Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2A315F72A57811EFBEDCA894762E951A.roa
File: 2A315F72A57811EFBEDCA894762E951A.roa (raw, json)
Hash identifier: ITVqK+XkLhB2w5mSWqNsHnwMaDGpu10UyXUaYX3iBE8=
Subject key identifier: 91:C6:0E:33:9E:6E:5E:3D:35:BE:69:60:E1:36:F4:F9:7D:D3:89:D6
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B14
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2A315F72A57811EFBEDCA894762E951A.roa
Signing time: Mon 18 Nov 2024 06:41:39 +0000
ROA not before: Mon 18 Nov 2024 06:41:36 +0000
ROA not after: Wed 15 Nov 2034 06:41:36 +0000
asID: 30431
IP address blocks: 192.142.200.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2836 (0xb14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:41:36 2024 GMT
Not After : Nov 15 06:41:36 2034 GMT
Subject: CN=673ae1a3-b746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:75:66:9f:aa:ae:42:c2:45:2b:b8:a5:b1:e9:
0b:bd:bd:07:99:d7:19:d7:f0:2f:bd:a6:3f:37:b6:
b7:15:41:50:7c:74:ec:3b:55:c7:84:26:5e:90:44:
79:5d:9d:cd:33:ce:71:50:35:bc:f1:1f:5f:af:82:
6c:d2:2e:f5:e3:e5:15:9b:2e:52:db:34:2c:53:4c:
f2:85:7b:d4:13:61:ca:0e:b2:2f:64:45:05:0e:82:
83:5a:c3:21:05:f3:81:24:3f:05:fc:10:0c:2c:0e:
89:84:f2:33:2f:5f:b5:8e:52:1a:17:76:4d:e2:b9:
ec:15:f5:69:06:90:f0:2c:f5:da:09:49:86:e5:74:
e9:f1:6e:d1:5b:8e:a7:9e:dd:94:bd:b4:29:01:61:
4d:14:7d:41:3b:33:30:72:49:65:97:47:6f:dd:c6:
be:b2:9a:fa:15:db:31:1c:e6:2f:f3:fd:c7:1c:e1:
9f:72:92:49:93:ec:4f:93:29:fb:46:64:18:64:84:
19:ee:b4:30:ef:d9:29:e0:3a:2e:01:4d:fe:f0:10:
5b:b9:53:9c:7d:4f:13:cc:0e:c9:cc:0b:1e:dd:9f:
a2:ec:25:ec:ea:3a:d7:e9:53:2c:ea:a2:ad:d1:7c:
de:a5:53:d2:6c:ab:42:b5:ca:6c:0e:c2:fc:89:e2:
dc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C6:0E:33:9E:6E:5E:3D:35:BE:69:60:E1:36:F4:F9:7D:D3:89:D6
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2A315F72A57811EFBEDCA894762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.200.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:d5:f9:cb:8c:93:15:d2:9c:fe:53:4d:71:aa:5f:fd:93:0a:
c4:b5:5b:f8:10:8c:9e:59:cf:61:59:cd:50:59:7f:1d:a6:07:
88:a9:93:57:8c:b1:97:bf:80:94:fe:b3:d1:c0:0e:d5:97:0c:
02:6e:d2:69:49:75:9b:d8:36:b2:63:e5:3d:b1:f8:10:d1:3d:
32:72:c1:92:d5:ad:fe:2e:7a:bf:fd:64:84:2a:4b:dd:82:8f:
0a:fd:44:c7:6a:bb:d5:0b:28:04:19:32:ba:31:92:f7:6a:b6:
4f:d8:06:8e:f5:76:99:d0:95:00:a4:94:1f:c2:48:94:4b:3f:
cf:b1:d8:9f:ff:3e:ec:b1:20:65:b9:a4:92:d4:64:20:e0:1f:
d6:13:99:c2:09:c5:da:d9:49:b7:5d:ec:8d:fb:89:e9:0c:a3:
2c:80:12:bd:a5:d4:19:32:cd:8d:61:8a:72:f2:e3:34:82:10:
23:96:e3:9a:8c:3f:39:fa:0e:ca:26:3b:3d:61:22:58:a3:3a:
d5:10:91:5d:d5:8f:8d:1c:c1:4f:c5:81:d6:04:a8:ff:1d:7b:
5f:5f:9f:a9:b5:48:8d:bb:fd:a0:fa:70:3e:78:a6:4e:de:96:
39:09:33:67:ff:ce:69:5b:f1:40:12:85:29:68:3a:99:d0:84:
05:64:2e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org