Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/7D5BFEBC9DD711EF8DAF7D64762E951A.roa
File: 7D5BFEBC9DD711EF8DAF7D64762E951A.roa (raw, json)
Hash identifier: ghLAWjDiqWclS0qj/8VRYpEAisX106rm9FOxf65h4xc=
Subject key identifier: BC:28:1D:A6:2A:EE:BC:5E:0D:7D:EA:E1:82:1D:D2:47:47:0E:A0:C8
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0ACD
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/7D5BFEBC9DD711EF8DAF7D64762E951A.roa
Signing time: Fri 08 Nov 2024 13:43:52 +0000
ROA not before: Fri 08 Nov 2024 13:43:48 +0000
ROA not after: Wed 08 Nov 2034 13:43:48 +0000
asID: 6206
IP address blocks: 192.142.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2765 (0xacd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 8 13:43:48 2024 GMT
Not After : Nov 8 13:43:48 2034 GMT
Subject: CN=672e1598-166b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f5:62:7c:24:3a:f3:fe:fb:0c:eb:68:85:f3:
98:e9:93:3e:98:ae:97:8e:39:93:cf:6e:53:bf:77:
04:f7:62:d9:29:8a:bf:6c:93:d4:34:04:c2:ad:57:
bc:4e:36:bc:40:77:7c:c3:7e:33:02:fd:a5:37:85:
88:5f:eb:5e:76:e5:5b:a6:62:e6:5a:7b:f0:93:3f:
52:0a:cf:c8:a8:fb:08:ec:18:69:11:4e:9f:ad:91:
47:9d:8d:c8:ba:2a:3d:83:98:9f:77:b1:9e:15:e8:
9e:d2:7e:ae:d7:1d:a3:c5:d1:30:2c:ad:cf:75:2d:
df:7f:92:6d:fe:c6:92:3a:d6:e4:b3:4d:42:36:f8:
02:5d:22:1c:30:fa:91:40:f4:74:5a:37:1e:0f:9b:
ab:28:8e:77:04:62:18:06:cf:bc:1f:17:7c:05:c4:
af:62:80:32:71:5e:3e:aa:a5:55:f9:b1:42:45:30:
08:a0:df:6b:29:e0:51:71:62:87:53:a6:f3:a1:2e:
05:b3:e7:64:51:0c:44:0f:79:c3:fe:c5:a9:36:fa:
10:01:26:cb:38:97:12:30:44:ff:e9:bc:57:c5:24:
c5:ae:56:87:96:c8:3b:fa:9b:09:f0:90:d6:4b:cd:
69:f5:67:13:7f:bd:f7:8e:bf:be:4c:80:f7:98:c2:
b0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:28:1D:A6:2A:EE:BC:5E:0D:7D:EA:E1:82:1D:D2:47:47:0E:A0:C8
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/7D5BFEBC9DD711EF8DAF7D64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.20.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:54:0a:9c:54:24:78:2a:67:72:8f:e2:8f:1c:cb:c8:38:28:
b7:e3:5d:a5:b0:21:79:15:d3:7f:42:fd:84:da:54:57:3b:b2:
b0:5e:59:ac:f1:a6:ed:78:d0:0a:01:6e:99:0d:78:1e:94:f0:
a8:67:89:80:00:0c:80:55:51:f3:c2:64:45:26:05:3e:6c:e6:
1d:19:b6:00:d8:2a:f1:a2:ec:ff:eb:35:0f:48:d5:31:34:a0:
f6:fb:09:69:70:16:d4:1d:66:d9:e1:2c:71:96:e4:22:d5:a5:
40:c0:43:5d:ad:44:84:2a:c4:ae:37:33:3d:c4:b0:a0:ae:df:
3e:7c:ef:c7:8e:ce:85:f0:c6:80:09:fa:8c:6f:66:d9:9e:e6:
26:c3:ee:ea:40:0b:51:58:ac:d2:49:41:89:ce:3b:99:c0:b4:
0c:92:8a:0b:d6:72:3e:76:ee:10:7f:c0:e4:d1:54:1c:26:8a:
72:32:01:49:2c:ca:38:df:49:1f:a0:5c:99:74:dc:0a:4b:3e:
c3:7e:cb:29:7f:b7:44:1e:20:cf:dd:72:1c:75:0a:e4:ac:39:
8a:31:9e:05:fc:e9:a7:4d:32:c8:bd:d7:67:ed:b3:ca:e4:db:
21:16:c9:31:cb:d1:41:52:28:fd:10:58:9d:2e:8e:a9:31:43:
80:9d:f4:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org