Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9F50C37CA25511EFA6B5C750762E951A.roa
File: 9F50C37CA25511EFA6B5C750762E951A.roa (raw, json)
Hash identifier: 9af6EN3ix+qlaDoy2luAb0GzVyP1BzJ0vRAdLPA9HVc=
Subject key identifier: 7E:98:93:DA:1E:67:83:EA:5D:EB:DF:5E:E8:3E:7E:49:B6:1C:EF:2D
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0AD9
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9F50C37CA25511EFA6B5C750762E951A.roa
Signing time: Thu 14 Nov 2024 06:56:50 +0000
ROA not before: Thu 14 Nov 2024 06:56:46 +0000
ROA not after: Tue 14 Nov 2034 06:56:46 +0000
asID: 6206
IP address blocks: 192.142.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2777 (0xad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 14 06:56:46 2024 GMT
Not After : Nov 14 06:56:46 2034 GMT
Subject: CN=67359f32-04c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:40:21:f8:64:9d:24:2a:ff:30:ff:70:a6:dd:
78:65:1c:a2:f3:06:3e:32:85:9c:01:a1:9c:46:40:
f0:15:0c:26:cd:72:2d:da:17:21:08:ef:2b:55:aa:
ee:43:20:bd:ce:d6:7f:12:9b:d1:15:70:9f:46:97:
8f:95:6a:9b:d7:3c:30:91:54:e5:03:1c:92:ed:ee:
99:a6:8b:16:5c:7c:b9:f2:be:cd:2d:26:9e:cc:9a:
2e:45:f4:56:4b:0a:c9:3d:12:17:32:62:fd:94:07:
04:a4:38:d6:55:eb:eb:4c:3b:9b:76:9d:57:d8:eb:
d5:80:54:5b:f0:b3:fb:f5:2f:68:e5:ae:ad:c3:85:
5e:c0:13:e0:83:4c:b7:74:98:3d:d3:a9:41:27:ff:
f0:8c:e5:41:b6:91:a8:3a:1c:34:a9:09:77:4a:01:
dc:2d:3f:d0:90:9b:14:ad:40:51:43:b7:0d:71:8b:
de:9d:1a:3b:2e:f6:f5:b4:d6:db:2d:a8:de:35:5f:
89:99:b5:ca:95:f2:10:ba:f3:6d:e1:19:c3:87:79:
64:a1:ae:5f:f7:ee:ef:e7:83:09:c1:fb:93:4b:c4:
e0:42:52:d2:27:43:fb:ea:f9:e9:98:36:a1:09:96:
6f:ae:d5:b1:8d:7c:58:09:bf:ed:e0:79:42:ee:6f:
09:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:98:93:DA:1E:67:83:EA:5D:EB:DF:5E:E8:3E:7E:49:B6:1C:EF:2D
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9F50C37CA25511EFA6B5C750762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.23.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d1:27:a5:10:95:4c:03:bd:99:b4:35:d4:62:b1:95:28:92:
9c:6f:e9:4c:e9:6d:63:f3:e5:f8:a8:c2:fa:8d:56:5a:bb:af:
69:9d:b6:c3:30:3f:69:85:32:3b:0f:61:3e:d2:a6:6b:30:74:
df:28:b9:02:1e:0d:66:57:68:b5:50:e4:2f:a0:23:46:0c:d5:
a6:64:20:7c:8c:14:26:41:b3:39:a1:11:d4:e2:34:18:94:0e:
eb:22:25:ff:be:16:ef:8f:04:a0:ae:e4:63:37:53:50:9d:ab:
9b:41:e1:ea:fd:2a:77:01:60:54:4f:9e:c0:4b:2d:61:83:75:
4a:be:35:1d:6a:0e:a6:6d:2d:64:a9:e4:01:a3:67:e4:af:f7:
7e:d7:fc:c5:1f:31:81:5a:0b:43:02:b3:80:e1:b9:59:0c:81:
2b:84:68:96:55:0f:d8:00:20:fe:96:a3:64:f6:16:92:1c:ae:
4a:53:3a:ad:03:8c:a4:71:5c:34:a9:5c:cd:b6:ea:3c:39:21:
4b:31:10:b4:75:02:48:60:af:40:ea:01:99:38:17:8d:63:6a:
81:77:64:f0:20:09:68:2c:73:bb:da:02:e6:8e:56:ef:37:22:
98:e2:37:99:8e:ab:35:34:d5:00:9f:a7:d4:64:5f:67:d3:25:
7f:3c:5a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org