Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/7B1E3742329411ED85B500A6F1222468.roa
File: 7B1E3742329411ED85B500A6F1222468.roa (raw, json)
Hash identifier: H5xP/HWqk0d0tKDdVP+EXloFCCYYmFeM+bWTt3xejHU=
Subject key identifier: 33:01:94:1B:BF:47:49:EA:F7:00:F8:04:59:85:5A:09:85:F0:F7:B5
Certificate issuer: /CN=F364B494AR/serialNumber=E6FCFB026EB77515FE8CE67734C3DE85B34794CE
Certificate serial: 02
Authority key identifier: E6:FC:FB:02:6E:B7:75:15:FE:8C:E6:77:34:C3:DE:85:B3:47:94:CE
Authority info access: rsync://rpki.afrinic.net/repository/arin/5vz7Am63dRX-jOZ3NMPehbNHlM4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/7B1E3742329411ED85B500A6F1222468.roa
Signing time: Mon 12 Sep 2022 12:14:42 +0000
ROA not before: Mon 12 Sep 2022 12:14:36 +0000
ROA not after: Fri 31 Dec 2032 12:14:36 +0000
asID: 327872
IP address blocks: 169.255.168.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/5vz7Am63dRX-jOZ3NMPehbNHlM4.crl
rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/5vz7Am63dRX-jOZ3NMPehbNHlM4.mft
rsync://rpki.afrinic.net/repository/arin/5vz7Am63dRX-jOZ3NMPehbNHlM4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364B494AR/serialNumber=E6FCFB026EB77515FE8CE67734C3DE85B34794CE
Validity
Not Before: Sep 12 12:14:36 2022 GMT
Not After : Dec 31 12:14:36 2032 GMT
Subject: CN=631f22b2-8746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7d:df:60:82:8b:18:52:e0:46:20:3c:23:a4:
8a:6d:5a:d8:5a:20:b1:ec:b7:1e:b0:cb:8b:cd:56:
56:92:e0:8a:4f:96:0d:fd:85:a1:9c:f4:b3:5f:25:
82:d4:1b:b4:5f:7a:cf:56:2c:2d:02:c0:dd:3b:4d:
82:71:9a:06:f5:77:c7:24:e2:94:81:02:b6:c4:ac:
93:2e:3b:79:82:75:2d:e5:cb:23:3a:73:6b:f7:5e:
89:0c:0b:d1:a1:af:89:e1:f2:ce:44:6f:63:a5:80:
b2:23:a4:3d:2a:79:4d:8b:5a:6d:48:90:96:7c:aa:
46:16:a6:c2:da:5a:74:f1:1e:92:8c:b3:95:90:2a:
0f:40:26:45:77:6f:32:3f:10:91:86:ab:a2:72:87:
0e:07:48:18:8d:b6:56:51:c0:31:25:81:1f:e8:d4:
74:4e:fa:c7:5b:18:8d:9a:51:50:de:54:54:ba:2d:
93:93:58:65:74:52:80:30:ad:bf:2b:3f:ca:ff:1c:
6c:c4:4e:8c:01:e7:cf:87:67:93:c4:aa:72:e2:b2:
01:9d:6f:39:91:5a:e6:34:09:fb:f3:38:2c:87:61:
86:af:d8:39:96:a9:d7:b1:9e:44:4e:2e:6f:ca:0a:
78:87:9f:f3:76:d4:55:89:a6:4b:3e:0a:47:aa:29:
38:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:01:94:1B:BF:47:49:EA:F7:00:F8:04:59:85:5A:09:85:F0:F7:B5
X509v3 Authority Key Identifier:
keyid:E6:FC:FB:02:6E:B7:75:15:FE:8C:E6:77:34:C3:DE:85:B3:47:94:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/5vz7Am63dRX-jOZ3NMPehbNHlM4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/5vz7Am63dRX-jOZ3NMPehbNHlM4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/7B1E3742329411ED85B500A6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.168.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:20:fd:38:10:fe:a5:c8:86:aa:17:20:8a:e7:f0:47:a3:36:
06:84:13:9f:51:b9:c2:79:3a:51:74:e7:54:83:21:86:64:47:
13:21:51:c7:57:0c:b9:cc:9f:a5:68:f2:b3:23:19:ea:0a:c2:
ee:25:44:17:62:3f:70:5c:73:60:07:88:01:ec:1e:cc:de:3e:
a8:74:ab:a4:f4:fa:05:06:9f:f4:7d:4f:1b:37:f6:aa:05:92:
a3:9b:a3:b6:fb:43:be:0f:a7:a7:a6:ce:ee:5d:bd:22:00:cb:
12:80:a7:9b:a4:9e:1e:5d:d2:f9:47:81:d2:d6:a7:a0:f8:19:
60:da:21:a4:ef:1f:4a:ef:55:4f:3d:88:fa:d9:46:9e:b4:e6:
09:22:ee:86:3b:46:32:0c:22:e1:43:f0:61:7d:ec:49:43:eb:
cf:81:17:20:64:d2:1c:30:35:69:5a:9a:e3:82:c8:c3:a5:2b:
73:f8:bf:cd:4f:e6:97:f4:03:59:b9:a9:2a:9a:06:71:e4:dc:
d5:b5:4b:26:b8:60:4e:34:f7:e9:2e:b2:f5:84:c3:44:b4:90:
cc:ea:2e:04:bb:89:93:51:fe:cb:3c:0b:9b:8e:1b:53:a8:dc:
2a:a3:b7:1f:40:1b:cb:f3:61:76:ee:35:ac:56:d1:55:c0:ce:
d0:b1:22:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org