Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/8B6D2852A0E611EF9365D49F762E951A.roa
File: 8B6D2852A0E611EF9365D49F762E951A.roa (raw, json)
Hash identifier: Lj1ZikvQr5N1QIZKc91hC52PVTnnIMmNWvoV81CwYBY=
Subject key identifier: B8:46:80:AE:5E:4E:49:8C:45:92:7D:A6:A7:C2:CE:81:CC:52:98:72
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0AD3
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/8B6D2852A0E611EF9365D49F762E951A.roa
Signing time: Tue 12 Nov 2024 11:09:11 +0000
ROA not before: Tue 12 Nov 2024 11:09:08 +0000
ROA not after: Tue 14 Nov 2034 11:09:08 +0000
asID: 214036
IP address blocks: 192.142.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2771 (0xad3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 12 11:09:08 2024 GMT
Not After : Nov 14 11:09:08 2034 GMT
Subject: CN=67333757-f74b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:33:bf:ad:91:2e:90:0a:ee:c7:14:56:a0:
36:18:e4:49:1c:3f:34:76:5c:38:9a:dd:3d:32:d1:
c2:33:86:a2:83:0d:bc:67:72:52:0e:bb:f2:14:b9:
ca:6b:7e:02:a7:b9:3a:f3:ac:50:5a:4b:f3:57:6d:
5f:4e:6d:d0:e6:44:f8:6a:60:f1:1d:d9:75:d8:01:
63:c9:c1:5b:f2:12:fa:8e:19:f1:9c:6c:2c:0c:11:
50:8f:ec:de:73:54:5b:55:f6:6e:d2:41:47:f0:d9:
9e:99:e7:0e:e3:a9:69:bc:be:b9:69:f8:43:50:dd:
0d:e9:1b:27:c4:67:38:c7:60:9d:ce:62:2f:bc:90:
c2:4d:52:28:3e:63:1f:00:d1:eb:cd:c9:9c:6f:63:
40:8b:14:bb:44:46:c4:4d:95:69:52:d1:28:b2:61:
51:dd:1d:e1:aa:da:29:51:e5:38:18:c1:2c:06:46:
9b:5d:e2:a6:d8:d3:66:5b:b6:cd:30:57:8d:4b:39:
1a:70:1f:47:e4:77:0b:27:bd:1e:6f:08:7d:44:48:
34:af:fa:32:43:80:2c:00:1c:46:49:34:f6:eb:7c:
c9:27:03:e0:fe:33:c0:7f:32:87:73:0d:37:ef:68:
2c:4c:f8:ef:8e:09:83:45:5b:a5:b1:3d:43:ca:fd:
ac:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:46:80:AE:5E:4E:49:8C:45:92:7D:A6:A7:C2:CE:81:CC:52:98:72
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/8B6D2852A0E611EF9365D49F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.1.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:15:7c:ee:e7:32:77:85:1d:7b:da:a2:34:a1:dc:6a:e0:08:
ba:0a:d5:27:53:1b:b6:d5:99:2c:42:6d:c5:c3:2c:d0:23:43:
d7:d1:23:76:96:b8:85:a9:64:55:df:2b:56:9f:14:b2:3f:bb:
b1:22:d2:b7:d4:47:98:61:30:0b:7b:b1:23:be:9d:d3:c8:22:
d7:94:a8:a4:c8:9f:10:5b:48:b3:4b:8f:51:33:3e:97:17:d6:
7d:a4:7f:66:86:89:76:08:e2:b3:a4:e2:42:f0:7a:98:62:0c:
90:15:b2:64:cb:39:45:4a:4a:f6:a0:7a:b6:28:b7:9c:d3:d1:
0b:59:2a:cf:ad:44:f9:77:46:8e:a4:70:e0:71:cd:c2:b9:58:
d0:45:98:21:af:ac:e5:b4:49:d1:8e:b6:5b:d7:54:7f:47:6d:
b7:6a:63:d7:af:cd:f0:43:2d:c3:8f:a3:6c:89:18:0a:01:31:
98:49:89:ac:66:fc:e8:76:23:36:ef:3a:75:1b:f7:65:a0:c2:
71:51:2c:b3:fd:e3:1d:3a:45:69:0f:b2:60:a1:aa:c7:e6:ff:
fc:21:37:9c:e2:46:43:27:95:da:7a:72:44:7a:38:74:84:11:
1b:57:79:1a:46:53:87:6b:6e:7d:10:41:78:37:f0:9e:07:10:
7e:bd:89:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org