Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/D012DAB2A57611EF85CD138C762E951A.roa
File: D012DAB2A57611EF85CD138C762E951A.roa (raw, json)
Hash identifier: HAU77X29/Un48WtxxFz/7jCqBgwftBOb1dwi9fqWdXY=
Subject key identifier: AD:D5:C3:04:9E:0E:C4:0F:B5:4A:76:D0:57:F7:41:02:0A:07:7E:6F
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0AFE
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/D012DAB2A57611EF85CD138C762E951A.roa
Signing time: Mon 18 Nov 2024 06:31:59 +0000
ROA not before: Mon 18 Nov 2024 06:31:55 +0000
ROA not after: Wed 08 Nov 2034 06:31:55 +0000
asID: 30431
IP address blocks: 192.142.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2814 (0xafe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:31:55 2024 GMT
Not After : Nov 8 06:31:55 2034 GMT
Subject: CN=673adf5f-7bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:95:a5:34:51:98:13:27:aa:d2:49:f0:da:33:
21:a0:f2:09:85:95:fd:2c:55:56:54:11:1a:bb:d5:
67:d8:32:89:25:a1:26:ba:5a:8f:e9:61:88:f1:46:
2a:89:a3:bf:6d:5d:60:aa:b0:ef:4a:e2:40:85:e5:
72:b3:54:33:b9:1a:4b:2e:3b:39:5d:89:68:d3:f7:
db:58:99:d4:e0:4d:07:d4:c9:53:26:20:33:c1:aa:
a3:aa:9a:10:9a:6f:d4:48:c3:44:f6:3d:15:37:a9:
c9:30:93:18:6e:7e:fe:f1:39:02:16:36:b0:9b:7f:
ea:ed:1d:94:2e:d8:f9:cb:93:91:dc:6d:ef:d8:7b:
6e:aa:9f:9d:5e:c8:c6:a1:86:33:a0:41:58:bf:9f:
38:06:28:e4:e1:a5:9a:fe:22:6b:eb:95:2d:0c:f4:
86:d3:1e:84:45:47:23:05:25:6c:93:e5:92:ae:93:
cb:13:63:21:cc:51:02:f0:f8:8f:64:d5:a3:35:b8:
ed:ee:90:88:2f:35:80:79:41:ac:8a:88:ee:fe:3c:
2a:61:bf:68:77:1e:38:a3:bc:3a:61:a0:43:1b:11:
15:a2:39:f2:16:53:b9:06:ff:41:c6:f2:a8:f5:3b:
81:45:5d:ea:e7:da:bc:6f:7d:76:aa:9e:3a:ab:71:
d7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D5:C3:04:9E:0E:C4:0F:B5:4A:76:D0:57:F7:41:02:0A:07:7E:6F
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/D012DAB2A57611EF85CD138C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.107.0/24
Signature Algorithm: sha256WithRSAEncryption
85:2c:5b:45:81:0a:22:9b:63:e4:bb:ef:b7:e5:3a:52:73:8a:
82:cd:0d:1e:b5:52:4f:2c:96:d8:43:dc:f8:65:e6:15:52:3d:
de:69:26:7f:50:fb:24:6c:a1:72:a4:58:18:97:4b:25:01:7f:
90:4e:cd:76:5f:99:ef:7a:3e:0b:d8:c0:68:44:1c:d7:f5:2b:
36:50:40:08:b4:09:17:87:6a:d8:c4:9e:b2:a8:b2:2a:78:b8:
da:38:5b:6c:84:4e:fd:eb:92:4c:11:4f:30:b7:a2:a9:53:ac:
cf:9b:2b:7d:27:d2:c7:92:ff:c4:3f:05:85:65:0f:65:9d:f4:
d0:69:29:b8:8c:23:cc:e4:03:a0:68:e9:ae:a1:88:3e:d6:16:
9e:56:e8:ca:0b:b2:14:2c:8c:d9:d7:17:cd:43:e0:d0:51:0a:
f1:24:af:3a:a2:50:88:50:2b:e3:3e:69:b1:da:34:94:0e:61:
63:e3:6c:5d:e1:2b:a6:65:50:85:63:97:d5:fc:c8:e7:06:c3:
6a:9d:96:15:18:a6:3a:25:a7:79:10:0c:65:4d:1c:c8:60:ad:
93:a1:7e:cf:25:91:18:0f:39:e1:3f:58:73:15:a1:b1:fa:28:
48:92:8b:67:c2:77:31:69:99:d9:59:a3:74:df:56:7f:09:39:
74:bd:99:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org