Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/DF52896AD53711EE84074A73775412E6.roa
File: DF52896AD53711EE84074A73775412E6.roa (raw, json)
Hash identifier: uIa+9vsGlaMu/Injc/vzOUtcnqp2BVTquSWUrb4Yn00=
Subject key identifier: 43:03:C5:15:40:A5:A5:8A:2B:E4:CD:25:D0:7B:D4:3B:DC:EB:92:18
Certificate issuer: /CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Certificate serial: 018D
Authority key identifier: 93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
Authority info access: rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/DF52896AD53711EE84074A73775412E6.roa
Signing time: Tue 27 Feb 2024 06:17:24 +0000
ROA not before: Tue 27 Feb 2024 06:17:21 +0000
ROA not after: Wed 27 Feb 2030 06:17:21 +0000
asID: 202023
IP address blocks: 139.26.8.0/21 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.mft
rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397 (0x18d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Validity
Not Before: Feb 27 06:17:21 2024 GMT
Not After : Feb 27 06:17:21 2030 GMT
Subject: CN=65dd7e74-66ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8a:42:1f:25:32:4b:ec:5a:63:a0:72:cd:de:
7e:dd:48:cf:99:b4:81:82:55:8c:5f:b0:f4:2e:75:
67:9f:38:18:bd:50:4d:7d:60:15:77:3a:50:e7:59:
1f:be:12:b4:0b:ce:f7:19:96:8d:a9:48:34:85:c6:
21:f9:1a:48:91:54:36:55:20:cb:15:53:1f:c6:01:
fc:49:e5:98:3d:b3:6e:c3:26:d1:b6:d9:1b:76:da:
13:39:22:62:75:b6:0a:50:af:bf:e6:80:68:00:5a:
74:dd:52:5a:c1:6c:5e:f8:8e:0f:3f:b9:29:49:1c:
9d:b8:db:81:9a:a8:da:03:ae:ca:42:5d:94:fc:7f:
8b:38:81:39:64:10:ff:d1:85:66:5e:08:fb:a4:d2:
5b:76:a0:d8:39:71:b3:66:90:53:63:b8:bb:b1:15:
ff:b5:a5:c8:47:64:c0:82:d2:cf:10:40:d3:e3:48:
db:bd:3e:a8:99:d5:8a:aa:6b:01:0c:31:b9:85:24:
19:95:d0:58:c4:14:fd:b9:9d:f5:0a:f3:b8:e1:49:
04:a6:a2:f9:30:af:64:a4:10:e1:3e:b4:02:63:80:
21:af:02:0e:11:0c:c8:ee:e0:69:66:24:c0:3b:a7:
23:8a:ee:51:bb:5b:ba:67:3f:87:20:c8:6c:4e:56:
fc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:03:C5:15:40:A5:A5:8A:2B:E4:CD:25:D0:7B:D4:3B:DC:EB:92:18
X509v3 Authority Key Identifier:
keyid:93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/DF52896AD53711EE84074A73775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.26.8.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:f3:91:59:e4:13:bb:81:3d:b9:f5:e7:21:03:e0:4d:47:7e:
4c:b3:a3:3e:33:c7:ec:f0:4e:54:e1:b3:8b:de:28:58:f0:f4:
ab:83:8a:1b:ed:6a:a0:91:c7:07:6a:82:46:86:b4:56:fe:fa:
97:fb:23:f6:8a:0c:a4:69:18:60:42:4c:d2:70:93:6f:96:9c:
05:ef:5d:86:47:d1:47:1f:d7:49:42:ab:b0:46:09:25:38:34:
eb:c2:dd:55:69:54:b9:1c:c7:d2:6b:ba:63:06:a8:86:63:0c:
a7:7d:98:40:f4:d1:af:b4:61:41:ca:5e:3c:97:ea:bd:ad:25:
77:bf:c3:fe:64:5f:04:04:24:0a:0d:87:8e:35:29:79:7d:7e:
30:fd:b8:3c:66:64:93:b1:82:1c:1a:33:06:3b:54:ed:de:23:
af:24:00:0f:c9:71:7f:8c:5e:f6:b0:c3:15:f7:6e:80:30:85:
d7:93:fd:59:ac:75:46:2a:10:b1:1d:b9:ce:c5:fd:95:b2:29:
73:47:3d:81:a8:50:fe:19:1a:68:f4:e9:bd:e8:9d:a7:16:d8:
ca:05:00:1c:d8:13:f8:be:e1:4f:f4:1f:20:fd:69:75:fe:23:
fe:b3:a3:f7:01:06:45:ff:1f:dd:b7:e6:62:7c:26:24:40:e2:
36:b5:73:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:39:30 2024 by rpki-client on console-fra.rpki-client.org