Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/1E882B36B91311ED908FF7C5F1222468.roa
File: 1E882B36B91311ED908FF7C5F1222468.roa (raw, json)
Hash identifier: J3Ox6tEewpyZMUGHBiqoV4W06dJWy1HS7YXLb3OZi0k=
Subject key identifier: 73:98:B8:3C:D4:91:88:8D:83:1A:BD:46:82:A2:A8:CF:87:D0:54:2F
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0661
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/1E882B36B91311ED908FF7C5F1222468.roa
Signing time: Thu 02 Mar 2023 15:58:49 +0000
ROA not before: Thu 02 Mar 2023 15:58:45 +0000
ROA not after: Wed 09 Mar 2033 15:58:45 +0000
asID: 205320
IP address blocks: 192.142.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1633 (0x661)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Mar 2 15:58:45 2023 GMT
Not After : Mar 9 15:58:45 2033 GMT
Subject: CN=6400c7b9-4666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:66:f0:f0:65:0e:17:41:1b:e5:43:1d:d5:57:
9b:98:c3:42:ef:32:0d:56:f6:cc:3e:1a:ec:4b:55:
9f:28:7b:37:f5:d7:5c:b7:6c:75:4e:e9:a8:31:9a:
dd:f1:06:a6:cd:60:6a:da:b8:6d:c4:a5:e1:17:56:
ce:44:69:3c:e7:08:ff:00:3f:c5:47:6e:c9:ab:76:
f7:3f:41:8f:9e:ad:58:14:fc:b4:db:e7:4f:f5:0d:
1f:35:83:ae:67:c3:5a:46:43:d9:91:ed:12:95:12:
05:79:18:15:e9:9c:aa:cc:f5:60:fb:be:23:4c:d4:
66:5f:7a:b9:38:5f:fc:e2:8f:95:45:7e:13:b8:ed:
38:69:17:b3:e6:32:63:7b:ee:03:ab:30:cb:ea:53:
7b:97:cc:1a:d4:a7:80:24:67:30:d2:cf:bc:a5:be:
4d:40:05:c0:d5:e0:0f:33:e7:38:65:3d:a5:7f:f3:
95:0b:c9:1c:a9:87:44:7f:48:05:40:fb:cc:be:d9:
7d:0c:c1:40:c1:75:50:0c:bf:6c:6f:0d:09:03:63:
93:7d:3c:77:bf:7d:68:57:20:e5:a9:ca:6c:57:b0:
b7:97:23:35:15:9e:49:3f:7e:0b:a0:89:1d:d4:1a:
75:d4:49:23:88:d5:c0:8f:25:e6:08:b7:2f:8e:9f:
9d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:98:B8:3C:D4:91:88:8D:83:1A:BD:46:82:A2:A8:CF:87:D0:54:2F
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/1E882B36B91311ED908FF7C5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.31.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:6c:da:15:c5:db:c7:c3:1d:ea:ca:0e:c0:57:e0:a9:b9:1d:
bb:f0:6a:63:27:8b:80:93:cc:37:12:11:7a:ce:09:29:b8:fd:
24:ba:23:9b:80:f5:bd:07:77:f3:2d:ff:9a:ff:4e:b8:fd:0c:
e5:71:a2:f3:a9:8e:d3:ad:95:86:84:12:87:b9:de:62:4a:5d:
35:d9:c3:f9:40:b8:9e:5a:7c:5a:c3:a6:89:50:a4:65:eb:13:
a1:41:40:b3:95:f6:c0:fd:c4:03:91:72:5d:3c:72:45:15:06:
f1:e8:e1:18:61:29:ed:d9:08:d5:8f:6f:53:e1:81:d3:c3:e6:
03:ba:07:42:29:9b:0f:f8:70:f5:9a:04:ee:a9:9c:02:ea:a3:
ec:d8:44:70:69:b2:4c:56:63:f4:7a:84:8c:a9:35:2a:c8:d5:
9e:97:40:39:14:30:89:90:d1:3a:24:7b:da:f3:29:f7:62:1f:
ee:fa:87:af:b0:97:c3:88:f9:53:1e:8a:f0:83:72:57:ff:d6:
c3:a7:d0:51:ce:7e:06:e4:b8:e1:0d:bf:1e:98:7e:d3:74:7e:
b8:ff:92:a8:2d:10:28:39:ca:7b:18:13:c6:65:12:ef:8e:9d:
4a:07:64:20:27:ba:d8:c1:5c:77:54:34:7c:4d:18:35:8a:a7:
1e:fc:af:3e
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yMzAzMDIxNTU4NDVaFw0zMzAzMDkxNTU4NDVaMBgxFjAU
BgNVBAMMDTY0MDBjN2I5LTQ2NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCsZvDwZQ4XQRvlQx3VV5uYw0LvMg1W9sw+GuxLVZ8oezf111y3bHVO6agx
mt3xBqbNYGrauG3EpeEXVs5EaTznCP8AP8VHbsmrdvc/QY+erVgU/LTb50/1DR81
g65nw1pGQ9mR7RKVEgV5GBXpnKrM9WD7viNM1GZferk4X/zij5VFfhO47ThpF7Pm
MmN77gOrMMvqU3uXzBrUp4AkZzDSz7ylvk1ABcDV4A8z5zhlPaV/85ULyRyph0R/
SAVA+8y+2X0MwUDBdVAMv2xvDQkDY5N9PHe/fWhXIOWpymxXsLeXIzUVnkk/fgug
iR3UGnXUSSOI1cCPJeYIty+On52TAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUc5i4
PNSRiI2DGr1GgqKoz4fQVC8wHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4LzFFODgyQjM2QjkxMzExRUQ5MDhGRjdDNUYxMjIyNDY4LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADAjh8wDQYJKoZIhvcNAQELBQAD
ggEBAA5s2hXF28fDHerKDsBX4Km5HbvwamMni4CTzDcSEXrOCSm4/SS6I5uA9b0H
d/Mt/5r/Trj9DOVxovOpjtOtlYaEEoe53mJKXTXZw/lAuJ5afFrDpolQpGXrE6FB
QLOV9sD9xAORcl08ckUVBvHo4RhhKe3ZCNWPb1PhgdPD5gO6B0Ipmw/4cPWaBO6p
nALqo+zYRHBpskxWY/R6hIypNSrI1Z6XQDkUMImQ0Toke9rzKfdiH+76h6+wl8OI
+VMeivCDclf/1sOn0FHOfgbkuOENvx6YftN0frj/kqgtECg5ynsYE8ZlEu+OnUoH
ZCAnutjBXHdUNHxNGDWKpx78rz4=
-----END CERTIFICATE-----
Generated at Sat Jun 1 02:00:29 2024 by rpki-client on console-ams.rpki-client.org