Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/467E92D2520C11EEB051E8584AD9E6FC.roa
File: 467E92D2520C11EEB051E8584AD9E6FC.roa (raw, json)
Hash identifier: xpMdHvP9/b/j3rNNq92ZM/WRe867aVwX6j0mQQw3lVU=
Subject key identifier: 4D:16:3D:C9:69:9E:F8:22:10:69:4A:02:5A:58:8D:C0:B4:CB:31:93
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 07AB
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/467E92D2520C11EEB051E8584AD9E6FC.roa
Signing time: Wed 13 Sep 2023 08:05:17 +0000
ROA not before: Wed 13 Sep 2023 08:05:14 +0000
ROA not after: Tue 13 Sep 2033 08:05:14 +0000
asID: 208949
IP address blocks: 192.142.22.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1963 (0x7ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Sep 13 08:05:14 2023 GMT
Not After : Sep 13 08:05:14 2033 GMT
Subject: CN=65016d3d-eba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d4:fe:82:02:c0:c7:20:61:6c:fa:9b:48:31:
fc:fc:da:54:f6:33:2e:be:16:9b:f2:a9:5a:34:3e:
d7:90:25:a9:a9:4d:77:ad:45:e0:32:4b:ee:cc:21:
9b:73:d1:29:1d:4c:bc:32:8e:cc:15:ea:19:69:35:
e8:a5:35:17:80:16:22:d9:9a:d4:95:24:b8:d5:90:
af:63:91:3e:52:b8:e1:c0:df:7a:dd:34:f8:5f:bf:
c3:7e:8e:83:6d:03:00:c6:3a:90:ac:46:05:f3:97:
f9:91:1d:80:c2:3d:1c:d5:c5:f7:b4:57:d0:31:65:
20:c7:0b:8e:32:08:32:18:7b:c5:e0:25:cb:04:1d:
e0:a3:e7:16:2c:01:03:f4:7c:dc:0b:66:46:de:28:
e4:a9:8b:b5:d0:a8:32:1d:37:5d:fa:bb:ed:a8:1c:
ec:cd:c6:47:a5:37:2a:3a:5f:ab:90:9e:32:18:24:
ec:79:6d:32:28:a1:d2:fe:85:14:bc:96:c7:1b:65:
13:9f:99:69:f6:fa:27:f3:08:3b:70:cb:ea:44:ae:
dc:46:ec:93:c5:84:a8:b8:7a:60:71:6d:90:42:b3:
51:58:80:39:28:eb:de:b5:97:e6:5e:95:81:c3:ab:
5a:ed:d0:c9:51:b2:56:05:6d:4f:ee:71:b3:9f:3e:
0c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:16:3D:C9:69:9E:F8:22:10:69:4A:02:5A:58:8D:C0:B4:CB:31:93
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/467E92D2520C11EEB051E8584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.22.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:83:bd:0b:14:01:8b:86:fa:89:1e:5e:36:af:64:17:90:3a:
89:45:ea:95:fd:f8:8c:f6:bc:4f:11:cb:24:89:37:8e:c9:56:
c8:12:83:b7:5b:66:97:a4:50:a1:cb:cf:d3:10:5e:80:bb:d7:
b6:6d:94:47:d8:21:22:d1:19:eb:19:08:65:94:7d:38:2b:5f:
1d:b6:53:d3:a4:b9:a6:dd:38:b2:82:46:81:97:08:dd:eb:aa:
f3:3b:a3:b3:16:14:86:84:8c:42:7b:4e:2f:98:77:7d:8b:1c:
f5:2d:79:64:8d:ea:cf:0a:f7:c7:45:e4:3e:a8:d8:00:68:01:
f0:b2:95:d3:56:c1:03:73:b9:bf:bf:e9:44:38:dc:1a:49:eb:
c7:53:6e:e1:81:7c:9a:12:63:45:3d:b6:98:23:93:b7:18:4a:
68:38:a7:55:d9:2f:2c:95:8e:93:15:ef:a2:9a:0c:e9:3d:9f:
66:dd:ae:f1:51:18:6f:a7:f9:1c:26:84:af:c8:e9:57:21:23:
43:f7:39:6e:bf:ba:1d:09:01:a1:35:dc:a5:ec:f2:a5:12:17:
37:21:7c:f6:c2:ed:82:4e:05:bf:c1:56:25:82:1d:18:4e:96:
42:88:a8:d1:4f:29:ee:71:04:01:0d:67:38:9b:5b:f9:a7:4a:
83:2a:cf:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:48:46 2024 by rpki-client on console-fra.rpki-client.org