Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/86A7B376986211ECBC75CE6B5A40D577.roa
File: 86A7B376986211ECBC75CE6B5A40D577.roa (raw, json)
Hash identifier: lUnBCoM8zAjLqS74VNzROcLxic0KVwvENNudNNlA44U=
Subject key identifier: D0:AF:60:1B:9D:84:A1:FC:E7:3E:6C:4F:15:05:45:EC:EB:42:26:24
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 044D
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/86A7B376986211ECBC75CE6B5A40D577.roa
Signing time: Mon 28 Feb 2022 06:49:08 +0000
ROA not before: Mon 28 Feb 2022 06:49:04 +0000
ROA not after: Mon 28 Feb 2028 06:49:04 +0000
asID: 3223
IP address blocks: 192.142.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:16:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1101 (0x44d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Feb 28 06:49:04 2022 GMT
Not After : Feb 28 06:49:04 2028 GMT
Subject: CN=621c7063-c793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9c:d7:fa:89:00:0a:6f:76:00:4c:be:68:5a:
67:69:30:bc:b1:af:89:1c:f4:06:e5:80:f9:f8:4c:
f9:12:5d:21:4d:3f:d2:d0:f2:fe:53:51:fd:6e:dd:
9a:b3:fb:2d:6c:8f:10:4e:20:a8:17:f7:1f:7e:fb:
9d:d7:98:2e:96:49:3c:28:57:68:89:bd:60:da:57:
bd:cd:db:41:6c:8c:c9:fc:94:62:b8:fc:66:ca:b5:
6f:ad:12:d3:b5:ac:e4:3b:fc:00:a1:8a:d3:12:c0:
61:50:5e:83:41:d0:cf:52:46:71:93:a2:7b:f0:39:
ca:5c:b3:80:f2:32:19:b9:3d:3b:b6:79:59:ee:0a:
6d:10:a5:42:0f:ad:b7:67:ef:90:f9:3e:a8:72:09:
9c:89:c4:2d:ea:d3:3f:d4:85:b4:47:84:7f:b5:9e:
3f:fd:8b:8e:c4:ce:c0:75:36:d1:dc:38:b9:8c:2d:
e6:c0:d4:6f:e3:9c:fa:4f:4d:75:6f:3a:ee:6b:7f:
48:31:82:3f:a5:9e:89:37:53:c2:28:bc:8a:33:eb:
12:51:c4:26:c0:6b:93:9a:23:ef:03:69:73:90:01:
ab:8b:ed:93:c3:7b:fc:8a:16:db:66:71:87:56:9d:
2e:ee:83:2a:31:7a:ab:e1:a7:e8:f9:2c:77:5b:ac:
e5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:AF:60:1B:9D:84:A1:FC:E7:3E:6C:4F:15:05:45:EC:EB:42:26:24
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/86A7B376986211ECBC75CE6B5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.184.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:10:b2:a7:ae:a1:1b:ba:6d:e4:6c:5e:e2:3b:4c:6b:b9:a7:
15:11:fb:b3:29:b2:59:43:71:eb:4f:80:b8:6e:00:af:85:60:
8b:61:b4:a6:5a:5c:02:a6:54:88:0a:95:75:b7:09:d6:09:92:
ba:ff:bc:47:f9:55:33:d8:94:58:69:13:25:4f:78:c1:79:fd:
69:18:f5:08:1b:0d:2c:6e:46:19:51:78:cb:03:46:7a:9d:31:
65:17:7a:09:3e:3a:e6:7f:93:fc:66:bd:61:09:96:12:e0:11:
de:36:f6:a4:fc:31:93:6f:30:ac:ca:16:07:e8:eb:23:0b:a8:
93:5b:b9:9b:a2:4f:e8:60:46:9b:71:f7:70:c5:00:2c:a6:ea:
27:5e:bb:2a:25:3e:ee:f5:43:ec:0e:c5:27:73:85:0d:4f:57:
e8:7b:00:25:04:3b:ed:e4:08:dd:3f:4e:83:27:b7:c3:f4:85:
61:69:a8:85:9f:d5:91:5f:2c:d6:56:3e:a0:bf:dd:7d:e3:00:
b3:32:71:3b:3f:60:28:ef:c6:cd:7b:6a:21:d9:37:9b:58:4a:
11:73:ca:5e:93:12:8c:05:50:e4:65:b3:1c:b3:7f:27:6d:04:
a2:bd:28:8f:19:c9:16:b1:b4:fb:46:d4:ab:b5:ce:1f:8e:c3:
46:4f:0d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 02:37:47 2024 by rpki-client on console-fra.rpki-client.org