Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655EE4/AD6F655A181511EAB31E4F7EF8AEA228/F31E6B76755711ED9B93B29DF1222468.roa
File: F31E6B76755711ED9B93B29DF1222468.roa (raw, json)
Hash identifier: NAQ4ruRr3CeKBEbG5bbYSwTINb1GDpCxoruFb42Xz/o=
Subject key identifier: 7A:A0:66:0F:B2:23:3D:C5:22:85:2C:77:56:75:1E:2F:1C:53:A4:56
Certificate issuer: /CN=F3655EE4AR/serialNumber=18371FE903EF086F5C1FF6F6840BA67767267670
Certificate serial: 0461
Authority key identifier: 18:37:1F:E9:03:EF:08:6F:5C:1F:F6:F6:84:0B:A6:77:67:26:76:70
Authority info access: rsync://rpki.afrinic.net/repository/arin/GDcf6QPvCG9cH_b2hAumd2cmdnA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/AD6F655A181511EAB31E4F7EF8AEA228/F31E6B76755711ED9B93B29DF1222468.roa
Signing time: Tue 06 Dec 2022 11:20:12 +0000
ROA not before: Tue 06 Dec 2022 11:20:08 +0000
ROA not after: Mon 06 Dec 2032 11:20:08 +0000
asID: 37650
IP address blocks: 168.253.80.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/AD6F655A181511EAB31E4F7EF8AEA228/GDcf6QPvCG9cH_b2hAumd2cmdnA.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/AD6F655A181511EAB31E4F7EF8AEA228/GDcf6QPvCG9cH_b2hAumd2cmdnA.mft
rsync://rpki.afrinic.net/repository/arin/GDcf6QPvCG9cH_b2hAumd2cmdnA.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1121 (0x461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655EE4AR/serialNumber=18371FE903EF086F5C1FF6F6840BA67767267670
Validity
Not Before: Dec 6 11:20:08 2022 GMT
Not After : Dec 6 11:20:08 2032 GMT
Subject: CN=638f256c-213c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:05:e4:e4:48:62:b1:4b:37:c5:ab:53:f8:d9:
66:77:12:5a:2e:82:bc:de:ac:fa:f1:1b:c7:81:d1:
45:e2:57:9e:96:79:8a:6d:6b:f8:3d:e3:7f:2f:bc:
b3:83:62:0a:0d:96:b5:13:76:20:ea:fe:db:11:6c:
f7:60:1b:33:da:80:85:dd:43:71:4e:b9:4a:d9:0f:
57:72:5c:86:da:bc:4d:ca:33:49:a3:d7:20:25:b8:
48:7e:ec:f7:04:03:cd:98:f1:20:cd:e1:3f:62:c7:
37:1d:7b:60:6a:89:b1:a3:60:2e:4f:e3:e3:fe:ca:
2e:ce:1e:21:6b:29:5d:68:6f:75:5e:4c:82:a7:8d:
ab:d8:2f:12:e0:7c:fe:80:c7:52:d3:28:c1:8f:06:
58:0d:ce:cd:9e:2e:91:c9:70:a4:1f:df:25:8b:18:
fb:51:19:c6:dc:0a:11:37:a0:cd:4d:d7:d3:ac:7b:
f2:3d:85:36:f5:28:d3:ff:fd:16:d9:2b:fe:a0:7d:
20:95:c1:d7:01:25:64:3f:56:f5:63:ba:84:6b:53:
64:40:1f:e9:02:3a:94:f6:05:7d:a6:b6:64:77:03:
6a:26:00:81:a1:84:39:1c:e6:bd:34:c1:79:cc:e5:
57:4b:2f:a7:61:db:dd:6f:38:38:7a:d3:43:e0:33:
c8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A0:66:0F:B2:23:3D:C5:22:85:2C:77:56:75:1E:2F:1C:53:A4:56
X509v3 Authority Key Identifier:
keyid:18:37:1F:E9:03:EF:08:6F:5C:1F:F6:F6:84:0B:A6:77:67:26:76:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/AD6F655A181511EAB31E4F7EF8AEA228/GDcf6QPvCG9cH_b2hAumd2cmdnA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/GDcf6QPvCG9cH_b2hAumd2cmdnA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/AD6F655A181511EAB31E4F7EF8AEA228/F31E6B76755711ED9B93B29DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.253.80.0/20
Signature Algorithm: sha256WithRSAEncryption
68:7c:4f:6b:62:b3:9b:5e:46:a2:b0:6c:36:d0:e5:a4:a0:44:
15:b6:4e:1d:23:6e:dd:a1:bc:77:d0:47:18:14:d4:a6:be:9f:
c0:4a:f8:14:3f:b3:bb:19:c0:a5:02:4f:e8:40:30:3a:49:5b:
b3:ec:ed:37:1a:a1:33:a8:02:78:11:2f:9d:aa:cc:e4:a6:5e:
8e:e1:e8:d7:81:b2:a3:e2:19:4a:d2:be:0b:39:57:ff:44:c9:
35:bc:e6:75:38:d3:8c:05:fd:fe:23:28:53:23:23:1a:90:39:
76:d5:b5:94:0b:d2:5a:0f:97:8b:cd:cd:ed:ae:20:4d:f3:70:
1d:06:21:53:9e:ba:58:ba:34:8b:bc:37:8d:ef:40:82:22:dc:
1b:bc:2e:ce:18:32:e8:d9:fc:21:a6:9f:17:c9:86:b9:b4:0f:
0b:5f:5e:8c:4b:f9:47:90:cc:1a:a4:d6:32:88:24:8c:49:e5:
d2:86:e3:d6:c4:c5:7c:a3:17:b3:38:1e:db:4b:0e:30:10:59:
9a:86:61:10:bc:98:12:e6:c9:44:9a:37:83:ef:93:7e:75:10:
a5:f7:eb:a5:be:f1:4a:14:99:92:aa:69:c6:83:6a:e7:4e:81:
29:60:1d:fe:11:40:e7:3c:8a:28:8d:e9:85:80:ae:2f:ee:ac:
3d:fa:00:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org