Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C3C60782A57811EF9499EA98762E951A.roa
File: C3C60782A57811EF9499EA98762E951A.roa (raw, json)
Hash identifier: rQ4mPh0uiKLJjayEkWmmKrixoWfYOjpfy8DDnwooy+E=
Subject key identifier: E8:E3:E9:4A:9E:2F:87:94:3A:39:C7:88:BB:71:0F:59:E2:90:9D:25
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B1C
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C3C60782A57811EF9499EA98762E951A.roa
Signing time: Mon 18 Nov 2024 06:45:57 +0000
ROA not before: Mon 18 Nov 2024 06:45:53 +0000
ROA not after: Tue 21 Nov 2034 06:45:53 +0000
asID: 30431
IP address blocks: 192.142.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2844 (0xb1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:45:53 2024 GMT
Not After : Nov 21 06:45:53 2034 GMT
Subject: CN=673ae2a5-192e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8f:05:fe:fa:a4:25:bb:0a:37:b7:1c:d0:d8:
3e:de:10:18:5c:05:8c:d8:f2:25:e2:f4:30:e4:b3:
31:5f:2c:ec:33:9e:66:5f:15:7e:86:c2:c8:d6:47:
37:8f:6f:6b:1b:62:0b:9a:c4:31:1f:86:0d:36:d2:
2d:d1:73:30:80:ca:ba:2e:56:bf:4d:34:1b:10:71:
3e:58:79:25:d4:ac:91:08:64:1d:03:14:88:55:b5:
bb:5a:5e:11:4d:45:1f:32:31:b7:29:2e:e0:e6:44:
ca:3b:b3:c3:11:3b:fe:b2:d7:bf:36:93:6a:c3:5a:
04:6e:05:80:8c:cc:4a:5b:3d:d1:52:fa:d3:c4:05:
f3:9a:55:c6:77:82:7c:92:d5:b4:75:c5:df:cf:e8:
b3:3b:3c:eb:36:52:f3:74:7c:59:88:c6:74:ab:04:
bf:35:60:a2:2e:fa:db:fe:2b:bc:7f:17:cc:23:bc:
42:6e:4a:71:27:23:c0:46:a4:88:f9:dc:ad:91:57:
00:69:23:79:aa:38:ec:ec:9f:73:6f:95:7b:e9:20:
63:ab:80:b2:1f:c9:17:51:b3:ef:70:a4:02:02:d2:
6e:b4:71:03:a4:d8:9a:1d:f6:d4:3f:3f:b8:ab:08:
fd:4f:dc:4c:b8:00:3e:9b:0d:7a:5d:61:fd:d7:55:
5c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E3:E9:4A:9E:2F:87:94:3A:39:C7:88:BB:71:0F:59:E2:90:9D:25
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C3C60782A57811EF9499EA98762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.228.0/24
Signature Algorithm: sha256WithRSAEncryption
98:6d:9b:00:31:08:9e:53:83:57:70:ea:3f:0a:ae:09:9d:56:
ae:cf:00:6c:a5:bc:8f:1e:d1:22:16:11:8a:25:ea:08:93:0f:
25:dd:66:10:65:3b:e4:47:83:04:85:3e:19:88:6b:d9:7d:c6:
2b:9d:3c:7c:96:18:f5:ab:32:08:b5:e9:e6:58:a8:f0:3c:54:
32:c7:80:6f:19:f8:7c:01:3a:6f:81:48:02:c5:53:3d:2b:80:
de:fd:6d:8a:4e:f7:39:a9:c8:59:47:c1:62:0f:a8:8f:85:1e:
66:2a:e7:59:b1:08:e4:fa:19:60:c1:c1:30:1b:1c:1f:3f:61:
59:a7:2d:ff:93:0c:34:41:70:99:e4:00:2f:21:70:e5:43:1a:
18:9f:31:31:a2:42:07:ab:44:02:df:60:9c:87:07:c4:e2:58:
98:22:b6:6c:ec:9d:32:43:d1:65:96:03:9f:e9:e3:ea:f9:f0:
77:2c:72:9c:ee:07:78:f4:1a:e6:ba:77:93:74:f5:85:73:f5:
d5:2f:63:a9:5b:a7:d8:1b:ae:bd:e5:57:94:69:9e:cd:9f:8c:
07:35:06:8c:a5:db:8a:22:30:d9:3f:ac:74:2d:ec:72:a1:84:
77:67:33:64:66:00:0b:05:5d:7f:69:5f:e6:3f:47:f7:a3:bd:
d0:9a:f1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org