Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/83C6683CB9F311EE8C309AA0775412E6.roa
File: 83C6683CB9F311EE8C309AA0775412E6.roa (raw, json)
Hash identifier: aJYRVR9PcSD4lv82rz+5TUiHr2Tyl7pH0l7xP9nz6TE=
Subject key identifier: 8C:EB:66:0E:2D:D3:F6:F4:6F:09:D2:92:17:00:B0:CB:4A:90:CC:F6
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 024D
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/83C6683CB9F311EE8C309AA0775412E6.roa
Signing time: Tue 23 Jan 2024 13:30:03 +0000
ROA not before: Tue 23 Jan 2024 13:30:00 +0000
ROA not after: Wed 22 Jan 2025 13:30:00 +0000
asID: 174
IP address blocks: 66.251.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 589 (0x24d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Jan 23 13:30:00 2024 GMT
Not After : Jan 22 13:30:00 2025 GMT
Subject: CN=65afbf5b-b125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1e:12:85:27:a1:44:b8:5c:47:ec:15:31:11:
ab:ad:5b:22:ff:96:50:45:d3:0a:a9:ea:42:2a:0e:
b9:a6:16:a8:ed:19:0f:cb:12:4f:09:26:76:d2:98:
b7:f5:1f:64:73:4a:81:47:a9:94:11:d9:1e:70:6a:
7c:d5:71:cd:08:e7:4b:52:08:de:9f:46:51:1b:f8:
58:0a:15:6f:25:cd:e3:83:15:b6:15:5a:4b:73:28:
f7:7f:fd:3f:38:af:64:4b:df:8f:57:85:74:35:98:
99:93:90:16:1f:b8:f9:78:06:18:40:37:ce:e2:07:
9e:d9:45:3d:8b:86:bf:23:89:72:7d:2a:c7:32:10:
db:9d:9e:82:1a:03:33:ca:d0:bd:90:68:2d:56:94:
c1:20:d5:cc:97:0d:8c:85:0d:6a:31:22:91:d3:6f:
9e:0c:9d:fc:db:90:0c:34:f9:d4:01:ef:73:ee:40:
44:a2:c1:ad:61:34:86:75:00:1f:c0:fc:52:71:28:
8c:64:d2:2e:57:79:f1:51:a2:75:f6:be:62:58:c8:
e1:0e:ad:7a:20:0d:df:86:95:26:2e:57:98:51:0f:
46:84:38:98:4f:e2:72:13:d3:24:13:94:a5:2e:cd:
4f:12:78:c4:82:f2:fa:14:05:ac:44:54:df:c2:43:
61:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EB:66:0E:2D:D3:F6:F4:6F:09:D2:92:17:00:B0:CB:4A:90:CC:F6
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/83C6683CB9F311EE8C309AA0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.179.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ea:14:a5:b4:f9:78:33:f0:6c:ee:cb:ad:8e:08:ff:46:85:
e1:08:91:ef:61:0e:9e:02:61:6b:a1:b3:1a:cc:56:b8:fa:32:
f2:af:5c:40:57:4e:d2:50:0e:65:d3:0f:4c:7b:cd:83:c2:e2:
69:ff:4a:e8:b7:2b:16:86:cb:b1:67:c9:5d:7e:56:59:f9:dd:
df:90:0a:8c:97:34:d1:b7:ae:56:a0:cb:11:ac:d0:16:61:e6:
b3:1d:33:31:cb:60:c3:51:a2:4e:b9:d1:6b:94:f2:f9:ed:dd:
e4:c4:69:21:38:69:c3:23:8c:6a:fd:b3:e2:07:f4:ba:b5:9c:
a5:98:3a:ff:64:e3:b3:65:3e:63:94:f5:5b:19:0a:c4:9f:40:
cb:63:94:52:c4:ea:f4:df:91:ca:05:a4:2a:3b:0e:c5:44:d2:
a4:66:63:0e:d3:01:b8:6a:ad:59:f2:ba:84:f8:14:af:1d:3b:
69:a0:d6:35:e9:dc:e1:9d:1c:bc:cb:e7:ff:5f:c0:e4:d4:f1:
11:16:e8:b1:21:62:6c:41:59:a7:52:ef:1f:56:1e:bd:81:15:
27:9b:49:d3:4c:f1:d7:c6:c4:38:75:a0:e7:e7:58:a6:54:46:
6d:05:fb:b4:1b:e3:7c:fd:35:e3:9c:57:a4:7a:58:da:ac:47:
97:f5:7a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:31 2024 by rpki-client on console-ams.rpki-client.org