Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/E37F763C9B3011EFADA2C9B5762E951A.roa
File: E37F763C9B3011EFADA2C9B5762E951A.roa (raw, json)
Hash identifier: R47ybVaM3aUIws0k7/qUMq8A9wA1Q8F/inukxAruo/o=
Subject key identifier: 77:7E:D1:25:22:9B:C6:F3:FE:26:B0:A7:D4:5B:E0:58:65:EB:59:A9
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 038E
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/E37F763C9B3011EFADA2C9B5762E951A.roa
Signing time: Tue 05 Nov 2024 04:46:15 +0000
ROA not before: Tue 05 Nov 2024 04:46:11 +0000
ROA not after: Tue 04 Nov 2025 04:46:11 +0000
asID: 212238
IP address blocks: 66.251.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 910 (0x38e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Nov 5 04:46:11 2024 GMT
Not After : Nov 4 04:46:11 2025 GMT
Subject: CN=6729a317-eead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:60:20:15:43:35:d5:a6:7f:ee:e1:bc:8a:15:
aa:05:00:ca:0c:9d:35:fb:c1:e1:03:96:14:96:9e:
d2:6c:98:b2:f6:5f:4b:fa:1e:7b:d0:3d:34:58:61:
13:cb:2b:c3:33:c3:45:28:18:35:1b:d7:56:0f:75:
11:f6:49:77:6b:7f:75:98:fc:97:63:56:f8:9e:fb:
43:c9:ae:75:bf:c8:11:9f:d5:d5:a2:5a:94:f7:b2:
b2:57:ef:27:13:57:c3:db:8b:cc:44:58:e2:a2:57:
b1:bd:d1:68:4d:e4:7f:6d:d6:ce:75:f6:0b:ba:33:
a6:f2:83:4f:55:f1:a3:eb:94:14:2e:23:fe:ad:23:
34:2e:d6:8d:c8:05:dc:ec:53:81:0d:34:9a:60:a6:
da:f6:fd:10:d7:f6:60:b3:12:6a:51:e7:74:3f:7a:
47:da:7a:50:2e:a0:37:22:8b:10:c9:f1:c4:58:47:
5a:72:a5:52:e7:2c:13:f3:68:ad:77:a8:3b:b5:51:
5c:63:64:ee:ad:f3:d8:54:6c:08:a6:45:af:6b:e2:
3a:9b:c4:03:58:32:fb:0c:db:87:bb:05:32:66:93:
19:f0:a4:ca:9a:e4:e9:37:66:b0:7e:04:73:40:a9:
74:ee:94:17:fd:78:f9:be:d2:ff:c9:f7:a8:fd:f4:
5c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7E:D1:25:22:9B:C6:F3:FE:26:B0:A7:D4:5B:E0:58:65:EB:59:A9
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/E37F763C9B3011EFADA2C9B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.128.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:5e:36:7f:1f:1b:49:85:b2:2c:0e:00:ae:1c:17:25:2a:94:
a6:d6:13:79:79:32:e4:67:48:89:b9:e4:42:53:0e:8b:08:8f:
23:08:38:dd:1c:3b:87:52:a2:0e:89:80:c9:7a:64:27:0c:67:
54:9a:94:f6:af:4d:0a:37:2a:30:4c:5c:86:d2:a8:72:1d:11:
39:2d:f3:6f:78:c1:84:18:94:e2:b1:8b:ab:27:cb:1d:8d:27:
cb:29:8d:6f:8d:da:3c:67:fc:fc:29:11:d5:7f:44:7a:77:39:
c8:f0:23:b8:26:d6:50:e7:0c:a5:8c:88:8e:7a:0c:8e:4c:05:
56:9d:53:7a:e2:ba:b2:d3:5d:8d:ed:ed:9d:1d:19:fe:9a:07:
c0:07:2d:b5:47:e9:6b:e2:34:24:9a:0a:19:17:b4:ae:5a:a4:
4c:91:dd:bb:c8:87:2f:27:3d:39:38:d2:58:ec:a2:fe:94:23:
c0:9c:f9:3d:62:29:38:f8:31:48:97:fa:5c:bc:77:de:2f:5a:
cc:6e:dd:e4:7f:16:11:7f:d3:80:e4:64:02:be:37:95:16:a7:
53:25:2b:9a:44:95:f8:7f:45:8c:70:53:f1:36:ea:5a:70:26:
66:2f:13:f2:8b:3f:1d:2f:07:63:c1:f5:dd:3b:df:f6:96:28:
17:bc:f1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org