Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/05A1A340054411EEBF5D77164AD9E6FC.roa
File: 05A1A340054411EEBF5D77164AD9E6FC.roa (raw, json)
Hash identifier: HoeKDfr0DvXOfRwyGQfmBfFFXC2vBes8hiVr2AdIyUQ=
Subject key identifier: AA:69:D4:93:CB:A6:95:FC:A6:56:2F:E6:21:33:41:E9:87:10:E8:B9
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0709
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/05A1A340054411EEBF5D77164AD9E6FC.roa
Signing time: Wed 07 Jun 2023 15:00:20 +0000
ROA not before: Wed 07 Jun 2023 15:00:17 +0000
ROA not after: Wed 08 Jun 2033 15:00:17 +0000
asID: 208949
IP address blocks: 192.142.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1801 (0x709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jun 7 15:00:17 2023 GMT
Not After : Jun 8 15:00:17 2033 GMT
Subject: CN=64809b84-cea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:80:35:43:7a:2e:1e:59:d1:cb:36:8d:4e:59:
a5:20:e7:be:ad:d6:aa:6c:e5:c7:98:2f:7b:fb:a7:
98:2e:b0:a2:6a:5d:aa:3f:0e:23:70:c9:db:bb:f4:
8a:19:ba:2f:a9:08:0b:34:19:1c:e5:ec:ee:5a:67:
b9:a7:32:98:6f:a5:87:7f:44:0e:78:0d:d4:e0:49:
09:87:66:bf:e9:17:06:09:e0:83:0c:e6:e8:f1:a6:
c8:0b:22:a4:85:1d:2a:18:51:05:39:bf:b5:3b:f1:
9b:20:55:d1:dc:eb:a6:19:13:3e:91:fc:15:07:38:
ff:23:e2:e4:ad:ac:e3:8b:15:8d:23:e1:b0:5c:4e:
09:c6:b0:b8:82:f4:01:2e:47:17:db:11:98:5a:68:
47:d7:7a:70:88:2d:83:ec:03:27:54:96:ca:34:9c:
09:60:f0:76:9f:0a:cb:1d:3c:00:29:d3:8b:3f:78:
89:b7:1a:4f:74:b0:5f:7f:15:30:39:ea:0e:13:9f:
59:b7:a4:8e:80:f6:b1:ec:1f:ed:02:c3:ad:95:5e:
52:9a:ce:f7:7c:45:ba:74:be:0c:ef:ab:70:63:16:
6f:a1:b9:0e:4c:27:d9:68:0a:1c:a4:6f:ed:79:e3:
7b:88:f9:25:73:99:0e:57:9a:2d:fa:4f:8e:42:99:
18:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:69:D4:93:CB:A6:95:FC:A6:56:2F:E6:21:33:41:E9:87:10:E8:B9
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/05A1A340054411EEBF5D77164AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.131.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:85:cd:6f:aa:fc:b2:da:74:ed:84:71:96:44:b6:1c:08:3f:
9e:8d:91:6f:88:2e:80:61:e4:f5:1a:2d:9f:92:32:f5:6d:c6:
33:2d:37:9c:85:9d:c3:23:db:60:30:a4:de:0c:59:8e:1b:e8:
dd:95:67:58:c4:ec:64:ba:f4:73:c0:6e:8d:3a:c6:99:18:61:
e5:21:cb:e2:12:f8:51:d1:5a:ba:a7:7b:c2:61:a8:17:98:c3:
d0:2c:0d:33:f2:f7:e9:c2:f3:22:50:02:d5:13:06:89:3d:68:
45:91:60:d0:a7:61:eb:ec:43:ae:bb:a3:19:5c:25:14:fb:c6:
fa:85:57:72:a7:01:69:51:41:9e:70:35:60:1b:5d:68:06:53:
3a:06:1a:38:d2:9e:1f:e3:3f:a7:ff:99:19:89:db:bc:a5:62:
65:ac:73:e6:f6:1a:70:d9:0a:e3:c5:b0:32:c1:32:64:12:8b:
20:e8:fa:06:a3:64:7f:8a:36:5f:ae:25:1f:18:ba:e8:2c:3c:
bc:9e:2e:77:d1:7b:4d:49:e4:8a:03:b5:29:f1:cb:2d:85:45:
d8:84:c1:a5:c0:ad:ba:9b:82:45:29:ff:9c:39:ff:15:be:05:
52:42:0e:17:43:c2:be:25:d2:55:79:3d:64:72:b5:f4:6a:44:
63:50:7c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 01:46:43 2024 by rpki-client on console-fra.rpki-client.org