Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/AC800BE09DA311EF93A6E8A4762E951A.roa
File: AC800BE09DA311EF93A6E8A4762E951A.roa (raw, json)
Hash identifier: wpFHIoruz/61X0DSsTglpf1K8g/lEB+xQDtQbdQkxpU=
Subject key identifier: 04:FB:1A:83:B1:94:2D:21:62:19:28:92:D5:BE:2D:6C:6F:6B:01:47
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0ABF
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/AC800BE09DA311EF93A6E8A4762E951A.roa
Signing time: Fri 08 Nov 2024 07:32:57 +0000
ROA not before: Fri 08 Nov 2024 07:32:53 +0000
ROA not after: Wed 08 Nov 2034 07:32:53 +0000
asID: 49127
IP address blocks: 192.142.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2751 (0xabf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 8 07:32:53 2024 GMT
Not After : Nov 8 07:32:53 2034 GMT
Subject: CN=672dbea9-fdae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:aa:e7:5c:b3:3e:16:28:ec:08:5b:b6:de:2f:
af:bb:30:ee:aa:ed:bf:36:30:d7:ab:9f:0b:23:33:
87:ae:21:fd:85:48:2d:be:f0:df:44:6a:61:9e:85:
30:13:b7:5a:8b:0e:98:42:c3:19:b2:a8:df:16:72:
b7:11:bb:8f:d7:7d:0e:64:ed:1c:78:a7:7c:c7:70:
8e:74:18:57:c6:4d:29:3f:88:48:44:a2:6a:f0:10:
03:2c:63:e3:70:c8:07:6e:35:2e:00:d0:03:5e:9e:
db:38:4d:e4:81:1a:c1:b0:69:c7:1b:54:a7:29:a7:
79:72:e4:cf:5d:2c:d1:cd:61:2c:75:cb:15:9c:80:
52:2a:1c:33:aa:71:4f:ac:c6:01:85:59:ed:c7:35:
23:f4:27:ef:ed:ca:88:bb:fb:9a:a2:23:2e:cf:c6:
12:56:fa:2c:50:32:5b:42:55:14:8f:1e:68:3a:3c:
49:eb:6a:55:bc:0e:4e:1b:72:06:9a:29:f4:37:43:
19:d4:4b:c2:95:08:b9:b6:7a:cd:09:e6:b5:be:56:
d6:d9:22:62:a2:2e:a5:6d:b4:e1:9a:5c:5f:90:65:
81:f2:18:d0:b9:63:7c:98:e1:5f:65:8e:84:dd:6f:
ab:71:74:9a:88:74:28:25:49:ed:da:71:3b:b5:46:
86:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FB:1A:83:B1:94:2D:21:62:19:28:92:D5:BE:2D:6C:6F:6B:01:47
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/AC800BE09DA311EF93A6E8A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.1.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ab:af:02:b7:4a:e2:bd:90:ca:30:70:1b:e6:8f:83:bc:7f:
fb:4a:c1:68:f4:62:51:0b:bc:12:27:44:b5:e2:d9:8d:5d:64:
3b:11:2e:24:4b:f7:82:33:67:6a:b1:6b:ae:bf:81:bf:4b:9b:
b4:49:5f:29:92:3b:af:81:13:79:0f:02:09:d3:df:7d:57:c9:
f4:0e:23:76:b7:c5:ea:cb:a4:5d:58:c3:bc:95:c7:79:45:c3:
00:9f:04:67:58:3f:d5:f8:8e:0b:25:ff:5a:64:28:6c:e6:0a:
a3:da:58:fb:26:b8:a5:f6:87:f9:11:55:8d:5d:0b:90:50:54:
b6:c9:99:f8:e9:d5:67:76:56:5b:4a:54:65:ec:92:ae:56:12:
6f:73:71:64:c6:64:e7:dc:a9:ec:86:e3:9a:6a:67:18:6e:86:
31:3a:e2:be:58:89:c0:a2:44:86:a8:86:38:49:bd:12:fe:74:
2d:ee:f4:21:48:a7:80:51:f7:6a:8f:29:8b:99:2f:5f:11:e3:
83:dd:6c:37:01:45:34:72:3d:6c:a4:d0:75:a8:bf:fc:e0:b0:
54:e5:c2:56:e1:3e:da:f7:8c:0d:80:d6:5e:5f:22:d6:62:96:
f2:70:2c:71:62:e5:39:7a:cb:58:ee:40:24:af:61:40:e9:af:
02:00:4e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org