Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/10249AEEA57911EFBF00D29A762E951A.roa
File: 10249AEEA57911EFBF00D29A762E951A.roa (raw, json)
Hash identifier: FzWwLkysLWIYzry14xtXaJxfc2GDY58rMdUBxCLTSIE=
Subject key identifier: CE:73:48:34:42:BE:C6:F1:5D:AE:B3:1F:68:1F:B1:93:41:67:8F:E3
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B20
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/10249AEEA57911EFBF00D29A762E951A.roa
Signing time: Mon 18 Nov 2024 06:48:05 +0000
ROA not before: Mon 18 Nov 2024 06:48:01 +0000
ROA not after: Tue 14 Nov 2034 06:48:01 +0000
asID: 30431
IP address blocks: 192.142.240.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2848 (0xb20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:48:01 2024 GMT
Not After : Nov 14 06:48:01 2034 GMT
Subject: CN=673ae325-bbf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:22:15:d6:dc:f2:f5:f6:45:00:0d:55:31:c8:
83:36:a6:2f:e6:44:53:47:2c:1e:f0:64:57:3c:08:
08:9b:2a:80:5c:07:09:57:fe:e7:cb:87:2f:d9:01:
a3:a7:88:4c:8d:1c:1d:00:68:d1:e8:c1:ff:ce:3a:
d4:25:11:38:fd:2a:a0:00:4e:fe:0d:66:90:ff:e2:
65:02:ab:17:c6:bb:0c:b4:51:72:28:3f:d4:8d:f0:
fd:c7:98:84:5d:8f:46:7e:05:75:f2:f4:14:b7:80:
90:73:cf:7c:73:2c:4d:bc:76:0a:8b:a4:d2:04:13:
60:de:c2:3f:0c:d3:f1:d1:64:36:dc:f0:2e:ef:65:
21:bf:89:a2:9d:ad:87:db:e3:d0:cd:40:4f:f9:3c:
58:74:e8:07:b4:e6:32:21:7d:8e:bf:5a:36:ba:41:
c3:a7:0b:d6:15:77:99:84:2d:c6:f3:c4:92:9c:bc:
89:72:f2:80:25:0d:eb:ed:55:78:16:60:67:d0:2f:
03:41:96:d7:be:45:a1:6e:ef:d7:9e:f8:d8:7f:96:
35:6b:6d:82:a9:bc:4e:8b:c8:eb:b5:59:37:b6:b2:
08:c9:b5:bb:7f:81:3a:64:87:d2:0a:cd:04:04:42:
82:63:12:e7:35:58:fb:9a:76:bf:ee:64:d7:6b:9f:
d7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:73:48:34:42:BE:C6:F1:5D:AE:B3:1F:68:1F:B1:93:41:67:8F:E3
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/10249AEEA57911EFBF00D29A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.240.0/21
Signature Algorithm: sha256WithRSAEncryption
21:96:29:a7:61:38:69:77:98:e7:0e:ac:a9:02:b7:56:af:b9:
f1:a6:dd:7d:0b:ca:17:b7:52:bd:64:06:f2:da:3c:82:08:24:
e4:ed:d4:96:7e:8e:9c:7d:1c:cd:08:cf:5c:64:09:35:ad:e8:
d4:62:fb:b9:67:6b:6a:72:66:cf:95:39:35:f4:96:5e:ae:95:
c9:65:79:10:41:11:93:5e:bb:3a:7c:a6:94:18:e6:6a:d5:8d:
c5:10:74:2c:10:31:62:eb:82:64:a3:cb:41:4f:55:c4:98:bc:
98:b1:e0:47:cc:64:49:37:57:85:d6:eb:dd:76:73:39:0a:70:
e4:02:5c:8d:25:ff:5b:71:6f:93:c9:9e:ab:1d:36:9b:10:6d:
23:d3:c7:a0:0e:15:06:90:14:a5:18:cc:92:0e:61:cb:5e:c2:
43:ae:02:ee:36:78:e6:7e:50:a8:13:f5:cc:ea:32:a0:fd:c4:
77:4a:3f:e0:e1:61:02:6e:2d:2b:8c:3b:53:14:02:dd:61:7a:
a9:85:86:2c:d7:dc:aa:b9:fc:67:61:fc:ca:f5:35:cd:44:44:
72:86:72:2b:d4:87:88:2c:ce:e5:2f:14:68:66:1e:d9:b1:ee:
8a:8f:5f:4b:86:7a:77:ea:cd:0f:d8:56:25:81:b2:58:a4:80:
b6:97:7c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org