Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/EC188374B9EF11EE9A6C659A775412E6.roa
File: EC188374B9EF11EE9A6C659A775412E6.roa (raw, json)
Hash identifier: zdAKZA4Wlte6sqfRljw1FvrY4jQWEFh8HF1BFGpopgo=
Subject key identifier: 34:37:37:2A:4E:CA:B3:A1:B1:69:B9:4E:30:3B:02:79:32:7E:09:5C
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 022F
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/EC188374B9EF11EE9A6C659A775412E6.roa
Signing time: Tue 23 Jan 2024 13:04:21 +0000
ROA not before: Tue 23 Jan 2024 13:04:17 +0000
ROA not after: Wed 22 Jan 2025 13:04:17 +0000
asID: 174
IP address blocks: 66.251.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 559 (0x22f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Jan 23 13:04:17 2024 GMT
Not After : Jan 22 13:04:17 2025 GMT
Subject: CN=65afb954-0569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:53:c9:fa:c0:a1:3d:2a:8b:01:fa:8a:d1:0f:
22:30:47:eb:1c:de:0a:2d:b0:c2:fb:38:ba:0b:03:
1f:6c:d7:b8:ca:71:f9:ec:7b:d0:66:fa:ce:d7:3b:
d4:bc:a2:59:54:a8:62:f8:fb:64:0a:df:03:ce:d5:
18:0d:67:0c:69:a4:31:2f:5e:0f:0f:ab:01:db:f3:
0c:ec:6c:ae:8c:1c:b8:98:90:0c:48:49:4f:3c:ac:
92:58:37:97:ea:c5:19:54:36:bb:fe:53:8f:03:8d:
bd:80:a0:d2:bf:72:80:de:85:54:17:d4:3c:8e:69:
39:ae:fb:9f:12:80:fd:17:a3:bf:d3:b0:2a:5a:09:
aa:be:11:33:94:00:ad:71:c3:99:2b:66:94:5c:c3:
96:c1:3c:5c:2b:2f:d3:23:e9:45:63:4f:dd:e7:f1:
a7:8a:e3:fe:ad:f4:bd:03:91:f1:f8:c4:34:1c:6f:
96:8b:4f:0a:6d:3c:a9:b3:03:66:05:d2:57:97:e6:
dd:60:2b:bd:71:78:43:c3:bd:02:5a:7f:00:00:e5:
ad:95:24:4b:d9:a9:b0:4c:7a:f4:c1:5e:24:1c:d3:
03:5e:7f:a5:03:e2:f5:fa:49:73:1b:34:9b:72:7d:
78:ea:01:ca:2a:b3:50:4a:6a:60:63:4c:61:16:a7:
98:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:37:37:2A:4E:CA:B3:A1:B1:69:B9:4E:30:3B:02:79:32:7E:09:5C
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/EC188374B9EF11EE9A6C659A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.156.0/24
Signature Algorithm: sha256WithRSAEncryption
74:82:df:b3:22:13:2d:72:21:9b:7c:15:8b:94:35:50:76:35:
c5:82:e7:dd:6d:b8:84:b1:8a:e5:d4:2e:dd:86:c1:8a:e0:94:
06:85:12:d0:74:74:d0:71:7c:08:cb:81:fa:3c:27:45:07:7d:
50:7c:8e:d2:23:0b:a6:b0:7b:29:ba:2b:84:e1:93:87:5a:d1:
cf:52:3f:b3:c4:81:89:20:d3:47:86:35:50:9b:19:ce:9e:05:
75:ea:2d:cf:44:da:f3:5b:af:55:b8:7f:3b:93:b4:de:a8:db:
76:3d:71:a0:a2:d6:e5:82:7f:a9:fa:0d:1c:63:77:0d:67:00:
82:03:84:fa:87:87:d1:ce:57:5e:f8:aa:a0:e2:e1:e9:34:10:
6e:f1:a6:20:f7:b9:36:d6:d2:84:9f:ab:f3:95:f9:01:e4:c5:
ee:c0:d0:97:a5:ba:14:9c:f7:1e:0e:72:39:25:ea:c0:b4:6a:
2f:e4:a2:58:6b:a5:90:f2:ed:a0:f2:3d:1e:91:b1:29:e4:ec:
7e:f6:46:bf:36:cc:cc:dc:19:57:76:f1:1c:eb:17:80:64:b8:
6a:00:c5:f0:97:22:0e:60:4b:90:3d:63:d5:24:67:73:23:7d:
e4:bd:9a:2e:de:96:ed:81:b3:5d:6d:23:40:35:85:69:97:c0:
f6:2c:25:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 10:17:33 2024 by rpki-client on console-ams.rpki-client.org