Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/652F3362A57611EF9FA4B189762E951A.roa
File: 652F3362A57611EF9FA4B189762E951A.roa (raw, json)
Hash identifier: WZSoZfNNjDTYwEyPuJrxkCmJZ7xywENpnbT5azEqU64=
Subject key identifier: 6A:44:DC:0B:BB:5A:89:84:2E:22:0C:41:53:A3:77:C9:7F:44:EB:20
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0AF6
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/652F3362A57611EF9FA4B189762E951A.roa
Signing time: Mon 18 Nov 2024 06:28:59 +0000
ROA not before: Mon 18 Nov 2024 06:28:55 +0000
ROA not after: Tue 14 Nov 2034 06:28:55 +0000
asID: 30431
IP address blocks: 192.142.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2806 (0xaf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:28:55 2024 GMT
Not After : Nov 14 06:28:55 2034 GMT
Subject: CN=673adeab-4423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:26:bf:a1:69:dc:a1:02:86:85:de:e5:07:00:
65:c4:8a:8d:8d:f9:a2:ab:a3:42:24:a9:4d:a8:3d:
f0:e4:39:26:5b:ff:5a:16:28:d2:c1:f7:98:f3:41:
62:9f:5e:89:08:0c:b4:f8:d6:7a:48:e0:49:47:d9:
35:cf:aa:05:01:83:7d:25:fa:10:30:60:6a:08:e5:
9b:49:52:21:aa:59:ae:15:73:9a:dc:c1:bd:86:b1:
23:dc:7f:4d:9f:1a:33:27:0b:0d:4d:6c:9b:d2:5b:
96:86:39:0d:4a:56:b0:98:d8:82:7d:71:9c:5d:a7:
20:83:31:09:4f:4e:99:6c:5a:87:5a:c2:cf:59:e6:
6d:2b:eb:cf:dd:11:4c:b5:34:02:3f:ea:c9:11:74:
6d:85:43:ab:2f:ce:d7:cd:3c:78:79:08:99:fe:ce:
4f:5c:b0:d2:f1:02:69:e2:85:15:f7:5e:33:0d:5e:
d5:00:41:47:57:76:3a:87:f7:dc:db:c3:32:8c:91:
58:0b:dd:53:4d:e1:0c:dd:d5:fc:63:9d:2c:5a:ad:
1d:a3:e6:1b:26:f3:5b:a5:65:82:e0:17:64:72:78:
c0:56:37:87:92:47:c1:b9:1c:33:9c:8f:54:b5:3c:
cf:b3:3c:1d:4d:21:a8:23:73:54:bc:43:45:73:80:
ef:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:44:DC:0B:BB:5A:89:84:2E:22:0C:41:53:A3:77:C9:7F:44:EB:20
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/652F3362A57611EF9FA4B189762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.78.0/24
Signature Algorithm: sha256WithRSAEncryption
93:4b:15:c3:85:c7:88:43:35:cb:e5:c8:0f:e7:71:10:d1:21:
9a:14:d1:10:3f:2a:73:68:bd:90:1a:80:26:38:f5:52:01:97:
b4:31:16:70:19:e0:21:53:4d:33:d9:67:5c:a9:00:9a:97:f9:
6a:b9:83:c8:e7:3a:6f:a7:63:d6:64:17:61:db:59:91:a0:59:
6b:59:79:87:5a:4f:63:8c:be:55:dd:29:64:1c:38:b5:00:ff:
54:46:62:51:53:5a:42:d1:47:35:66:b4:3a:15:b3:d1:31:ff:
dc:63:9a:70:a0:79:d3:a9:f8:55:09:82:dd:b7:72:60:ce:32:
c3:c4:8f:6c:a9:e9:cb:e5:29:a4:68:61:bc:99:4a:1e:1d:3d:
a1:e9:5b:4a:f1:21:f7:6f:e5:2a:4e:73:83:c2:1b:df:08:31:
d2:09:6a:bd:cc:05:52:4f:78:67:40:af:6b:53:d3:00:10:68:
4f:3e:ae:2d:2c:60:c1:89:d5:1e:d4:57:80:22:30:17:b0:5d:
73:47:f8:cd:88:23:1c:a3:42:06:2f:53:50:22:d4:86:20:68:
e8:32:4b:73:60:09:b0:02:2e:24:13:fc:14:46:eb:5b:11:79:
9c:4f:78:64:c2:0e:e2:07:49:00:89:29:29:39:4b:42:17:91:
9c:32:bb:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org