Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5BFF39469DD711EF8DEC6E64762E951A.roa
File: 5BFF39469DD711EF8DEC6E64762E951A.roa (raw, json)
Hash identifier: xjyIg4hlh6h+SDgCqXGgI3dmomcxx6w8vLOb+ebyavw=
Subject key identifier: 35:6C:11:74:E7:22:0D:94:72:F0:BE:7A:C0:13:25:A3:29:AD:2F:EC
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0ACB
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5BFF39469DD711EF8DEC6E64762E951A.roa
Signing time: Fri 08 Nov 2024 13:42:56 +0000
ROA not before: Fri 08 Nov 2024 13:42:52 +0000
ROA not after: Wed 08 Nov 2034 13:42:52 +0000
asID: 6206
IP address blocks: 192.142.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2763 (0xacb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 8 13:42:52 2024 GMT
Not After : Nov 8 13:42:52 2034 GMT
Subject: CN=672e1560-948e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:69:92:f7:d3:65:be:3c:1a:51:53:d5:2b:fe:
cb:62:fb:fc:29:89:24:d1:8d:8b:43:09:03:c6:58:
a0:a1:9e:78:80:78:0e:62:26:f1:ef:44:40:fb:7d:
06:f7:75:c5:18:67:03:89:69:f2:62:03:a1:d2:3b:
07:ee:34:26:e0:c1:56:1f:2a:b5:14:de:46:59:f6:
28:b9:53:75:09:5d:cd:96:2b:dc:bd:61:3d:04:5f:
00:ce:78:21:6d:10:25:5d:00:ef:05:3f:b0:9f:5b:
be:76:c1:de:f6:eb:a6:c2:99:4e:15:d4:19:73:42:
26:1b:f2:b8:19:27:92:c9:9f:a3:bd:7b:93:1a:d6:
0d:53:e7:43:09:b3:4f:22:da:91:ea:02:09:b5:b3:
fe:56:27:55:8a:29:0d:7c:ad:a6:30:cc:c9:68:c7:
f6:5f:18:33:2b:92:01:7c:8e:3d:44:aa:af:e0:ca:
d6:a9:79:0a:b2:e4:a7:ca:19:a5:3a:47:c6:47:a6:
56:82:dd:c9:1e:ff:3a:4a:58:5d:28:5a:ff:7a:1b:
62:f1:8f:20:39:13:4a:b1:1d:7e:ae:ea:26:90:9a:
e7:71:58:94:f3:45:3d:21:fa:ec:83:7a:f9:76:97:
f4:25:29:90:1c:02:d9:eb:df:07:74:cf:c2:da:5b:
c3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6C:11:74:E7:22:0D:94:72:F0:BE:7A:C0:13:25:A3:29:AD:2F:EC
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/5BFF39469DD711EF8DEC6E64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.12.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:c1:54:3f:ae:e3:69:08:2b:50:1c:ab:b7:c3:14:57:e3:e6:
d8:c8:56:fa:e4:e5:47:83:49:e5:53:13:f6:dd:e1:97:6c:d9:
21:47:a1:6d:73:8b:cd:4d:13:f0:17:13:fb:05:ec:a5:d9:07:
f5:94:da:0e:62:9d:7e:72:e8:29:0b:be:54:96:ed:94:9f:cb:
ac:27:fd:0b:3b:bc:65:0b:2b:16:c5:e9:41:cf:76:09:d8:8a:
ac:76:85:63:d1:44:aa:81:fc:65:56:9b:4f:93:54:d5:b6:b9:
e5:41:f7:2a:bf:85:81:20:47:4c:fe:e7:93:1d:7a:8e:ea:6d:
a1:61:82:e7:15:76:c6:3a:c3:c5:30:19:40:37:22:53:fc:90:
f7:d4:fb:19:a2:b9:9e:c6:a2:79:75:70:e7:7a:06:09:5a:52:
c1:09:6f:a1:85:56:cf:5d:85:de:83:77:82:7c:44:d5:9c:27:
f6:6b:81:1b:4c:20:a5:8e:b9:28:72:d3:86:eb:2c:08:f6:c6:
97:f2:04:c9:40:54:31:5f:f6:a3:24:08:0c:ca:8f:14:e8:a1:
25:43:bc:ea:15:a7:e2:dd:1f:74:5e:a1:c7:6c:2a:d6:90:d4:
1b:82:1c:e0:a0:9b:ed:0a:f7:83:8c:72:09:d1:96:31:45:65:
b5:57:ed:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org