Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/891B932CA57811EFA43CA896762E951A.roa
File: 891B932CA57811EFA43CA896762E951A.roa (raw, json)
Hash identifier: V356DPYWbL7frdB7qQZAGH9NFCfnSF1jJfgh3kRhbiI=
Subject key identifier: 42:31:80:F2:28:1E:46:3B:07:C6:11:57:EF:7A:03:18:58:FB:B8:05
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B1A
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/891B932CA57811EFA43CA896762E951A.roa
Signing time: Mon 18 Nov 2024 06:44:19 +0000
ROA not before: Mon 18 Nov 2024 06:44:15 +0000
ROA not after: Wed 15 Nov 2034 06:44:15 +0000
asID: 30431
IP address blocks: 192.142.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2842 (0xb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:44:15 2024 GMT
Not After : Nov 15 06:44:15 2034 GMT
Subject: CN=673ae243-6ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:40:72:dd:a8:e9:d5:af:4a:2a:1b:8d:2a:6a:
5c:fe:a8:2d:f9:04:be:09:1e:5d:36:28:40:06:e3:
cd:8f:d8:d0:0a:68:ef:5f:75:35:5f:f7:be:eb:2f:
9c:1a:fb:41:9e:d1:2d:6a:4f:ff:c7:06:e1:fe:af:
fe:7a:3f:bb:33:15:60:4d:02:77:30:7d:93:82:d9:
4b:eb:23:64:74:bf:e0:1b:b3:45:94:fa:be:ce:ed:
3d:8e:6e:ca:5c:74:cb:f7:a4:fb:3f:2e:41:13:d3:
ed:35:4c:4d:61:b8:0e:1a:06:f2:b2:4e:1e:76:82:
72:06:0f:37:d4:7b:68:0f:c7:8e:74:1d:3b:4b:9e:
74:0f:34:5c:34:41:85:e7:f5:f0:b1:21:f7:16:ff:
cd:75:be:98:4a:da:8d:85:83:ad:96:6b:d1:09:64:
95:86:9d:a5:96:87:a4:1d:98:f4:3c:fa:37:62:0f:
15:b6:68:de:9e:c9:96:10:f2:3d:3d:eb:ce:f4:8a:
86:04:bd:9a:d0:7f:0a:1a:4a:32:59:52:3f:04:9d:
f8:6e:8a:1d:40:79:a9:0f:63:c8:f2:54:08:c7:a0:
e3:56:3c:9b:f9:b4:cc:92:b4:d9:42:09:53:aa:2a:
59:f1:52:27:9c:66:d6:80:b0:cc:94:c9:2c:41:f5:
bc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:31:80:F2:28:1E:46:3B:07:C6:11:57:EF:7A:03:18:58:FB:B8:05
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/891B932CA57811EFA43CA896762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.227.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:23:c0:55:0b:a5:61:5e:1d:35:c2:4e:f2:3e:26:3c:63:22:
0f:05:af:9e:f5:bf:93:f3:ea:29:3c:c3:14:3f:4a:29:e0:a5:
0f:e3:79:8b:93:60:52:6d:cf:48:27:91:6a:1d:7f:f6:77:27:
57:dc:bf:4d:4a:9e:25:24:d0:59:6e:20:4c:59:b8:c6:38:8b:
0f:d9:dc:be:62:9f:51:79:d1:ae:97:6c:24:01:c3:36:70:83:
b5:e9:d4:ad:be:0a:ca:81:0f:a4:56:95:51:21:37:39:a0:4a:
94:d4:73:b1:f1:ea:ec:43:be:1f:f0:60:f2:23:15:53:df:e3:
a0:38:8e:80:53:17:14:27:84:20:24:17:64:1c:12:2d:d4:c7:
27:42:45:42:cd:b8:97:74:e5:39:21:90:70:3a:58:7e:36:9f:
c6:fc:c2:35:3b:cb:e3:3b:83:ce:77:70:3e:7c:2e:ff:8b:a5:
8e:3f:40:32:9a:c0:ee:f4:87:79:7c:23:b3:67:99:b5:74:f4:
32:4a:3a:4f:ac:43:c7:6a:59:aa:04:64:7b:61:98:78:9e:86:
18:14:04:aa:d3:cf:d6:85:cd:2f:50:f6:34:59:d9:58:78:34:
97:c1:87:28:cf:97:f8:13:15:e5:ea:39:a3:2e:d7:9e:7f:9d:
51:ca:81:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org