Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/E2DD5F56A57511EF83F9C987762E951A.roa
File: E2DD5F56A57511EF83F9C987762E951A.roa (raw, json)
Hash identifier: 4VkvUBqzWt/6zbvtXT5zMvics60HNx+/R7ldsXQNouU=
Subject key identifier: 5F:95:FD:3B:56:0C:E8:74:ED:42:A8:78:86:CB:B4:1A:83:3B:71:9E
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0AF2
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/E2DD5F56A57511EF83F9C987762E951A.roa
Signing time: Mon 18 Nov 2024 06:25:21 +0000
ROA not before: Mon 18 Nov 2024 06:25:17 +0000
ROA not after: Wed 15 Nov 2034 06:25:17 +0000
asID: 30431
IP address blocks: 192.142.64.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2802 (0xaf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:25:17 2024 GMT
Not After : Nov 15 06:25:17 2034 GMT
Subject: CN=673addd1-6af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d4:56:84:52:06:7b:41:f7:b9:a2:f3:04:a0:
2c:61:9c:99:15:7b:07:3e:4c:b2:c1:95:05:80:43:
d4:c6:d2:b6:eb:60:a9:f9:b5:f7:19:2f:5f:6c:36:
d6:f6:4b:fc:2a:24:b5:31:2d:d7:a9:44:c5:0d:f2:
6b:1d:2f:e3:31:da:62:77:57:04:2e:c2:bc:51:3c:
87:d3:3f:55:6b:65:5d:bd:c8:ef:a3:79:ca:30:96:
16:47:47:03:52:ad:a7:84:32:d8:62:fb:b3:8f:cc:
81:42:af:6f:0b:6d:e2:a3:60:60:ed:c4:ac:1f:a6:
99:74:60:8c:9e:bb:bc:20:8b:e4:c3:e0:05:91:6b:
03:00:7b:19:b4:35:13:b2:ee:65:e8:b2:78:64:98:
84:bc:eb:07:d1:0c:3b:56:99:49:a7:ed:4f:1a:40:
a2:af:04:59:ad:61:18:e1:9b:53:66:28:e2:66:0c:
76:65:2d:5a:7f:ac:5d:d6:b2:3c:d5:81:09:f2:92:
c9:61:bf:c8:37:3b:ab:58:b1:77:4c:f7:6e:5d:19:
fc:d6:91:3d:1c:55:c9:5e:a2:27:85:f3:a4:94:bd:
dd:76:41:eb:8e:ea:fc:a5:4d:b8:53:5e:d0:57:c4:
80:31:72:57:94:b0:10:5a:57:5c:79:f3:11:c7:77:
15:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:95:FD:3B:56:0C:E8:74:ED:42:A8:78:86:CB:B4:1A:83:3B:71:9E
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/E2DD5F56A57511EF83F9C987762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.64.0/21
Signature Algorithm: sha256WithRSAEncryption
55:68:28:a7:eb:56:42:dd:ff:8b:cf:a1:b5:cd:c5:7b:a6:62:
74:eb:17:e5:53:ad:34:24:d4:af:2e:a6:be:83:0e:ca:d9:8b:
b9:9c:ad:e5:22:c7:7b:5e:90:f1:a4:79:c9:c1:84:0f:b6:f8:
d2:e3:6b:a1:e1:54:92:0f:ff:5f:1e:fb:3f:00:e4:7f:0a:eb:
1d:5a:fa:13:ea:3f:f7:69:20:ea:76:d0:05:23:9e:52:75:e3:
5a:53:30:03:55:0e:f6:39:4e:57:3f:b8:52:1c:09:d3:3e:d3:
0d:5b:fe:19:95:dd:59:39:c3:99:d3:cc:de:25:b5:76:19:05:
b4:96:fb:7c:b2:9f:d3:d3:4d:bd:10:0c:c6:99:a3:2e:26:b0:
d8:b5:d1:c3:12:0c:bc:67:b9:00:c5:5c:4d:38:50:3c:d3:5e:
fc:70:d2:64:68:e9:9d:85:dd:46:29:57:2c:28:11:29:8b:7f:
8f:08:c0:c0:78:f4:47:9f:68:46:44:a8:99:2f:c3:31:69:e3:
d9:e2:ad:79:80:e8:9c:a9:3f:01:c8:2b:fa:cf:88:c1:a0:87:
38:61:70:be:53:80:58:3e:a7:fd:a1:6a:40:4c:df:f2:2f:87:
08:69:d6:2a:0b:f2:2c:e0:7d:99:23:eb:47:ad:34:8c:99:48:
d6:b6:92:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org