Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1917A2AE26411ED884817D82F6D8C1D.roa
File: B1917A2AE26411ED884817D82F6D8C1D.roa (raw, json)
Hash identifier: 7VmYVJC8hQkQKtbiP3EOW9+MI7fBE5QtnjxtEPMMkcY=
Subject key identifier: B9:F1:54:9A:1D:11:74:88:93:1D:46:A1:31:4C:1C:3A:83:DF:FB:EB
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 06B7
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1917A2AE26411ED884817D82F6D8C1D.roa
Signing time: Mon 24 Apr 2023 05:56:02 +0000
ROA not before: Mon 24 Apr 2023 05:55:57 +0000
ROA not after: Tue 12 Apr 2033 05:55:57 +0000
asID: 398465
IP address blocks: 192.142.64.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1719 (0x6b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Apr 24 05:55:57 2023 GMT
Not After : Apr 12 05:55:57 2033 GMT
Subject: CN=644619f2-b394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8a:c8:50:f7:38:4e:91:07:1a:25:1f:20:91:
fc:d6:ae:e5:cd:ad:4b:65:35:a1:18:81:f0:13:67:
cc:c9:72:65:58:69:41:e9:b6:36:34:2c:a8:e1:a9:
d8:1a:33:ad:6f:ba:ff:58:9c:9b:a7:a8:e9:c6:c6:
8d:60:b4:39:69:79:e1:73:38:82:7c:e9:6a:2b:bb:
18:3d:f5:a3:ea:f1:87:d7:23:b9:96:51:48:71:22:
90:99:5f:9a:8b:81:76:fd:7a:12:4b:dd:c7:1f:db:
ad:b8:d8:76:e6:76:37:cf:2b:57:af:4c:83:64:cb:
58:4c:fe:3d:9d:be:4c:d3:f9:15:6e:a4:2a:4b:0f:
83:bd:c8:ae:3c:ed:a5:0d:10:bd:ad:b3:7a:3d:89:
cf:6a:01:8d:34:44:85:d0:c0:9f:d3:83:99:db:57:
6a:d3:e4:6e:8e:0e:42:95:15:56:bc:0c:ef:49:58:
cb:a0:2d:41:6b:de:96:ff:3a:c8:5e:37:39:58:63:
74:8d:7c:82:b3:9e:f2:08:58:56:37:d0:20:b2:25:
9d:d4:3a:da:b9:a2:5d:ab:53:e5:51:23:dc:dc:f7:
0f:2b:df:8b:2a:97:a6:27:0e:f7:d5:5a:7c:17:d7:
9e:f8:6d:42:1b:61:66:e4:3f:d6:88:8a:64:a7:30:
a1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F1:54:9A:1D:11:74:88:93:1D:46:A1:31:4C:1C:3A:83:DF:FB:EB
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1917A2AE26411ED884817D82F6D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.64.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:2e:de:db:19:d0:c8:ba:4d:f6:b1:2b:e8:09:f7:e4:c4:87:
06:2b:49:6d:41:b3:42:29:7b:0a:70:d1:8d:32:80:49:e3:af:
c6:1e:6e:03:2f:d6:6c:16:51:88:a1:3a:f8:b7:7a:d5:14:28:
05:d2:e9:2f:e7:e8:f2:c1:f9:ce:b7:8b:9d:4d:39:f0:e4:29:
3a:68:78:f6:61:d7:d6:07:37:2e:e5:e4:be:0f:46:fd:8c:b7:
04:c1:7d:ce:f8:01:2d:9a:b3:d0:a7:2a:f1:b7:5c:54:94:fd:
88:16:5c:be:d6:c5:e3:b5:ab:a8:c2:07:85:ca:89:3d:79:18:
4d:13:ef:0d:7c:61:d8:a7:36:5b:b1:0c:16:68:af:e4:30:7d:
2e:4a:9d:e6:18:48:49:1b:97:14:c1:0b:9d:00:a6:87:ad:d7:
e9:44:57:4f:39:d9:6a:74:e8:f3:28:e6:82:f3:eb:04:ab:d6:
39:f7:16:20:7f:01:fd:68:4c:0d:31:b5:ee:31:32:c6:46:f8:
c3:0f:e4:9f:69:a4:e2:91:6c:ea:f1:8f:06:0b:62:67:e3:d8:
fe:49:b0:30:16:eb:d1:09:bd:82:a0:c2:67:45:80:00:4d:5b:
c9:b7:d4:78:12:6f:a0:dc:87:5d:a8:1f:b9:9f:14:be:3a:32:
4a:14:bd:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:20 2024 by rpki-client on console-ams.rpki-client.org