Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F39F7C8CA57711EFAE328794762E951A.roa
File: F39F7C8CA57711EFAE328794762E951A.roa (raw, json)
Hash identifier: y54Io7v3Vb35zA03fssvmmbU3CGITTraAT215kd8+pU=
Subject key identifier: 79:92:E6:D8:5A:84:5E:36:C6:00:7F:39:68:EC:00:C0:41:EC:46:D8
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B10
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F39F7C8CA57711EFAE328794762E951A.roa
Signing time: Mon 18 Nov 2024 06:40:08 +0000
ROA not before: Mon 18 Nov 2024 06:40:04 +0000
ROA not after: Tue 14 Nov 2034 06:40:04 +0000
asID: 30431
IP address blocks: 192.142.196.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2832 (0xb10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 18 06:40:04 2024 GMT
Not After : Nov 14 06:40:04 2034 GMT
Subject: CN=673ae148-c11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:3b:70:57:37:3e:a7:56:2b:c6:ee:b0:47:
40:4a:52:c1:aa:00:aa:b3:49:2a:5a:b3:f1:fa:e9:
94:c1:31:74:99:77:eb:22:1d:a0:a7:b6:4a:93:48:
29:57:00:94:36:5e:ea:88:3b:65:e7:4b:4f:e0:62:
88:f2:4d:2c:cd:30:a6:6e:66:7c:72:f0:0a:48:0a:
00:33:0e:46:14:1a:cc:af:32:47:a1:4b:39:2f:05:
84:b3:8c:3e:28:4b:be:3c:e4:4f:35:46:c6:0c:29:
7e:41:26:fd:a6:65:57:10:60:57:9f:2b:7f:42:5e:
7f:76:3f:4f:f5:39:9f:b3:07:52:d6:57:0a:95:69:
37:e3:b5:bd:ae:63:60:bc:2c:36:0e:08:89:35:e2:
86:2f:57:2a:ec:f4:ab:75:7a:31:63:40:4e:84:c2:
41:f4:51:64:25:77:90:8d:34:8a:0d:dc:c0:d4:cc:
41:c2:0b:70:63:2c:19:9b:55:e2:29:b0:95:85:86:
5a:b5:80:fb:33:ec:ee:a0:c8:a5:f2:74:49:f2:33:
96:58:9c:59:63:8f:5a:35:72:32:be:cf:74:9b:99:
42:10:29:60:5f:9d:d7:25:b9:47:e4:49:16:be:e2:
86:5a:9d:64:07:19:97:31:b6:73:47:1a:bb:9c:88:
4d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:92:E6:D8:5A:84:5E:36:C6:00:7F:39:68:EC:00:C0:41:EC:46:D8
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F39F7C8CA57711EFAE328794762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.196.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:9a:86:29:09:3c:cb:50:90:62:c2:bf:c0:e8:b2:0c:70:75:
7e:cd:85:69:7d:46:0e:24:14:55:59:47:a0:9a:7f:fe:aa:42:
29:da:f5:52:3c:93:03:dc:0f:da:5a:e2:b5:b9:f6:63:2c:fe:
5f:ea:a8:03:d1:fc:5b:37:86:0f:17:cf:25:4e:7d:41:a2:65:
d1:6c:6f:16:e2:3e:7b:42:a9:68:db:0d:bf:20:cc:6d:cc:c2:
41:14:ba:c0:2d:50:90:97:b8:8b:3e:6d:0a:f3:ff:0c:b5:e6:
7e:d9:bc:e7:a6:dc:2e:3e:63:e0:78:94:ea:26:dd:6a:ab:c3:
b2:2c:74:a7:8e:76:a8:7b:82:0a:77:7e:b1:13:6c:28:3b:fd:
65:12:a0:b7:e4:9d:42:0d:a9:e8:38:b2:65:44:05:0f:2e:cb:
fc:99:0f:61:fa:72:df:78:1d:cc:26:47:3d:18:ee:f7:39:15:
fc:bc:29:00:65:f8:c6:ce:a7:1b:38:39:06:ba:bf:97:4b:38:
02:f3:fd:72:15:b5:80:8b:f7:e6:f2:9d:2b:24:2e:08:51:fb:
e7:10:64:55:03:6e:21:e5:57:9a:47:01:2a:2d:fa:31:df:f7:
f2:b9:98:eb:5b:83:04:84:d6:a2:42:09:19:3b:0c:14:46:8e:
f7:c6:4e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org