Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2707B02E9DD711EFBAA79762762E951A.roa
File: 2707B02E9DD711EFBAA79762762E951A.roa (raw, json)
Hash identifier: I3zs/jsDY1SG0hXWDMK071/W9yPGQaADh+wBsGxFNB0=
Subject key identifier: DA:63:A3:4C:CD:0D:05:99:20:14:85:78:91:9D:D9:D6:E4:CE:F4:FD
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0AC9
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2707B02E9DD711EFBAA79762762E951A.roa
Signing time: Fri 08 Nov 2024 13:41:27 +0000
ROA not before: Fri 08 Nov 2024 13:41:23 +0000
ROA not after: Wed 08 Nov 2034 13:41:23 +0000
asID: 6206
IP address blocks: 192.142.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2761 (0xac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 8 13:41:23 2024 GMT
Not After : Nov 8 13:41:23 2034 GMT
Subject: CN=672e1507-0c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:25:9b:f6:cd:0a:cd:49:4b:7e:de:aa:18:0c:
6f:3b:b1:3d:15:ec:72:bc:38:12:da:cf:34:08:50:
69:30:ba:dd:73:6a:5f:f4:d7:83:63:89:31:2a:a5:
de:86:65:f4:f5:e3:54:01:9c:95:f3:5f:6d:82:87:
16:34:c6:9c:14:b1:e8:92:0d:cb:79:0a:d1:29:49:
5d:06:b2:68:62:e1:f9:a8:23:24:3e:91:5e:6c:92:
79:22:b3:56:38:cf:e0:a7:85:ed:7f:65:90:b8:73:
1b:b8:a3:12:af:b2:a7:b7:9c:04:5a:61:9c:c6:6d:
50:57:1c:6a:38:89:1d:36:68:5b:dd:ca:a0:bd:9d:
82:c0:19:ee:f2:94:ce:6a:06:40:06:6b:db:cc:4d:
bc:2a:0b:dc:86:5b:b6:a6:7a:0b:95:1f:bb:0d:fb:
52:62:2c:bc:a1:59:8f:f6:3f:aa:72:e5:e3:7e:2c:
bf:e4:ac:d2:82:91:56:32:f8:9a:ae:c6:a9:05:3c:
a6:fc:ff:ff:3d:4f:09:29:67:bf:7e:3c:c9:eb:c5:
2f:c4:0e:2b:54:28:55:8b:5e:a7:7a:29:d1:a7:00:
53:50:96:29:ed:6f:90:88:1b:65:14:55:dd:38:04:
57:88:d9:78:97:9b:39:4d:b5:fd:06:87:5c:cd:5b:
de:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:63:A3:4C:CD:0D:05:99:20:14:85:78:91:9D:D9:D6:E4:CE:F4:FD
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2707B02E9DD711EFBAA79762762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.6.0/24
Signature Algorithm: sha256WithRSAEncryption
18:9f:65:22:10:e0:86:84:43:3b:3d:10:44:1f:11:e9:c9:9a:
6a:a8:64:cf:12:8e:9a:ba:5e:64:64:a9:f6:25:f3:56:b0:05:
df:b3:40:75:05:6d:78:25:15:9e:f3:5a:4b:63:ae:4f:74:7e:
22:3d:6e:3d:52:05:8d:71:86:02:7e:42:5e:73:db:da:2e:cb:
24:b1:b3:04:f1:1b:fd:03:0b:aa:a0:f7:0f:7d:a6:fb:54:e3:
f4:8b:e4:6b:7e:64:48:dd:3b:e0:9a:87:37:41:f7:a4:42:01:
8a:32:6e:77:82:2d:30:40:d9:35:5b:a4:93:9d:a0:f2:b0:86:
ce:64:0a:09:ab:ec:82:a5:9e:ad:5c:e6:11:33:ad:16:fb:28:
3e:72:30:a9:e9:f9:a1:24:65:c7:84:1e:a7:69:1f:f8:90:08:
c1:70:ee:89:98:86:4b:ec:97:f6:f2:88:2e:99:e5:75:bc:e5:
4a:30:ac:0c:16:af:99:62:bc:05:8f:38:d0:47:f7:95:24:ee:
03:a6:aa:2f:44:cf:17:00:5b:6b:ab:a8:22:df:4d:58:e9:87:
c8:03:bf:c9:e8:e2:87:90:e3:8c:c8:f7:39:90:18:a1:c2:cb:
7f:f4:0a:85:6a:2c:d7:0e:b1:62:b5:8a:01:56:6f:bb:87:9b:
ea:f2:f7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org