Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/5005FF6AB9F011EEB38B449B775412E6.roa
File: 5005FF6AB9F011EEB38B449B775412E6.roa (raw, json)
Hash identifier: dibJmAP4JU1ed8f5wUPJuyLj8AqHiQUPJtrQyPmgfJk=
Subject key identifier: 15:BC:AB:CC:57:24:0E:4E:38:66:2C:2C:AE:D3:33:8A:C6:33:64:7B
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 0233
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/5005FF6AB9F011EEB38B449B775412E6.roa
Signing time: Tue 23 Jan 2024 13:07:08 +0000
ROA not before: Tue 23 Jan 2024 13:07:05 +0000
ROA not after: Wed 22 Jan 2025 13:07:05 +0000
asID: 174
IP address blocks: 66.251.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 563 (0x233)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Jan 23 13:07:05 2024 GMT
Not After : Jan 22 13:07:05 2025 GMT
Subject: CN=65afb9fc-f940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:b8:21:8c:5f:56:b9:c4:f6:92:73:b1:cd:
68:b8:05:dd:51:74:6f:cf:62:e0:41:f6:93:14:4d:
93:6b:2a:42:e4:96:b3:10:27:26:a7:e9:60:6a:d2:
45:bb:32:9b:3c:a2:3d:7c:9b:9e:dd:f0:c2:00:a7:
53:6e:aa:12:b8:ac:cd:b7:67:26:55:38:c8:0b:13:
9e:80:c0:8a:c9:4e:1a:67:ea:ac:38:14:4c:1e:a0:
e9:e6:fb:41:0c:72:a4:ec:3b:41:07:d6:83:14:2a:
08:2c:2d:74:e0:e1:d3:da:41:a3:cd:94:93:6f:9c:
d9:6a:b5:bd:0e:b3:e5:56:4d:b0:be:00:0a:9b:e2:
92:5f:06:4b:bd:2f:44:4d:a9:e9:b0:ae:de:e3:26:
8c:e0:74:aa:ad:d0:ae:89:3e:b6:73:7b:50:03:1f:
fd:f7:1f:55:d5:cc:70:7d:18:58:27:95:72:38:e8:
05:6e:d0:4d:c6:c7:d1:58:a1:77:ba:2d:37:83:a2:
46:76:5e:f4:25:f9:23:f2:7e:d7:06:56:19:dc:bb:
c0:ab:95:df:32:4c:ad:09:47:9c:67:24:e5:fe:e3:
67:26:08:d8:8a:ad:4f:18:7f:79:a4:16:47:03:be:
f8:7d:7e:42:9f:9b:b9:8e:de:89:40:f0:8d:43:30:
21:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BC:AB:CC:57:24:0E:4E:38:66:2C:2C:AE:D3:33:8A:C6:33:64:7B
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/5005FF6AB9F011EEB38B449B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.161.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:7d:05:68:8b:21:b7:e8:5d:39:c4:b8:a2:5e:d4:d6:b9:d0:
65:5d:b0:7f:21:87:18:ab:ec:73:28:df:2c:7e:f2:ab:88:23:
44:10:f3:41:6a:80:fc:52:ab:4f:c8:aa:a8:fa:ac:74:5c:70:
b5:34:09:7e:18:03:dc:64:22:9d:05:14:3a:cf:b7:9c:ac:75:
80:3e:37:f1:4e:ce:fb:91:3e:e5:8d:31:47:ec:1e:d4:b5:a0:
db:4e:f4:9f:1a:2e:c0:6f:0a:9d:23:b3:20:07:a1:9d:1d:fc:
93:ee:2d:85:e9:e4:e7:99:07:ac:0f:19:48:63:be:a4:64:b3:
55:f6:a0:84:8c:7c:24:c0:9c:3c:72:6c:56:a0:66:0d:c2:b7:
60:1b:98:62:78:83:1d:bc:ad:15:57:86:12:86:03:63:2e:95:
c9:fb:f1:51:3a:25:6d:76:f7:56:d3:63:88:f3:6b:bb:cc:a1:
92:91:ff:55:90:cd:1e:09:b3:e8:bf:ec:76:2b:57:87:6e:1f:
45:7c:de:0a:10:4f:69:a1:82:e2:1b:59:ef:7e:a9:bd:9e:ff:
79:63:27:63:dc:c7:66:d4:63:ca:de:05:29:b8:e8:b9:04:d8:
e0:b6:0e:aa:f3:fe:99:80:60:fe:15:bf:f4:e9:cc:59:63:3c:
52:ad:15:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 10:17:33 2024 by rpki-client on console-ams.rpki-client.org