Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/6E453938F48311EDB007692C4AD9E6FC.roa
File: 6E453938F48311EDB007692C4AD9E6FC.roa (raw, json)
Hash identifier: 6UmL2U1CF16VvLS0MF8kuz7N6K+ydhEUoya31QtAFtE=
Subject key identifier: 62:A0:62:6C:82:FD:82:1E:BD:4C:71:B5:00:5C:77:69:95:E4:A0:F4
Certificate issuer: /CN=F363EA80AR/serialNumber=A3AAA0A9BA55CC7DD5F3C9DE77E99D75674094E2
Certificate serial: 28
Authority key identifier: A3:AA:A0:A9:BA:55:CC:7D:D5:F3:C9:DE:77:E9:9D:75:67:40:94:E2
Authority info access: rsync://rpki.afrinic.net/repository/arin/o6qgqbpVzH3V88ned-mddWdAlOI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/6E453938F48311EDB007692C4AD9E6FC.roa
Signing time: Wed 17 May 2023 07:21:25 +0000
ROA not before: Wed 17 May 2023 07:21:20 +0000
ROA not after: Tue 16 May 2028 07:21:20 +0000
asID: 19711
IP address blocks: 69.63.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/o6qgqbpVzH3V88ned-mddWdAlOI.crl
rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/o6qgqbpVzH3V88ned-mddWdAlOI.mft
rsync://rpki.afrinic.net/repository/arin/o6qgqbpVzH3V88ned-mddWdAlOI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363EA80AR
Validity
Not Before: May 17 07:21:20 2023 GMT
Not After : May 16 07:21:20 2028 GMT
Subject: CN=64648075-adb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:a6:1d:e8:4c:bd:75:25:ab:19:fd:64:19:
b5:4c:4c:94:5f:83:26:50:eb:ae:dc:bd:81:67:90:
d8:5d:56:ef:4a:5d:78:bf:41:6a:29:ba:7f:0a:c9:
74:96:0b:7a:1a:da:ce:c6:c7:a4:63:0a:ab:fc:f7:
1d:2d:cc:9d:6e:ec:0e:e7:97:9a:d5:44:7a:ae:b1:
60:b6:19:7d:76:7c:58:c0:27:8e:2d:51:f7:43:68:
52:dd:b5:27:c4:37:c7:cd:b7:11:aa:bc:e7:9d:6c:
ba:f1:8d:da:35:e4:35:a1:7b:1b:2e:67:2c:87:31:
1c:d4:71:b7:af:ba:3c:94:e6:76:fa:1e:9b:bb:9f:
4a:f5:4e:87:7d:5a:85:5a:80:9f:56:6c:51:2f:b3:
4c:31:9b:10:dc:44:95:ef:24:9a:71:1a:3b:3b:81:
98:67:62:db:8a:10:66:b5:80:15:17:cb:a4:f2:63:
11:18:cb:a7:95:6b:e1:a1:06:eb:22:7f:26:49:14:
76:46:f4:ff:27:45:f6:c8:00:5a:a3:45:d6:43:af:
3b:ba:6e:21:32:3b:b8:9c:fb:09:37:46:5b:e7:c4:
36:46:e7:c6:50:37:64:46:c8:d0:92:cd:1f:ba:8e:
f5:a1:e9:e0:f8:e6:71:b6:0a:88:d8:74:77:c3:53:
42:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A0:62:6C:82:FD:82:1E:BD:4C:71:B5:00:5C:77:69:95:E4:A0:F4
X509v3 Authority Key Identifier:
keyid:A3:AA:A0:A9:BA:55:CC:7D:D5:F3:C9:DE:77:E9:9D:75:67:40:94:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/o6qgqbpVzH3V88ned-mddWdAlOI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/o6qgqbpVzH3V88ned-mddWdAlOI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/6E453938F48311EDB007692C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
69.63.64.0/20
Signature Algorithm: sha256WithRSAEncryption
95:43:b5:90:21:84:04:2e:d6:2b:1a:60:15:60:e8:66:2b:d1:
49:66:2a:45:29:52:88:67:5f:1b:2d:57:50:ea:49:f0:e3:2f:
c0:ca:af:e6:7b:f9:7a:f4:2b:8a:42:74:1d:9f:43:1e:54:d4:
0e:0a:b7:b4:36:88:ec:42:8c:ce:bd:cc:72:cc:74:59:57:50:
e1:76:b4:5c:0e:24:24:59:e5:c5:f8:55:b7:d7:83:9c:02:48:
2d:05:bc:7c:2f:be:d8:9a:2e:ca:93:e8:ea:f4:dd:35:b2:ce:
96:e8:5d:3d:f7:d4:4c:2a:b5:b0:2c:7f:e4:ed:5a:bd:06:87:
64:ee:1f:d7:e4:de:17:ae:2c:f8:72:3b:61:ba:9b:4c:4a:a2:
5b:fa:71:c4:81:29:9b:a9:53:9e:b8:be:d3:05:0c:aa:0f:f8:
ab:1e:41:c9:00:0c:e6:04:dd:98:95:79:6c:fa:76:a6:3b:13:
a2:25:21:d0:0c:b2:44:8d:c9:d9:01:d7:9c:9a:95:17:0f:7c:
a5:de:b9:7b:de:31:20:3d:c2:33:8a:44:2b:00:ab:84:40:c2:
55:ab:6c:86:da:ae:18:eb:99:f5:7e:8e:7a:6e:f2:f5:39:4c:
1d:de:50:07:4c:e1:84:af:aa:6d:6a:1f:1a:01:1b:b0:67:96:
f5:4b:a9:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:31:40 2025 by rpki-client