Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/1DADE8D6B9F311EE88B319A0775412E6.roa
File: 1DADE8D6B9F311EE88B319A0775412E6.roa (raw, json)
Hash identifier: qISs3bXhETPuLpOdzL9fPXw08JSA/B6e8W3SSLLMZUo=
Subject key identifier: D5:A2:B9:F4:8B:C1:5E:12:51:2D:A6:EA:AB:9E:CA:0D:00:E5:1F:7A
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 0247
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/1DADE8D6B9F311EE88B319A0775412E6.roa
Signing time: Tue 23 Jan 2024 13:27:12 +0000
ROA not before: Tue 23 Jan 2024 13:27:09 +0000
ROA not after: Wed 22 Jan 2025 13:27:09 +0000
asID: 174
IP address blocks: 66.251.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 583 (0x247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Jan 23 13:27:09 2024 GMT
Not After : Jan 22 13:27:09 2025 GMT
Subject: CN=65afbeb0-8c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:09:c3:2e:9f:35:77:12:1c:71:51:54:10:36:
e5:60:c3:fd:25:1f:c3:33:e4:9a:eb:a1:5c:0c:22:
62:63:a2:cc:13:1b:3a:87:d2:01:8c:13:d9:e8:44:
cb:f4:fa:b9:57:ec:ae:00:48:6a:15:70:ba:4c:38:
59:81:d4:24:c7:88:88:cc:9c:d5:4d:e6:af:d0:37:
3e:42:04:93:96:9b:5e:c5:ba:e9:6c:fa:89:69:2b:
8f:40:32:56:2d:6f:02:39:42:7e:a9:b2:d9:7c:b8:
69:b8:7b:84:4f:fd:a9:25:83:87:fd:c0:19:e7:bf:
ee:56:54:53:85:da:bc:bf:66:c7:92:77:b4:71:fa:
c5:ea:5f:f9:25:46:b8:e0:41:bc:1b:a7:3c:01:78:
fc:70:9f:a0:1b:ec:8a:9e:e6:4e:5a:2b:10:43:54:
27:5a:72:59:44:86:84:e8:83:1e:2c:91:80:cc:8d:
bb:31:73:69:b8:98:05:32:96:05:60:9e:46:fb:44:
1a:97:77:1a:38:57:41:ad:bf:d1:09:68:b9:c3:02:
33:cc:9c:70:3f:a9:e5:c4:34:7e:7b:b5:76:b5:77:
ae:9d:fe:95:86:a7:e9:f0:86:3a:f3:a0:e5:bc:e1:
e6:7b:16:4a:43:c5:54:e5:94:1b:51:65:3a:d8:d0:
98:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A2:B9:F4:8B:C1:5E:12:51:2D:A6:EA:AB:9E:CA:0D:00:E5:1F:7A
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/1DADE8D6B9F311EE88B319A0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.176.0/24
Signature Algorithm: sha256WithRSAEncryption
ed:f4:78:3b:25:2d:bb:ed:54:fd:4d:e3:97:a6:b9:30:88:a3:
49:c3:89:25:3f:ae:53:9f:de:5d:87:d8:df:12:6f:90:4f:e3:
d0:f4:15:a6:12:94:2c:95:ad:9b:6b:3a:6c:3e:6b:31:f1:9b:
42:e5:25:06:23:d3:98:dd:c5:be:8d:c9:62:29:e4:86:50:00:
0d:89:80:e3:f6:8c:18:1e:3e:ac:15:0b:01:fe:88:ab:d9:15:
3b:f4:02:a1:ea:1c:0f:cd:e0:9a:ba:0a:65:4b:69:19:f9:23:
4e:8b:fc:6d:8a:be:e6:79:69:af:02:94:bb:6f:66:93:b4:dd:
2a:9c:21:e3:bc:4a:1f:55:dd:3a:13:74:7d:13:37:ca:87:85:
d4:cb:a1:b3:53:ea:95:00:ef:28:d9:40:2c:12:43:1a:e9:70:
b3:5c:3c:c8:a8:53:57:02:e4:31:b9:96:f7:64:25:0b:e7:13:
a5:23:b0:58:fe:03:d0:17:4f:15:ef:d6:ab:53:fe:72:27:27:
26:e6:a4:3c:d0:d6:59:0e:d7:4e:a5:78:71:f4:09:ba:5b:be:
90:10:ec:ab:ed:91:dd:14:2b:a1:a6:a1:66:dc:36:13:a6:ce:
bb:50:25:ab:93:69:61:70:97:51:c5:b0:80:14:47:f9:f1:de:
ea:ab:cc:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:31 2024 by rpki-client on console-ams.rpki-client.org