Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/EEABBE3E4E3911EE92CF7E2B4AD9E6FC.roa
File: EEABBE3E4E3911EE92CF7E2B4AD9E6FC.roa (raw, json)
Hash identifier: cIqqwwHEkedQlI6odudHVduZ83ZlOZi5mIxHS6YY/jo=
Subject key identifier: FA:A3:91:61:85:04:DA:4B:8B:01:AE:7E:0F:46:A7:62:FC:43:9A:4A
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 0163
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/EEABBE3E4E3911EE92CF7E2B4AD9E6FC.roa
Signing time: Fri 08 Sep 2023 11:22:02 +0000
ROA not before: Fri 08 Sep 2023 11:21:59 +0000
ROA not after: Sat 07 Sep 2024 11:21:59 +0000
asID: 53356
IP address blocks: 66.251.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355 (0x163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Sep 8 11:21:59 2023 GMT
Not After : Sep 7 11:21:59 2024 GMT
Subject: CN=64fb03da-1764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:50:59:97:12:7a:c1:7c:1c:df:f6:f4:25:09:
91:88:e8:5e:91:b7:d6:85:3e:6b:f4:0c:6b:f7:57:
ef:cc:78:69:e9:d1:56:39:02:fa:f7:81:fa:c0:11:
27:c0:0e:57:1e:68:ce:16:0c:50:53:74:b6:45:d8:
58:d0:66:30:9a:6c:17:ce:b7:8f:5b:e6:a7:5b:c7:
fb:f0:97:1b:54:99:45:5b:fa:3e:9c:6f:95:a0:00:
ff:ad:ec:20:32:ac:c6:b5:2a:8e:a3:9f:d9:dc:05:
32:e7:53:0c:4f:92:ce:a3:95:a6:8a:9b:f7:58:9e:
a3:51:dc:70:6e:43:29:5b:c7:50:49:b2:4f:f2:15:
04:ba:82:b3:55:36:8a:69:86:29:bd:9c:e8:07:9f:
58:5d:cc:24:ad:03:ec:a8:71:4d:c6:47:3b:4c:63:
b9:9f:97:f2:36:fa:4b:35:e1:22:3b:9e:af:b5:36:
5a:1f:25:85:ad:6d:da:f4:3d:4d:78:4d:ae:5d:f2:
71:c5:8e:40:82:93:d5:6d:94:a6:8e:51:83:0e:e1:
72:3a:da:58:c6:17:e5:9b:76:19:10:3c:fc:60:78:
92:86:ed:69:c1:7b:08:8e:c7:ca:82:c7:32:ec:5a:
b1:82:a2:6c:20:d5:92:71:d9:50:4f:05:5d:ca:5d:
b9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A3:91:61:85:04:DA:4B:8B:01:AE:7E:0F:46:A7:62:FC:43:9A:4A
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/EEABBE3E4E3911EE92CF7E2B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.180.0/24
Signature Algorithm: sha256WithRSAEncryption
33:55:f7:3b:04:7f:83:7c:88:ba:df:9b:8e:49:c7:17:8b:d2:
e5:e7:ff:22:93:8f:14:ec:ff:f6:d9:3a:0a:5c:c1:eb:47:59:
fe:e3:73:b9:5f:31:e4:7a:bf:f7:26:4a:40:b4:13:49:cd:fd:
e1:4a:48:f0:d8:7c:8d:46:80:be:b8:b4:9e:44:02:56:9b:6d:
56:1a:ea:ea:8d:92:a9:83:03:8f:5b:e5:87:7c:0f:a3:ca:d5:
76:2d:27:6b:ba:de:c5:d4:14:cb:8b:02:6e:d8:89:b4:16:65:
91:2b:42:9d:69:32:a5:1c:0b:d7:c5:b9:c2:89:16:dc:38:13:
fe:17:73:3b:ef:b5:7b:08:a0:0a:9a:af:d4:01:6b:1b:d9:ca:
5d:ca:f6:b7:2d:13:59:7f:1c:dd:37:64:25:93:35:07:41:e9:
b3:d6:0d:c3:85:c2:52:ea:57:a6:64:6a:c0:8a:4a:0f:2a:95:
06:d8:68:4c:05:2f:c9:6a:a5:2a:7e:5f:eb:b9:7a:10:4b:d8:
b1:5f:43:cc:f2:04:73:2f:5f:b9:50:3a:ee:d9:ec:6f:e7:4f:
88:95:ce:3d:3c:c4:40:a0:b3:72:dc:14:c9:c0:a7:77:f6:13:
1e:03:4f:b2:8c:d2:0d:cd:a4:77:7e:77:14:50:01:2e:19:58:
63:f7:f6:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:09:38 2024 by rpki-client on console-ams.rpki-client.org