:ed:95:96:f3:e9:fa:81:28:f5:9f:0c:b3:a8:d9:2a:ec:
8f:90:72:50:23:10:21:9d:53:ca:e7:63:41:28:b1:84:1b:d2:
09:e2:f4:e5:12:5d:3d:bc:1b:a3:1a:57:6a:a2:d6:8d:1b:00:
b0:fa:d9:d9:f5:88:fc:08:28:69:2e:a5:6d:31:f5:34:fd:b8:
00:e6:61:21:ca:1a:94:b8:1c:ba:02:a7:74:c3:ec:ed:50:f5:
3f:bb:8e:1a:15:d5:62:f6:66:bd:2e:ac:2b:24:f3:42:66:69:
2e:2c:c0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:51 2024 by rpki-client on console-fra.rpki-client.org