Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/3C9D717C95C511EA8EB1CC21F8AEA228.roa
File: 3C9D717C95C511EA8EB1CC21F8AEA228.roa (raw, json)
Hash identifier: a3fWgu+QSHhts8yxRZGP8ndOdb8eKJMllQQuUJUijfA=
Subject key identifier: D6:38:6C:54:BC:A9:FD:44:AA:3C:6C:3C:57:52:BC:9A:AB:B1:07:00
Certificate issuer: /CN=F363520FAR/serialNumber=8A99E3854604A21AADCF66518E4B59FE8A13A206
Certificate serial: 1C
Authority key identifier: 8A:99:E3:85:46:04:A2:1A:AD:CF:66:51:8E:4B:59:FE:8A:13:A2:06
Authority info access: rsync://rpki.afrinic.net/repository/arin/ipnjhUYEohqtz2ZRjktZ_ooTogY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/3C9D717C95C511EA8EB1CC21F8AEA228.roa
Signing time: Thu 14 May 2020 09:28:15 +0000
ROA not before: Thu 14 May 2020 09:28:11 +0000
ROA not after: Sat 01 Jun 2030 09:28:11 +0000
asID: 37611
IP address blocks: 165.73.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/ipnjhUYEohqtz2ZRjktZ_ooTogY.crl
rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/ipnjhUYEohqtz2ZRjktZ_ooTogY.mft
rsync://rpki.afrinic.net/repository/arin/ipnjhUYEohqtz2ZRjktZ_ooTogY.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363520FAR/serialNumber=8A99E3854604A21AADCF66518E4B59FE8A13A206
Validity
Not Before: May 14 09:28:11 2020 GMT
Not After : Jun 1 09:28:11 2030 GMT
Subject: CN=5ebd0f2f-c043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4d:59:b2:4e:24:13:32:ff:86:a3:c2:58:9a:
79:b6:b6:bd:58:fc:92:1a:97:c0:0b:6d:fb:89:98:
cf:eb:c5:82:ab:81:22:cf:1a:54:ec:7d:aa:e0:1c:
81:d8:e3:5a:68:3d:40:74:84:07:cb:05:22:13:08:
03:a9:ee:df:91:ce:c1:f3:8a:8c:e5:c4:69:d7:90:
fb:0a:76:b7:35:90:5e:a6:4d:c1:20:8d:c2:24:cf:
ca:52:9d:53:93:e3:bd:73:fd:92:73:e1:d9:6b:35:
3b:2e:fd:7a:ca:0f:bd:f5:d8:d3:6a:65:7f:57:95:
4f:da:63:6b:48:d6:f9:f6:42:9b:54:f1:03:c6:27:
f5:24:b6:61:00:a9:9d:23:47:9c:0a:48:3d:89:cf:
39:b2:f2:79:50:ef:43:af:2a:cd:4d:ef:db:25:79:
79:c9:23:64:d0:71:94:ac:f3:81:ae:88:3f:04:8b:
c2:a7:ad:95:47:d9:f2:85:6e:01:76:69:f4:62:dc:
81:6d:f5:fa:1e:e8:51:3c:47:80:b1:60:62:a5:49:
c1:ad:b5:b8:85:99:be:55:54:86:88:ea:3c:7a:b3:
f0:12:5c:93:4a:5c:c0:b2:e9:e8:cc:4f:c7:ac:60:
e7:5f:8d:10:18:77:6a:c7:06:05:9e:e9:a2:c4:86:
38:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:38:6C:54:BC:A9:FD:44:AA:3C:6C:3C:57:52:BC:9A:AB:B1:07:00
X509v3 Authority Key Identifier:
keyid:8A:99:E3:85:46:04:A2:1A:AD:CF:66:51:8E:4B:59:FE:8A:13:A2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/ipnjhUYEohqtz2ZRjktZ_ooTogY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ipnjhUYEohqtz2ZRjktZ_ooTogY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/3C9D717C95C511EA8EB1CC21F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.73.14.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:4f:87:90:30:dd:0d:e7:22:87:0c:b3:77:5e:46:8c:97:6b:
52:95:db:60:d4:25:bc:03:15:aa:27:11:25:7d:a7:26:d9:bf:
fc:56:5e:70:d1:46:1c:75:18:3a:67:bb:23:19:e3:06:b2:e6:
8d:21:21:b2:00:97:a8:4e:d4:fc:16:bf:19:68:33:87:72:c9:
99:5b:27:3f:f5:e1:b3:eb:e8:c6:c4:35:3a:7f:d5:95:8f:4f:
88:fe:2d:ef:e3:46:25:ef:a5:54:8c:94:ea:2c:4a:7c:ba:55:
77:76:7b:6e:54:74:a0:ee:a0:4c:5d:aa:7a:46:70:10:5e:24:
aa:82:fc:5d:97:de:0e:15:e7:c0:a4:1d:c0:df:c2:8b:3e:65:
68:e2:cd:5a:e5:ea:16:10:70:aa:05:fd:3a:25:86:ed:4d:e8:
a4:7f:60:da:ee:99:4b:96:c4:a3:f3:80:a1:fb:5f:c9:18:c6:
92:26:58:e7:b0:72:e2:a3:e1:2a:39:0c:4f:5b:52:f7:95:5c:
ec:58:5e:d6:8e:72:d4:0f:4f:20:bf:c6:02:ef:38:e4:10:2c:
a3:e5:77:25:f6:73:84:76:37:80:d6:b3:bd:64:e4:15:cb:55:
f9:13:11:8c:3f:82:24:84:2b:d2:d7:73:c9:71:72:5e:66:19:
4d:d3:a8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:00:52 2024 by rpki-client on console-ams.rpki-client.org