Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668037/1159707EC3FC11E9A9726981F8AEA228/B6757616A67E11EE8CA55FAE775412E6.roa
File: B6757616A67E11EE8CA55FAE775412E6.roa (raw, json)
Hash identifier: e/FRp2BOX+DWBqpEiG2YF8XCaJAAB0mP/8wu77/rHbE=
Subject key identifier: 6A:9A:83:A0:E3:0D:04:98:9B:63:28:B9:C2:18:9D:90:26:48:4C:34
Certificate issuer: /CN=F3668037AR/serialNumber=6EF07CF2076CC5A6096B2572AE0895FD673F4712
Certificate serial: 0668
Authority key identifier: 6E:F0:7C:F2:07:6C:C5:A6:09:6B:25:72:AE:08:95:FD:67:3F:47:12
Authority info access: rsync://rpki.afrinic.net/repository/arin/bvB88gdsxaYJayVyrgiV_Wc_RxI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668037/1159707EC3FC11E9A9726981F8AEA228/B6757616A67E11EE8CA55FAE775412E6.roa
Signing time: Fri 29 Dec 2023 19:16:05 +0000
ROA not before: Fri 29 Dec 2023 19:16:02 +0000
ROA not after: Thu 29 Dec 2033 19:16:02 +0000
asID: 33770
IP address blocks: 152.108.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668037/1159707EC3FC11E9A9726981F8AEA228/bvB88gdsxaYJayVyrgiV_Wc_RxI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668037/1159707EC3FC11E9A9726981F8AEA228/bvB88gdsxaYJayVyrgiV_Wc_RxI.mft
rsync://rpki.afrinic.net/repository/arin/bvB88gdsxaYJayVyrgiV_Wc_RxI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1640 (0x668)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668037AR/serialNumber=6EF07CF2076CC5A6096B2572AE0895FD673F4712
Validity
Not Before: Dec 29 19:16:02 2023 GMT
Not After : Dec 29 19:16:02 2033 GMT
Subject: CN=658f1af5-7b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:02:35:5d:97:fc:23:87:a6:d4:ed:5f:b7:59:
06:4b:a4:3c:63:56:43:ef:33:6b:02:d0:c2:2d:f2:
fe:cb:5f:d5:9e:76:f7:ec:36:c6:12:d6:46:91:82:
6b:d9:95:54:d8:3e:7f:90:69:40:16:bb:47:e9:9e:
8b:30:02:50:0b:6a:ad:c1:6c:22:14:c1:dc:f7:55:
ef:a4:79:8c:bb:c4:43:05:a5:e6:eb:4f:8d:bb:09:
4f:57:25:c5:d2:4d:41:31:89:df:37:4f:89:2b:31:
4d:64:c5:55:45:80:42:d0:c0:21:23:31:7b:c0:05:
b7:2a:d8:78:35:a1:9c:3a:2d:70:b0:aa:aa:60:c3:
38:c4:a3:a9:58:34:72:7d:d2:de:e7:a9:2f:bb:e4:
3a:32:dd:7f:bf:e1:40:e5:f4:a0:b6:46:39:f2:c9:
43:14:44:54:39:d4:3b:0d:a0:0b:e4:e1:52:87:8b:
dd:7e:26:aa:e2:94:c9:bc:af:db:19:44:a3:12:3d:
0d:27:c8:ee:17:c0:13:70:50:d5:6d:c6:c5:f4:6c:
5c:f2:44:30:22:9c:59:76:0a:67:37:b3:03:19:39:
c3:77:65:72:9c:43:3d:fd:51:12:5b:f3:77:e9:66:
e2:97:0e:72:81:29:05:6a:42:e9:cd:e3:b3:bc:02:
cd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:9A:83:A0:E3:0D:04:98:9B:63:28:B9:C2:18:9D:90:26:48:4C:34
X509v3 Authority Key Identifier:
keyid:6E:F0:7C:F2:07:6C:C5:A6:09:6B:25:72:AE:08:95:FD:67:3F:47:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668037/1159707EC3FC11E9A9726981F8AEA228/bvB88gdsxaYJayVyrgiV_Wc_RxI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bvB88gdsxaYJayVyrgiV_Wc_RxI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668037/1159707EC3FC11E9A9726981F8AEA228/B6757616A67E11EE8CA55FAE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
152.108.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a8:5a:bd:4c:5c:8e:39:12:fd:fc:22:4c:07:7e:20:4d:97:73:
a9:1b:9d:fd:6a:99:f3:a9:4f:ae:75:69:fb:5d:ef:07:53:90:
72:61:c0:86:5e:3e:a6:3b:9e:4d:a9:9a:87:ac:2c:96:a4:18:
a9:7d:90:0a:1f:5e:8b:be:9c:45:d7:e7:5e:80:34:3d:40:5a:
ca:97:9c:49:7f:34:92:5b:d5:e0:b1:b6:64:99:86:5e:13:f5:
ca:dd:2a:a4:ff:40:db:6c:03:89:a9:fb:37:14:ae:a9:ff:f4:
30:bd:0a:86:6f:a5:f6:39:00:3f:d9:27:e7:13:4e:4b:13:99:
c0:59:ed:4a:42:67:cb:b6:50:32:06:3b:88:86:cb:e4:10:6a:
ea:ef:7b:99:b2:a8:8c:d9:7f:df:2d:0d:b3:07:a9:e5:aa:df:
df:4d:9a:53:ba:ec:75:f3:2a:29:e9:36:67:9e:77:b0:fa:d0:
b9:e1:fd:da:69:87:ee:c4:86:c3:dc:6a:b1:f9:41:46:27:83:
dc:cd:24:ad:20:1f:25:84:a2:58:07:96:9c:e7:8b:84:2c:bb:
d8:48:a0:82:8d:82:38:f3:29:8a:72:56:2b:15:2d:e9:b3:f8:
23:0a:1f:ad:f0:b4:b8:cf:4f:b7:2e:5a:73:ae:ff:da:7c:6f:
f8:ff:03:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org