Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/D08AB0328A8411EDBA38F1D7F1222468.roa
File: D08AB0328A8411EDBA38F1D7F1222468.roa (raw, json)
Hash identifier: C/JaFVa8a0G+5skXdT5So1XO7ZZOzqfOI/SiPxsgb6o=
Subject key identifier: 00:3C:99:15:31:3B:2E:FC:EB:72:CD:07:8A:E7:89:F5:55:E2:DF:8F
Certificate issuer: /CN=F364C81DAR/serialNumber=0D27394E9CDE92155E4599D68410992D708BF244
Certificate serial: 0544
Authority key identifier: 0D:27:39:4E:9C:DE:92:15:5E:45:99:D6:84:10:99:2D:70:8B:F2:44
Authority info access: rsync://rpki.afrinic.net/repository/arin/DSc5TpzekhVeRZnWhBCZLXCL8kQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/D08AB0328A8411EDBA38F1D7F1222468.roa
Signing time: Mon 02 Jan 2023 10:04:16 +0000
ROA not before: Mon 02 Jan 2023 10:04:11 +0000
ROA not after: Wed 01 Jan 2025 10:04:11 +0000
asID: 327822
IP address blocks: 169.255.20.0/24 maxlen: 24
169.255.21.0/24 maxlen: 24
169.255.22.0/24 maxlen: 24
169.255.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/DSc5TpzekhVeRZnWhBCZLXCL8kQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/DSc5TpzekhVeRZnWhBCZLXCL8kQ.mft
rsync://rpki.afrinic.net/repository/arin/DSc5TpzekhVeRZnWhBCZLXCL8kQ.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1348 (0x544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364C81DAR/serialNumber=0D27394E9CDE92155E4599D68410992D708BF244
Validity
Not Before: Jan 2 10:04:11 2023 GMT
Not After : Jan 1 10:04:11 2025 GMT
Subject: CN=63b2ac20-534d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b0:97:d2:92:6e:76:9d:e3:f8:fd:9e:7c:ac:
10:73:4f:ff:31:10:d4:38:38:29:ed:ce:3f:ab:fb:
63:d0:2a:b0:ba:47:67:21:36:c7:ad:c0:90:cc:34:
04:e4:95:b8:be:df:a6:ae:97:74:83:0f:67:4b:88:
07:27:d8:f6:e2:11:e5:75:0e:9a:79:15:4b:e2:28:
df:65:20:48:00:82:3f:7d:ce:f1:22:db:70:ef:49:
cb:64:b6:2c:02:8f:c8:a8:37:9b:9b:9c:43:c3:4d:
1c:21:72:41:4e:4a:14:a1:64:49:72:a0:75:52:59:
66:41:f5:26:fb:78:cc:80:78:04:57:b2:a9:f0:f1:
90:fb:ea:85:a9:93:ed:01:9d:12:1d:4b:c2:e6:c0:
ba:c2:88:ac:bb:7d:5e:3d:f4:40:b5:c3:0e:1b:32:
0f:a7:13:52:83:b0:7a:80:cb:cc:48:48:3b:bf:a2:
f3:31:d0:c2:80:28:c5:da:77:55:19:90:4e:11:a6:
5f:34:b8:03:82:bd:5e:bc:45:1f:75:da:55:b0:5b:
39:74:8e:e0:5a:e0:dd:6e:9c:0a:31:7e:c2:07:5c:
09:e8:5b:93:26:37:cf:5a:1a:9a:48:1c:3d:90:66:
bb:83:8d:7c:32:c3:7d:1d:25:79:7e:1b:21:49:f3:
75:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:3C:99:15:31:3B:2E:FC:EB:72:CD:07:8A:E7:89:F5:55:E2:DF:8F
X509v3 Authority Key Identifier:
keyid:0D:27:39:4E:9C:DE:92:15:5E:45:99:D6:84:10:99:2D:70:8B:F2:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/DSc5TpzekhVeRZnWhBCZLXCL8kQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/DSc5TpzekhVeRZnWhBCZLXCL8kQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/D08AB0328A8411EDBA38F1D7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.20.0/22
Signature Algorithm: sha256WithRSAEncryption
77:e3:39:50:88:1d:bc:75:b6:85:97:95:ad:a3:52:1a:85:77:
76:90:b6:02:b5:f9:54:28:f2:88:ca:45:6c:8c:c7:b0:f6:03:
8e:6d:d9:2b:5d:0d:73:73:30:de:9a:a3:d2:d7:d8:22:e2:d6:
b7:96:f4:88:b8:c6:b7:ff:f2:a5:d3:bf:80:90:b9:b0:df:d4:
fe:66:22:a9:71:15:54:12:88:b9:80:e1:ae:da:7c:2f:10:81:
e8:f2:3d:7b:fc:48:ef:6c:d3:cf:cf:09:df:f9:bd:21:fe:17:
be:75:7f:f8:44:60:52:84:6a:1e:c6:8f:4c:84:3d:5b:98:cd:
32:47:f1:b8:31:1e:08:68:cb:30:ef:d5:71:84:b0:99:c6:1b:
0b:bb:1c:4a:46:12:b2:5f:63:c2:9d:54:a9:d7:22:ad:72:29:
8f:dc:64:7e:c4:d2:89:4a:56:db:5f:05:f5:2e:aa:7c:6b:9e:
69:86:83:f4:da:fd:b5:1c:2d:0c:a1:64:d0:24:8a:dc:57:bf:
ab:fa:b4:f2:09:43:6e:ae:a1:66:77:b6:c4:38:8e:c5:e0:c5:
0c:f9:58:02:18:e0:3c:22:91:f9:75:26:4b:a8:b6:8c:63:2d:
a1:c0:9e:c0:51:64:86:8d:4e:d1:7c:14:a2:e6:66:ef:d0:b1:
94:40:45:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:46:28 2024 by rpki-client on console-ams.rpki-client.org