Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/E8B2F98E3A9D11EE9BE82A0F4AD9E6FC.roa
File: E8B2F98E3A9D11EE9BE82A0F4AD9E6FC.roa (raw, json)
Hash identifier: d0/Bj8A74P3MfkBJNQx6hOFkYJ6LhjshwFjeco5e0CM=
Subject key identifier: 73:CE:A7:55:CB:74:92:47:8F:8F:DE:06:2E:22:2C:E0:75:3A:C9:1C
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 0136
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/E8B2F98E3A9D11EE9BE82A0F4AD9E6FC.roa
Signing time: Mon 14 Aug 2023 12:27:18 +0000
ROA not before: Mon 14 Aug 2023 12:27:15 +0000
ROA not after: Tue 13 Aug 2024 12:27:15 +0000
asID: 34549
IP address blocks: 66.251.148.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310 (0x136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Aug 14 12:27:15 2023 GMT
Not After : Aug 13 12:27:15 2024 GMT
Subject: CN=64da1da6-a441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0e:e2:8e:c1:e5:4a:8c:ce:ff:08:03:06:10:
38:97:a2:34:fb:ef:5d:a4:ef:75:1f:98:94:66:32:
2e:fc:af:5a:c8:93:71:10:a2:aa:5d:43:2e:61:8e:
44:f5:cf:a4:16:bd:da:0d:64:bf:b7:36:bd:e3:41:
27:51:3b:36:70:19:23:e4:f5:5d:ca:89:1d:b3:9c:
92:c3:fd:5b:da:b9:a0:81:8e:db:37:7a:52:42:3d:
0c:7d:06:55:06:a2:0a:71:76:c2:be:b0:35:a2:9a:
7d:1d:3e:9c:7f:87:24:99:d4:bb:8b:05:83:65:c3:
68:7e:34:a0:72:48:c3:87:52:6c:a6:c3:54:55:84:
f2:4b:03:6b:a4:44:95:3f:42:72:c8:b4:1a:32:9a:
d0:b8:39:d1:0a:68:f4:d5:66:42:a7:69:ef:f8:88:
40:18:57:ef:2b:c1:f6:0f:6f:46:4e:86:3a:b6:3d:
85:a5:7f:f3:af:30:3d:41:4e:62:00:88:30:df:20:
c7:9a:39:a0:4e:bc:7d:4d:ea:bd:57:0a:f5:f1:6a:
ad:e8:56:d6:c0:a9:da:80:2c:1f:4d:43:82:11:26:
31:c3:1b:56:7e:8f:e6:3f:81:45:25:7b:c4:cf:35:
76:75:4b:18:52:26:fa:cc:18:ff:fd:71:b7:09:13:
f6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CE:A7:55:CB:74:92:47:8F:8F:DE:06:2E:22:2C:E0:75:3A:C9:1C
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/E8B2F98E3A9D11EE9BE82A0F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.148.0/23
Signature Algorithm: sha256WithRSAEncryption
55:21:aa:9b:97:1c:40:77:ac:04:5c:c1:c6:2f:85:6e:83:35:
32:9d:72:88:ed:e1:0c:40:0a:3e:9c:8c:04:14:76:33:5f:73:
ee:26:a4:6c:22:23:ad:d2:7e:4b:dd:29:24:9d:a2:1f:52:86:
7f:7b:1d:b7:2f:47:83:e3:7b:f4:cb:03:da:07:59:11:df:c4:
e2:96:d6:56:78:3d:1e:a7:33:95:ba:9d:36:bc:fd:97:de:4d:
ec:3d:4b:f7:78:38:bb:f6:ac:78:2c:d0:3c:61:cd:40:44:7e:
26:2f:47:b3:bd:cc:e2:b6:c4:14:ec:24:7d:f8:40:77:2b:7b:
3b:1f:d7:f6:63:d2:a8:da:ad:dd:17:e1:05:18:b5:cf:28:61:
7c:f3:da:14:94:35:53:e6:38:85:b1:23:e1:bf:ea:61:12:81:
62:3d:8a:d1:2e:2f:91:a4:3a:3a:8f:33:49:25:86:4b:28:81:
a6:ed:63:6e:f5:46:eb:e7:eb:20:3f:3f:ea:50:00:77:d4:04:
ad:2d:df:fd:23:21:c8:d4:6c:50:5a:45:b2:14:18:67:bc:a3:
40:a1:d8:bc:64:3e:40:8f:73:07:02:ec:88:74:ad:5d:55:ae:
2d:9b:63:da:85:5b:18:9f:c8:3e:75:67:eb:07:a2:e8:9f:2e:
c0:7c:d8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:11:27 2024 by rpki-client on console-fra.rpki-client.org