Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/DC5AEC16A25511EFADBBA452762E951A.roa
File: DC5AEC16A25511EFADBBA452762E951A.roa (raw, json)
Hash identifier: j/i36rr5slk2G2+uztycWe56KC1f/mFdgdDztRHlNik=
Subject key identifier: 12:17:AA:06:DC:EE:37:4A:32:B3:BA:A3:E3:9B:DB:0D:99:09:D6:B2
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0ADB
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/DC5AEC16A25511EFADBBA452762E951A.roa
Signing time: Thu 14 Nov 2024 06:58:32 +0000
ROA not before: Thu 14 Nov 2024 06:58:29 +0000
ROA not after: Tue 14 Nov 2034 06:58:29 +0000
asID: 6206
IP address blocks: 192.142.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2779 (0xadb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 14 06:58:29 2024 GMT
Not After : Nov 14 06:58:29 2034 GMT
Subject: CN=67359f98-881d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1c:22:76:ad:bf:d1:8d:94:82:8e:29:ce:d0:
d2:6b:c4:15:22:71:f8:f2:d2:2a:a4:9f:cc:d8:9f:
15:b7:6a:c1:4e:95:8d:33:35:d5:ee:1a:83:dc:75:
85:c7:c9:da:db:b6:3d:18:80:37:1d:6f:01:c0:ec:
cd:ea:fe:84:e5:62:28:c2:f1:97:6e:29:1c:52:70:
5d:8c:1b:52:26:0c:ec:3f:86:43:38:57:30:78:02:
65:d7:93:6c:74:5f:7e:15:3b:29:89:70:fc:32:a8:
56:e0:fe:86:d0:c5:12:24:ef:63:10:18:a1:2c:90:
ae:1d:c9:3f:5f:6d:04:b3:84:5a:63:f8:f2:88:82:
40:50:0b:f7:4b:9c:0e:05:cc:f2:ad:24:b6:19:bb:
0a:d3:25:97:69:80:02:2f:a9:17:c8:6d:d7:ed:4b:
75:a1:bb:4d:29:1f:a2:68:52:28:b0:42:9e:02:79:
ac:74:5d:75:eb:a0:92:ce:db:96:cb:78:aa:d9:30:
33:c6:65:a2:f7:a1:f6:a3:06:94:95:41:e5:b7:25:
74:ed:fb:10:7e:af:b6:09:c7:da:80:eb:0e:a3:7d:
4c:d6:be:40:20:3c:6e:96:ba:36:ae:5a:e8:f0:b3:
1b:a0:34:c0:6b:5b:c2:a1:51:77:5c:c7:ea:3d:cb:
ff:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:17:AA:06:DC:EE:37:4A:32:B3:BA:A3:E3:9B:DB:0D:99:09:D6:B2
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/DC5AEC16A25511EFADBBA452762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.7.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e4:96:84:9b:3b:3d:9b:ce:cb:4f:30:7c:85:99:56:75:ff:
7a:c5:c3:8a:9d:21:88:bc:73:12:f6:cd:40:44:49:6b:75:27:
fe:99:9a:e3:cf:27:f8:ff:65:d3:2e:67:d7:f1:1c:8e:19:dd:
84:32:90:30:8d:b2:03:50:eb:48:c8:08:9d:0c:ad:63:fd:33:
87:18:31:f0:a7:82:25:96:4f:d4:f5:ac:9d:99:5f:e1:f1:31:
6c:24:ff:d0:0a:6e:ea:40:a2:4a:97:d2:70:36:03:a6:46:dd:
d1:5c:c7:ed:c9:99:df:85:a4:98:2a:44:13:7f:7b:fe:a4:6c:
46:e6:10:a1:48:2c:3c:3c:fb:ec:11:5b:08:1d:c8:d1:3d:75:
3d:3b:9b:06:c2:d5:f6:38:ac:f3:e5:11:12:3f:0d:91:e8:ef:
11:d0:15:47:4c:61:77:00:d2:e9:88:63:4c:14:ae:c4:86:b7:
cd:a2:4a:b9:b5:bb:54:c2:57:91:7b:47:bb:da:29:a9:8b:18:
f3:fa:2b:8c:69:9e:a3:82:a6:d4:59:a1:88:f4:93:2c:4a:5f:
3a:63:47:b2:5f:27:93:95:21:94:80:6a:0e:ef:69:ef:46:9b:
19:7a:16:1a:74:7b:5b:68:1b:85:d3:4c:8f:d2:e2:e0:46:2d:
93:64:3e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org