Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/97F45FE005F211EE85A9002D4AD9E6FC.roa
File: 97F45FE005F211EE85A9002D4AD9E6FC.roa (raw, json)
Hash identifier: 1FXr/98Rr/3BJ15HsWCm0/VEb87B3CdGtmEX76N6yUY=
Subject key identifier: F3:93:F5:46:1D:EF:31:E9:2E:CA:1A:59:4A:90:4C:F9:F2:19:22:4D
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 070E
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/97F45FE005F211EE85A9002D4AD9E6FC.roa
Signing time: Thu 08 Jun 2023 11:49:58 +0000
ROA not before: Thu 08 Jun 2023 11:49:55 +0000
ROA not after: Wed 08 Jun 2033 11:49:55 +0000
asID: 212238
IP address blocks: 192.142.76.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1806 (0x70e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jun 8 11:49:55 2023 GMT
Not After : Jun 8 11:49:55 2033 GMT
Subject: CN=6481c066-f5a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b2:62:cc:0d:3e:54:d4:a0:c0:56:c4:26:24:
4c:2d:bb:63:ca:32:00:9b:6d:16:9c:38:d7:ee:6b:
70:ca:d3:36:70:32:3a:14:33:33:49:9a:cc:64:9e:
c3:05:87:61:5b:ca:2e:c8:c5:e2:fc:a3:d7:b0:05:
ac:ea:e2:21:b0:4d:40:21:26:bd:47:fa:b3:46:5b:
3f:eb:10:4c:cf:10:ba:2d:1f:0a:8a:0f:e6:eb:24:
86:75:f8:52:95:09:0f:8e:c3:df:e6:be:4d:5e:98:
5c:cb:39:20:f5:ad:aa:91:a4:d6:2b:a7:46:86:67:
a9:43:8d:36:25:e5:a1:a2:a9:dc:80:29:2b:0e:21:
f6:c5:df:80:12:1c:10:92:0a:e8:cf:b8:6c:3e:ea:
d3:b2:3a:83:d0:13:66:da:4e:f3:b1:06:b4:b5:b0:
8c:bd:49:be:fd:7d:14:e4:f6:50:c0:8b:72:91:45:
c6:1b:de:a2:fe:3e:02:9f:b6:22:18:91:a7:9e:28:
b6:26:58:ef:78:43:77:e2:7e:14:d9:8a:f9:0f:dc:
c9:b8:3e:37:27:0f:8c:d0:77:43:87:d6:5d:c3:e5:
aa:b5:d2:98:e5:9e:dd:dc:34:9f:78:72:22:4a:87:
7d:31:84:71:b1:00:23:c1:2b:7e:93:c2:fe:ee:33:
6f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:93:F5:46:1D:EF:31:E9:2E:CA:1A:59:4A:90:4C:F9:F2:19:22:4D
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/97F45FE005F211EE85A9002D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.76.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:e0:9c:34:11:f3:90:65:d4:fc:34:0e:9d:d6:07:96:78:03:
8f:1e:d8:da:3f:b4:57:83:88:93:c8:16:b2:17:20:7d:ca:2b:
f0:1d:3f:f3:53:c2:bf:ff:e5:be:ad:45:58:97:11:c9:b4:f9:
76:97:04:2a:1f:32:ab:a1:c1:66:0e:e4:bd:4f:bd:9c:f1:61:
ac:93:1c:b1:07:1b:4a:7f:b1:9d:7e:46:b6:68:09:1c:c2:d4:
d4:81:ea:a1:89:1d:ac:ee:f1:8f:29:03:08:3e:e9:00:5c:c1:
6d:8d:e2:37:0f:c9:ed:31:96:db:2a:16:ef:35:9e:24:ad:70:
03:da:84:b8:d0:a5:72:5e:53:84:12:84:87:f6:88:68:a3:3a:
a9:3f:fd:40:ca:64:76:8f:99:77:2c:36:7b:ca:9a:0b:16:ee:
e4:1e:24:c8:9e:59:b9:33:89:34:36:33:fe:70:d2:e2:f7:cf:
3d:8a:a7:21:55:cc:67:1b:8a:ed:de:ae:39:cc:c4:d2:58:0d:
3d:08:8b:ff:5c:b6:47:0d:5a:d8:95:e7:90:1c:06:99:db:15:
ae:a4:b1:ee:0b:ba:1f:17:7f:9a:8c:2f:30:bc:90:47:69:4a:
d0:39:b6:61:df:81:f7:21:a8:ed:13:d4:fa:aa:a1:44:27:a7:
d4:b5:14:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:32 2024 by rpki-client on console-ams.rpki-client.org