Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/E4B0AF5CDD3B11EE8C72BDB4775412E6.roa
File: E4B0AF5CDD3B11EE8C72BDB4775412E6.roa (raw, json)
Hash identifier: 0arozNRt9JTjzBkDd/i9r9NcNES2kthw5/x77T8UhJo=
Subject key identifier: 99:B0:CB:C5:37:A0:8D:04:3B:22:22:E8:4A:96:33:B7:92:6E:D1:6A
Certificate issuer: /CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Certificate serial: 019D
Authority key identifier: 93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
Authority info access: rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/E4B0AF5CDD3B11EE8C72BDB4775412E6.roa
Signing time: Fri 08 Mar 2024 11:06:20 +0000
ROA not before: Fri 08 Mar 2024 11:06:17 +0000
ROA not after: Tue 05 Mar 2030 11:06:17 +0000
asID: 327697
IP address blocks: 164.160.68.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.mft
rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413 (0x19d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Validity
Not Before: Mar 8 11:06:17 2024 GMT
Not After : Mar 5 11:06:17 2030 GMT
Subject: CN=65eaf12c-1228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fe:75:cb:11:2c:17:b7:40:90:b2:7d:2f:b3:
a1:15:24:1d:f5:cb:54:11:98:ef:5a:fa:f8:53:84:
6c:cb:af:06:4a:a2:17:bf:c1:65:5a:b5:9f:b9:44:
e5:72:74:6b:cd:2d:10:f4:90:30:1c:7c:f8:bd:ee:
17:d2:99:35:4d:28:92:2f:82:5a:02:7a:e0:92:f9:
42:28:61:0e:e7:d0:8e:56:cb:3c:10:bc:6a:f9:38:
dd:26:7f:83:17:44:d5:01:83:fd:03:d7:e4:ff:be:
28:e9:b0:32:7d:78:5c:a7:8d:f8:10:90:14:3d:d8:
bd:f2:40:69:c4:3f:ae:84:3b:15:03:22:44:e0:63:
88:31:62:f4:f6:72:27:2a:b3:b8:9a:70:67:d5:77:
04:25:14:df:c9:76:b0:9e:a9:5f:18:e2:98:e1:32:
a3:20:af:8b:7d:bb:71:c3:2f:f1:26:89:37:3f:10:
3e:d7:57:9b:91:7d:81:c0:61:04:d2:21:66:ef:be:
21:48:03:95:0d:d8:0b:39:72:4a:eb:79:6a:8d:d6:
f3:63:57:33:d5:37:35:87:c5:49:ea:f4:78:4c:21:
a2:d3:4d:22:4a:89:bb:0a:c0:df:fc:53:99:28:34:
19:46:d7:bc:74:b9:23:99:1a:da:61:01:9a:df:19:
05:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B0:CB:C5:37:A0:8D:04:3B:22:22:E8:4A:96:33:B7:92:6E:D1:6A
X509v3 Authority Key Identifier:
keyid:93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/E4B0AF5CDD3B11EE8C72BDB4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.160.68.0/22
Signature Algorithm: sha256WithRSAEncryption
86:3a:c1:cd:07:f7:51:a6:99:92:e9:dc:62:07:41:87:90:3b:
2e:0a:01:9b:39:25:75:db:9e:02:73:64:88:f7:8f:02:1a:a5:
0d:f9:b2:35:f1:23:41:9c:93:8e:da:cb:0d:09:4c:91:dd:fb:
26:1b:ad:01:ad:13:f0:79:87:a2:f3:ce:f5:0e:55:d6:ac:55:
a2:e8:21:aa:af:f0:d8:c6:47:85:e1:5c:b5:ee:38:39:57:54:
57:d9:25:0e:36:fb:af:e2:a5:d2:e6:40:27:3f:f0:29:2e:3b:
5e:47:33:0f:a1:88:30:69:4b:d2:5b:b1:66:e3:b0:a7:4d:df:
27:15:c3:23:99:08:1a:4e:9a:87:ed:e5:0d:7f:07:4f:be:77:
0f:36:fc:92:41:52:0e:d6:b0:72:9c:9c:4c:c5:09:1f:44:de:
67:08:4a:ad:b7:1e:ef:80:dd:d5:d7:59:71:f5:22:e4:01:a4:
4f:71:da:7c:9b:ba:1e:5a:83:cb:0d:82:00:98:66:b3:83:7b:
5a:ed:8a:90:42:55:d1:b0:ac:79:25:2a:7f:ca:1a:65:38:f1:
30:fb:8e:2c:a7:a1:66:26:bd:cb:b7:27:0a:f5:7c:0c:3a:2e:
94:03:fa:4b:5b:46:e8:34:03:bb:31:68:01:85:a6:8c:00:44:
26:ad:12:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org