Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/89ADBC0E9C0411EDA24A6ACEF1222468.roa
File: 89ADBC0E9C0411EDA24A6ACEF1222468.roa (raw, json)
Hash identifier: ow8ir81flbNHVBLg5yUrN3ne9ibeNSQNsB7V7L6/qCE=
Subject key identifier: 04:C5:9E:DE:06:E1:F1:88:89:55:6E:D5:34:16:42:72:48:D8:AC:7E
Certificate issuer: /CN=F364B494AR/serialNumber=E6FCFB026EB77515FE8CE67734C3DE85B34794CE
Certificate serial: 93
Authority key identifier: E6:FC:FB:02:6E:B7:75:15:FE:8C:E6:77:34:C3:DE:85:B3:47:94:CE
Authority info access: rsync://rpki.afrinic.net/repository/arin/5vz7Am63dRX-jOZ3NMPehbNHlM4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/89ADBC0E9C0411EDA24A6ACEF1222468.roa
Signing time: Tue 24 Jan 2023 16:31:23 +0000
ROA not before: Tue 24 Jan 2023 16:31:07 +0000
ROA not after: Sat 01 Jan 2033 16:31:07 +0000
asID: 327872
IP address blocks: 169.255.168.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/5vz7Am63dRX-jOZ3NMPehbNHlM4.crl
rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/5vz7Am63dRX-jOZ3NMPehbNHlM4.mft
rsync://rpki.afrinic.net/repository/arin/5vz7Am63dRX-jOZ3NMPehbNHlM4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147 (0x93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364B494AR/serialNumber=E6FCFB026EB77515FE8CE67734C3DE85B34794CE
Validity
Not Before: Jan 24 16:31:07 2023 GMT
Not After : Jan 1 16:31:07 2033 GMT
Subject: CN=63d007db-a880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1e:78:58:80:61:68:dd:70:aa:c1:27:26:45:
28:57:b9:f6:c4:64:8f:f7:01:4f:bd:e0:1f:10:e5:
33:2f:c4:c9:49:1f:bb:c4:a1:28:dd:c7:c4:18:0a:
61:63:93:e1:c6:ba:37:3d:d6:be:7a:b4:96:cb:91:
02:b8:d6:75:95:68:38:9f:ee:c7:3b:1a:4c:b7:da:
a4:be:9c:74:3b:e1:d3:8c:ba:46:60:5b:5a:61:61:
ca:f8:01:16:dc:3b:ea:8f:90:6c:60:32:8f:1d:9b:
92:38:05:78:ba:bb:b7:a0:29:4d:e7:a1:d7:73:dd:
32:c6:5b:68:8d:c1:d3:5b:d4:e8:55:b9:ab:71:48:
31:79:2d:dd:52:f3:38:51:8e:8c:10:5f:2f:2d:61:
de:f7:9c:85:6b:de:da:bd:b2:c1:b4:38:4d:65:4c:
5d:b6:bc:a8:25:ba:99:4e:7b:55:1b:15:42:6a:a1:
47:6e:3a:cc:51:42:8c:3b:8f:29:55:f0:1f:18:4f:
19:7d:d1:fd:ac:bb:eb:7b:31:d6:7f:aa:ce:ac:bc:
0e:97:72:73:fb:b2:fa:09:4b:99:c8:f6:e7:2d:7d:
04:15:3b:a9:ea:b2:23:0d:6c:6c:2c:e9:51:b8:46:
53:f5:0f:81:44:cc:ed:f3:d5:89:a5:e7:d7:f7:d6:
98:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:C5:9E:DE:06:E1:F1:88:89:55:6E:D5:34:16:42:72:48:D8:AC:7E
X509v3 Authority Key Identifier:
keyid:E6:FC:FB:02:6E:B7:75:15:FE:8C:E6:77:34:C3:DE:85:B3:47:94:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/5vz7Am63dRX-jOZ3NMPehbNHlM4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/5vz7Am63dRX-jOZ3NMPehbNHlM4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/21A3A3DC329411EDBA0A1CA5F1222468/89ADBC0E9C0411EDA24A6ACEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.168.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:81:b6:10:1a:21:33:34:a5:18:38:ef:c9:a3:c2:f1:6f:75:
65:19:7d:0b:b4:54:92:cd:ec:3c:fa:4d:01:41:e3:f2:dd:3b:
8c:cc:d3:4c:ef:0c:a6:6a:f2:43:7b:22:8e:95:05:12:c5:ef:
57:e9:29:94:a5:32:17:03:7a:20:68:87:f6:f5:df:0d:1e:72:
30:b7:6c:f5:e0:f4:51:dc:01:1f:7c:38:7f:cf:54:ef:d3:59:
78:31:2d:6f:d6:c2:6d:ff:f2:be:8b:b0:2f:1a:b0:61:f3:34:
65:ab:81:33:82:11:35:17:80:ed:f6:3a:13:92:f3:9b:df:e8:
14:bd:01:3a:5d:13:55:dd:2f:cc:43:69:5a:dc:95:c6:9b:f7:
3e:66:c6:5b:a1:a6:4e:52:13:4d:2b:8a:95:f3:61:79:db:96:
94:c4:10:c9:6e:5e:7a:58:e8:c4:a7:31:0c:cf:22:95:61:2e:
0c:1f:e6:3a:d2:a2:f8:fd:85:de:e9:81:ce:a9:29:c3:23:67:
7f:59:d6:4d:ff:8c:31:e3:37:3f:cf:7a:35:20:c6:e7:d0:71:
88:f0:e9:0a:9e:68:b0:ac:72:7b:e1:e5:56:be:b7:a9:70:d0:
28:c3:b3:97:39:67:3e:3a:c1:55:15:36:59:83:e3:9f:f2:fa:
4c:04:d5:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org