Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/0946A062A57611EFBAFFCE87762E951A.roa
File: 0946A062A57611EFBAFFCE87762E951A.roa (raw, json)
Hash identifier: AgBZWYcG32Ggxow5EDuK5w8mGp+PwZmf91VZ3A20O8Q=
Subject key identifier: 1C:E2:7A:B9:BA:6B:98:EF:96:BA:E1:86:4B:99:3B:30:54:2D:6F:E3
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0AF4
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/0946A062A57611EFBAFFCE87762E951A.roa
Signing time: Mon 18 Nov 2024 06:26:25 +0000
ROA not before: Mon 18 Nov 2024 06:26:21 +0000
ROA not after: Wed 08 Nov 2034 06:26:21 +0000
asID: 30431
IP address blocks: 192.142.76.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2804 (0xaf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:26:21 2024 GMT
Not After : Nov 8 06:26:21 2034 GMT
Subject: CN=673ade11-91b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:61:5a:dd:6b:81:78:84:7b:cd:13:34:22:c0:
ff:37:f7:77:ce:54:1b:54:76:c0:4a:e8:36:9d:66:
fd:c8:9b:da:a5:cc:08:42:95:f4:3c:36:0f:b1:eb:
f8:c0:c1:7b:2b:a3:a6:cb:81:95:a8:a2:7f:40:40:
e9:30:84:cb:e2:66:cb:81:8e:26:d4:5e:f7:2d:c9:
2d:d5:28:f1:4c:4c:d3:55:9f:2f:14:8e:b9:85:e5:
84:74:63:e6:66:4b:9e:08:42:44:4b:e1:49:a0:e2:
29:58:59:74:a5:83:c4:54:26:d4:62:77:f1:cd:69:
16:5e:54:1e:04:9b:5a:57:b2:22:ba:e6:bb:4b:16:
2d:8a:68:d2:09:0d:c0:ee:6e:a9:75:4c:97:9b:b4:
fb:1d:e7:29:de:0e:4f:99:40:22:d6:27:c5:db:c8:
fd:f1:88:00:b0:0e:12:8d:c1:2e:d7:ae:50:14:86:
b4:8f:0a:17:30:75:77:43:2d:54:7a:32:80:da:08:
a1:f6:61:e1:07:40:c1:fd:d0:be:9c:bb:0c:5b:75:
53:a9:c8:ca:bb:0a:58:3d:71:20:62:e8:fb:e8:b0:
31:83:19:3c:00:73:5c:a1:c1:78:2f:e4:b8:ad:b4:
1d:a2:b0:59:44:fd:ed:f0:25:bc:d0:7d:e9:bb:22:
8c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E2:7A:B9:BA:6B:98:EF:96:BA:E1:86:4B:99:3B:30:54:2D:6F:E3
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/0946A062A57611EFBAFFCE87762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.76.0/23
Signature Algorithm: sha256WithRSAEncryption
42:10:06:83:71:57:8c:54:fa:5c:04:7f:21:0e:7f:63:9c:79:
a5:a1:bc:a0:8a:a4:25:62:ae:18:16:3f:7d:54:4d:64:f7:17:
65:65:40:37:a2:83:a7:28:af:52:78:4f:8d:e0:f4:2f:2c:62:
08:8a:2b:c4:3a:c7:a5:f6:15:af:79:cb:05:5e:f8:d5:ef:b8:
84:5a:c4:2f:8e:67:e4:49:59:62:61:13:d4:0a:9e:78:b2:d9:
57:e4:df:1c:4e:b5:93:4d:ac:ef:57:4b:c0:fe:69:20:4c:79:
13:2f:ee:d2:18:53:f2:bd:5e:d7:c7:0b:0d:c7:a0:48:f1:52:
22:04:26:85:48:06:34:8b:e8:4c:a3:b2:e0:69:19:8f:f2:e5:
da:3c:d1:dc:bc:9e:45:d0:b3:6f:ca:97:aa:1a:68:a8:a8:bb:
5c:cb:a8:f8:05:3e:8a:fe:24:e5:44:05:19:d0:55:44:d1:91:
ed:94:6a:02:65:8c:0a:83:39:d4:3b:11:bf:18:02:d2:7e:99:
db:dc:09:77:e4:c4:e0:74:8a:52:c9:59:6c:23:8f:8a:a8:14:
f5:e6:24:a8:53:c4:4d:45:04:21:fa:c5:7c:f0:84:14:f2:d9:
e7:fb:ea:20:75:6c:f5:7c:b3:75:a6:ba:f0:4d:b9:60:8e:fa:
e9:16:d5:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org