Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/64C2AA52D53411EEB69B076E775412E6.roa
File: 64C2AA52D53411EEB69B076E775412E6.roa (raw, json)
Hash identifier: ApnKXgX4qtwCc4Ec2u4PHGuX3hUujQ6rhZ5C7rafC04=
Subject key identifier: B1:D2:BD:19:47:31:92:6D:60:1B:CB:8F:3C:03:A7:88:ED:EB:2A:DB
Certificate issuer: /CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Certificate serial: 0189
Authority key identifier: 93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
Authority info access: rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/64C2AA52D53411EEB69B076E775412E6.roa
Signing time: Tue 27 Feb 2024 05:52:30 +0000
ROA not before: Tue 27 Feb 2024 05:52:27 +0000
ROA not after: Wed 27 Feb 2030 05:52:27 +0000
asID: 202023
IP address blocks: 139.26.0.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.mft
rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393 (0x189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Validity
Not Before: Feb 27 05:52:27 2024 GMT
Not After : Feb 27 05:52:27 2030 GMT
Subject: CN=65dd789e-711c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2f:cf:89:a4:7f:72:d2:a7:8f:b0:b6:c8:be:
a6:5e:98:11:0d:ee:74:2a:ad:23:d4:81:e5:4f:00:
e7:d9:1b:ba:b0:8d:b9:1c:a8:1b:6c:a6:5b:da:2e:
fd:7b:d5:90:54:be:e1:53:c5:c6:1a:0e:da:ae:6a:
d4:c3:3f:27:c3:e9:8d:4f:27:06:28:ca:93:fa:ed:
57:ab:80:69:c8:00:c5:5b:85:b6:d2:ce:38:56:f4:
12:75:57:ac:44:0e:37:6f:9c:34:33:8a:62:0b:c4:
23:ea:dd:10:da:dc:81:fe:3b:c4:af:e2:bd:f1:37:
4a:5b:b5:89:61:4d:d1:09:96:6e:43:87:d0:ed:ea:
e6:54:98:c7:99:71:88:b2:b3:62:ac:f0:ad:26:09:
ba:e7:76:55:6c:91:d4:52:83:d7:cf:8c:db:1a:3d:
4b:5d:c2:06:00:bf:d1:6b:24:26:e1:24:02:2a:43:
38:8c:8e:60:75:1c:b2:fb:35:b3:86:98:18:4c:1c:
16:97:48:5c:1f:a2:ba:f7:c6:c3:09:47:cb:0b:e6:
06:09:b6:50:26:9c:6a:f2:60:55:ba:f8:29:0c:f8:
41:cb:b0:df:81:4b:d1:52:33:e7:8f:b0:ba:44:a7:
f8:3d:1d:31:0c:d7:ff:a3:aa:d3:2e:f0:7c:3f:2d:
89:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D2:BD:19:47:31:92:6D:60:1B:CB:8F:3C:03:A7:88:ED:EB:2A:DB
X509v3 Authority Key Identifier:
keyid:93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/64C2AA52D53411EEB69B076E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.26.0.0/17
Signature Algorithm: sha256WithRSAEncryption
2a:f6:1b:66:4f:4e:d1:1e:73:5a:9a:74:a0:46:31:82:fb:ad:
6f:e8:bf:dc:80:5c:ff:ee:b2:a0:9f:6e:0e:e2:ff:2a:18:84:
89:74:ce:a4:3e:46:aa:9b:83:ff:8d:96:9d:6b:49:6f:54:f2:
5f:bb:e3:0d:48:b8:e3:dd:a4:7a:fb:3f:a2:98:a5:fe:41:87:
3a:50:2f:df:2d:bd:f7:5b:c4:12:42:e9:2f:5c:2d:52:5c:5a:
30:65:3f:87:86:a3:ca:f0:3b:0c:da:8c:24:dc:df:50:cf:cc:
eb:79:a5:fd:7c:8c:5b:39:45:e4:21:88:91:e5:1d:b4:85:f9:
43:b7:46:4d:d3:e9:5a:12:01:43:d6:ec:31:a6:9e:d4:95:a7:
82:cd:7c:2c:27:9a:46:58:da:aa:ff:be:04:94:3d:1f:ae:ff:
20:66:68:c8:95:74:fe:ba:55:99:02:43:8d:0d:8f:18:ce:c3:
92:a1:3b:47:fb:55:b6:53:3d:2e:fe:e6:68:18:4f:e9:3f:71:
54:01:15:de:3f:99:50:2a:69:48:db:3b:a7:75:c1:d3:bb:68:
b8:45:e4:9a:ae:dc:c1:1b:81:60:bb:9b:9f:a1:0f:e7:26:0a:
2a:8f:06:65:92:2b:bc:55:c3:40:14:00:6c:7b:f0:95:a6:4c:
83:8b:e6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org