Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A9D105EEA57711EFA0E84192762E951A.roa
File: A9D105EEA57711EFA0E84192762E951A.roa (raw, json)
Hash identifier: qopn7y1QavqGABaOr70+ms07jN6EKytZSlEiUH7Ajo8=
Subject key identifier: 82:D8:7D:33:A2:BE:17:C7:42:FA:99:68:47:5D:2D:22:31:AE:AF:DB
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B0C
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A9D105EEA57711EFA0E84192762E951A.roa
Signing time: Mon 18 Nov 2024 06:38:04 +0000
ROA not before: Mon 18 Nov 2024 06:38:00 +0000
ROA not after: Tue 14 Nov 2034 06:38:00 +0000
asID: 30431
IP address blocks: 192.142.174.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2828 (0xb0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:38:00 2024 GMT
Not After : Nov 14 06:38:00 2034 GMT
Subject: CN=673ae0cc-bedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:44:05:5d:f6:91:e0:61:b5:b9:42:85:05:50:
8b:0e:fc:66:53:6b:0d:8b:12:43:dc:0f:8a:26:2a:
43:69:f4:2d:8a:ba:87:4c:10:2c:e1:11:5b:95:5e:
47:98:28:03:4d:c4:a3:d2:0b:1c:2e:bb:ef:e9:6f:
ad:fb:51:bc:02:81:4a:97:0a:0c:d5:82:54:20:8b:
59:97:88:90:c4:3e:08:21:9f:2a:7d:c6:c0:72:8e:
21:03:c4:fc:16:4f:c9:b7:8c:c6:36:b8:59:0f:20:
d4:ee:60:9d:01:6e:35:ce:73:aa:69:9b:62:8d:88:
c7:28:fe:14:56:56:9f:66:2b:76:6f:3f:51:d7:63:
0d:0e:88:6e:72:b3:47:1c:c1:ca:b4:72:19:88:cf:
a4:de:50:fb:2c:16:c9:23:b2:c2:67:45:f6:3d:33:
c5:d0:d5:1a:86:62:bd:f1:8e:34:c6:eb:86:b2:b6:
4c:bb:cc:da:02:f2:84:ec:09:0f:ad:c3:95:b3:ea:
7d:e9:72:5d:c4:10:1c:d0:e2:38:8f:b6:e5:58:52:
cf:3f:07:e0:3e:be:56:43:f9:89:12:06:8d:a0:f9:
3a:5a:12:82:a7:e1:8b:f5:dd:ec:ff:80:df:a7:3a:
83:49:f9:7d:6e:cb:7a:f7:86:8d:90:5b:3e:3c:21:
b9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D8:7D:33:A2:BE:17:C7:42:FA:99:68:47:5D:2D:22:31:AE:AF:DB
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A9D105EEA57711EFA0E84192762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.174.0/23
Signature Algorithm: sha256WithRSAEncryption
61:78:09:9a:6c:b4:67:6b:2e:11:96:a2:72:3a:7a:fa:f6:a2:
fb:5d:a1:9e:3b:c7:24:6e:09:02:c9:96:4e:e3:31:75:d8:55:
6e:47:df:ce:52:51:a5:9e:c4:06:46:b8:1b:34:00:db:5a:d6:
35:00:c7:e8:85:77:66:d1:02:ea:cc:ed:62:ea:8b:77:5b:b6:
2e:b0:bc:95:bb:c0:e6:d5:61:8c:31:e5:d0:47:0c:9f:1f:c0:
a6:bf:62:5f:4d:fb:31:56:e5:7a:bf:56:31:27:c9:61:08:53:
ee:c6:d5:e5:45:0b:12:d9:37:07:d3:d7:7f:52:ad:bc:39:65:
cb:c1:03:22:d4:95:90:88:be:1b:82:09:9d:ed:ad:36:78:ab:
e3:8e:fa:6c:94:74:11:5f:f2:78:2c:4d:4c:93:4e:04:21:2a:
f5:73:fa:da:2a:e4:b5:5b:58:57:63:19:9a:59:82:73:34:ee:
9e:9a:28:4e:c7:18:a2:17:dc:7d:a3:99:94:40:e0:0c:5e:3b:
65:27:95:0c:2d:58:42:bd:9d:95:8b:7f:95:e9:ac:f2:0f:ce:
e2:7b:df:f5:64:e8:51:06:2d:b5:d5:0b:53:e7:fd:1a:40:e6:
69:6a:b3:8b:e9:68:18:d7:95:1b:a2:a7:e9:be:79:d3:e7:b9:
d5:46:44:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org