Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A74D31AEDB2A11ECB14047E0F1222468.roa
File: A74D31AEDB2A11ECB14047E0F1222468.roa (raw, json)
Hash identifier: Ead7XNFZF4xOT8kkj9AmCyI03PDi+pYQGFJ6XN+uOec=
Subject key identifier: E2:AD:EA:25:BA:B8:5F:D9:41:51:D3:74:F7:AD:B8:99:16:89:D0:FB
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 04C3
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A74D31AEDB2A11ECB14047E0F1222468.roa
Signing time: Tue 24 May 2022 06:27:58 +0000
ROA not before: Tue 24 May 2022 06:27:54 +0000
ROA not after: Wed 14 May 2025 06:27:54 +0000
asID: 24875
IP address blocks: 192.142.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1219 (0x4c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: May 24 06:27:54 2022 GMT
Not After : May 14 06:27:54 2025 GMT
Subject: CN=628c7aee-b609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:81:fa:ad:4d:33:fb:5e:8d:c3:36:d5:74:6d:
36:47:ec:7e:76:b9:83:dd:73:60:fc:0a:57:fc:9f:
c4:36:b0:5f:e8:64:ee:c8:c0:1b:be:87:7a:ee:97:
54:85:d1:5f:cf:90:35:ec:99:57:75:39:fd:0a:61:
24:7f:aa:cd:af:9b:24:f8:74:08:e1:0f:bf:3a:c6:
1b:e8:a8:2e:a2:9e:81:4f:52:4c:dc:7b:b2:a6:89:
0a:16:02:ad:8c:dc:38:47:b4:7d:5b:cb:a6:ae:53:
96:7a:ce:31:54:04:80:c8:2f:5d:60:27:8d:6e:b8:
70:51:1c:b5:a8:f5:19:0c:0d:15:50:86:38:31:fb:
a8:f6:d3:79:65:93:03:68:9c:fd:f6:d3:05:04:92:
e3:7d:94:d4:39:0c:1b:db:c1:ae:11:3f:34:16:11:
c1:23:67:54:6e:06:5e:47:93:e0:6e:89:f2:11:35:
7e:35:c4:37:f8:17:cf:85:4a:7a:94:45:47:8f:70:
8d:83:6e:2e:aa:d4:b7:1a:1c:ab:5e:ea:e8:2e:84:
a0:2b:78:22:03:27:c6:17:f5:33:05:8f:fa:aa:bd:
a2:7f:98:28:03:45:eb:7c:a9:d1:10:c3:72:f4:52:
dd:e8:e1:2f:4b:9b:b0:cd:1f:61:0d:37:5e:8f:f2:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:AD:EA:25:BA:B8:5F:D9:41:51:D3:74:F7:AD:B8:99:16:89:D0:FB
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A74D31AEDB2A11ECB14047E0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.107.0/24
Signature Algorithm: sha256WithRSAEncryption
39:31:d1:c7:b4:c7:b6:b2:07:d5:f2:10:0c:bd:8c:be:c2:94:
9d:9c:24:1a:a1:eb:94:3a:d7:41:2b:58:f1:f4:63:68:fb:28:
63:93:ab:e8:88:8b:ca:32:2f:1f:cb:cd:4b:ed:7a:89:7a:40:
10:10:86:fd:ff:f7:ef:49:a0:0b:45:0d:95:43:51:e0:eb:35:
63:6f:6d:8e:e4:eb:07:b1:b4:17:50:d0:0e:ae:91:bf:08:aa:
ec:82:bc:10:58:5c:2c:48:42:f6:ce:73:9a:44:bd:6e:26:4d:
88:6b:c0:a6:d7:81:13:d3:42:5c:8c:0e:ff:06:53:e4:4d:69:
87:d9:c2:2e:7c:b5:e0:4f:b1:cd:21:95:d0:23:b6:43:65:78:
82:8b:5e:32:79:aa:c6:7a:59:23:d9:a8:b5:0d:7e:4f:75:86:
d0:03:3b:ad:64:4f:fe:d0:e6:ef:90:77:2b:d0:3f:a4:5e:fe:
53:59:8a:9d:37:bd:dd:83:37:20:54:e5:57:2a:08:14:55:cc:
98:b5:c7:c6:20:66:41:f3:e8:74:1c:09:26:16:4c:3d:ce:cb:
45:cc:2b:bc:75:20:47:ec:1e:41:dd:72:25:94:db:52:08:95:
4b:8a:2e:09:b6:e7:c4:92:f5:82:4a:80:bc:01:e2:d1:09:df:
53:58:af:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:00:53 2024 by rpki-client on console-ams.rpki-client.org