Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36432B6/0E94184AB75911EDA15F2C90F1222468/A7241FC4B75911EDB11FDD91F1222468.roa
File: A7241FC4B75911EDB11FDD91F1222468.roa (raw, json)
Hash identifier: h0BMJM2WpbjnNI4EegiMeFnSwDTlXkWV4KVnFiOoo78=
Subject key identifier: 7D:F7:F7:24:EE:B7:72:2F:36:C2:D1:9A:36:57:1D:67:E2:ED:79:8A
Certificate issuer: /CN=F36432B6AR/serialNumber=6EA98013EE10BFB53A30273B6C4CFB5ECE74618B
Certificate serial: 02
Authority key identifier: 6E:A9:80:13:EE:10:BF:B5:3A:30:27:3B:6C:4C:FB:5E:CE:74:61:8B
Authority info access: rsync://rpki.afrinic.net/repository/arin/bqmAE-4Qv7U6MCc7bEz7Xs50YYs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36432B6/0E94184AB75911EDA15F2C90F1222468/A7241FC4B75911EDB11FDD91F1222468.roa
Signing time: Tue 28 Feb 2023 11:18:40 +0000
ROA not before: Tue 28 Feb 2023 11:18:29 +0000
ROA not after: Thu 28 Feb 2030 11:18:29 +0000
asID: 36992
IP address blocks: 156.160.0.0/11 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36432B6/0E94184AB75911EDA15F2C90F1222468/bqmAE-4Qv7U6MCc7bEz7Xs50YYs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36432B6/0E94184AB75911EDA15F2C90F1222468/bqmAE-4Qv7U6MCc7bEz7Xs50YYs.mft
rsync://rpki.afrinic.net/repository/arin/bqmAE-4Qv7U6MCc7bEz7Xs50YYs.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36432B6AR/serialNumber=6EA98013EE10BFB53A30273B6C4CFB5ECE74618B
Validity
Not Before: Feb 28 11:18:29 2023 GMT
Not After : Feb 28 11:18:29 2030 GMT
Subject: CN=63fde310-2d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0b:02:4c:5e:08:ea:a5:0e:68:2c:7f:91:c0:
0f:08:3c:2d:37:58:d4:42:08:ae:38:19:fd:9f:62:
de:05:fb:95:74:13:36:06:cf:24:8e:a5:c1:a7:bf:
aa:d3:56:37:7f:2a:7b:f5:d8:7e:48:a8:18:4a:fa:
69:e2:4e:2c:03:be:f9:a7:7c:e0:40:f8:0d:da:98:
37:0c:bb:f3:d7:55:97:84:33:ac:42:57:27:a0:13:
fa:9b:77:7b:28:84:48:5f:6b:c6:e5:a6:7f:8e:84:
49:af:0e:d6:b4:fe:1a:7c:f5:15:32:1d:22:22:5f:
a4:ee:c5:57:02:e8:13:e4:9e:e8:ef:04:7c:58:e0:
62:b0:a5:04:a1:2a:bf:80:f7:df:4c:44:61:86:07:
cf:8f:98:c0:6d:1b:21:a8:35:89:19:76:87:4a:e9:
3b:40:83:a3:6f:93:80:dd:f9:cc:44:f0:fa:d0:37:
39:7b:e7:d0:95:77:c3:36:77:55:05:21:48:63:44:
ae:f6:d1:fd:48:54:7e:4d:ae:a9:0b:2a:36:05:c4:
d8:ec:27:e9:cf:44:36:bb:42:4b:05:b0:32:a3:c9:
49:b0:65:5d:e2:8a:70:bd:cd:fb:86:52:57:90:7d:
ff:67:c4:89:b5:5b:cc:06:ba:9d:e0:c7:bc:6c:94:
1c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F7:F7:24:EE:B7:72:2F:36:C2:D1:9A:36:57:1D:67:E2:ED:79:8A
X509v3 Authority Key Identifier:
keyid:6E:A9:80:13:EE:10:BF:B5:3A:30:27:3B:6C:4C:FB:5E:CE:74:61:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36432B6/0E94184AB75911EDA15F2C90F1222468/bqmAE-4Qv7U6MCc7bEz7Xs50YYs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bqmAE-4Qv7U6MCc7bEz7Xs50YYs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36432B6/0E94184AB75911EDA15F2C90F1222468/A7241FC4B75911EDB11FDD91F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.160.0.0/11
Signature Algorithm: sha256WithRSAEncryption
b9:56:34:16:49:0f:22:bf:74:7f:1c:43:cc:07:bd:e3:36:33:
46:31:95:1d:39:92:80:b4:c1:a4:17:aa:f8:7c:4a:21:c8:ce:
c3:aa:15:8d:19:f0:73:d1:0a:fc:9a:4a:77:78:61:66:66:31:
5b:16:3b:3d:a5:b2:da:62:51:ef:86:80:36:09:42:c9:a0:da:
c6:fa:f2:d0:ae:f2:02:6c:a1:a6:4c:c3:fd:53:2e:63:c8:46:
7b:9a:6c:1b:4d:8a:66:93:78:00:77:2a:19:e9:4a:e5:0a:ff:
ff:56:65:e0:46:f2:f2:e5:d9:3b:93:81:25:cb:af:82:d9:1b:
84:c7:97:9c:b9:1e:98:f5:b8:a3:78:d7:04:08:e9:e4:f5:d2:
bf:68:17:be:dc:57:8f:39:33:39:e5:0e:db:09:76:7c:43:93:
02:3d:c2:76:e9:88:9a:73:6b:29:35:0b:f2:e7:7c:3c:32:bf:
ad:f9:52:17:05:93:a3:27:42:19:ee:5b:35:52:90:c7:c0:19:
5e:52:f4:60:30:62:3a:6e:1f:76:93:8a:4e:02:e8:c3:ac:50:
8d:e5:e9:90:56:3d:02:0e:76:83:fc:59:62:02:2a:49:d0:e0:
ed:3c:94:ce:03:a9:1d:4e:b8:b3:0c:ac:cf:97:d8:3c:12:ec:
74:b0:0a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org