Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F9E0D118B30011EF986A9F53762E951A.roa
File: F9E0D118B30011EF986A9F53762E951A.roa (raw, json)
Hash identifier: YnpLfc90yIQK1CEYvuO78aZJTwULrzPj15AvM6VffQM=
Subject key identifier: 18:4F:9D:47:18:1B:5B:8E:3A:60:FB:68:E4:60:A7:2B:61:59:25:A4
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B58
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F9E0D118B30011EF986A9F53762E951A.roa
Signing time: Thu 05 Dec 2024 12:03:44 +0000
ROA not before: Thu 05 Dec 2024 12:03:41 +0000
ROA not after: Wed 06 Dec 2034 12:03:41 +0000
asID: 6206
IP address blocks: 192.142.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2904 (0xb58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR
Validity
Not Before: Dec 5 12:03:41 2024 GMT
Not After : Dec 6 12:03:41 2034 GMT
Subject: CN=675196a0-51cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ad:76:78:3e:dd:7e:ec:44:c5:28:f2:03:2a:
6e:54:13:e6:8d:7b:db:48:52:af:ce:70:70:20:13:
ad:c9:20:f2:69:ce:60:fd:ae:4e:31:af:d5:62:6c:
73:b2:f1:b5:93:a5:a0:df:47:db:19:02:5e:b0:7e:
8f:2a:a6:63:ff:18:4f:f8:5b:9a:f7:81:08:25:4d:
32:05:0b:90:96:ac:05:93:de:ee:24:d2:ce:87:dd:
6a:8e:5b:79:52:f0:52:f1:22:35:e4:97:06:36:f1:
25:f5:95:80:84:c5:70:3d:9a:e4:89:d0:65:52:9e:
29:13:52:b9:1e:45:6d:df:01:10:52:70:55:72:50:
cf:17:39:04:0c:fd:fc:da:b7:38:98:d2:a2:ab:61:
a5:67:5d:75:71:c4:6e:5c:09:47:c5:c7:ee:ea:25:
77:24:54:14:ae:be:ff:a9:08:21:3b:64:56:9d:3a:
b7:6e:d0:fa:a1:7a:7e:cd:7c:0f:c8:e7:c2:94:af:
25:b5:8a:6f:e0:94:28:27:4a:98:fa:8c:c1:e7:9c:
f6:d8:5a:63:e3:ca:c3:5a:7b:33:80:e3:bf:c4:77:
a6:88:22:50:99:31:f8:5e:71:0f:49:f2:c5:57:8a:
ac:ef:1b:c0:65:c9:8a:b5:c8:cb:be:f6:fe:97:b3:
87:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4F:9D:47:18:1B:5B:8E:3A:60:FB:68:E4:60:A7:2B:61:59:25:A4
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F9E0D118B30011EF986A9F53762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.34.0/24
Signature Algorithm: sha256WithRSAEncryption
85:51:8a:3f:a8:73:3a:c5:7c:eb:ee:be:b1:26:b7:a4:14:fd:
03:8f:6f:13:8c:40:e0:de:4f:0f:c6:d1:21:5c:52:07:49:29:
12:29:69:23:ea:9d:2f:70:b9:b5:5e:ea:ed:db:31:3c:36:5e:
d7:cb:e8:7a:dd:ec:7c:ff:32:e9:93:57:93:93:5e:91:fd:9c:
99:ea:b2:6d:ab:68:f0:4a:d5:7b:7c:08:e7:f6:7b:db:7a:8d:
4c:43:5c:3d:ed:2b:77:29:07:e4:d9:40:4e:9a:77:86:b8:c5:
b9:db:31:d7:40:99:44:28:42:92:34:1e:e6:a1:e7:df:50:d6:
ad:eb:1f:e5:9b:67:fc:21:cd:3d:6e:de:66:57:4e:1f:d8:1d:
ec:6d:36:a1:38:b6:d1:41:66:bf:4a:6b:fb:ff:ea:e6:4f:b9:
99:7b:e3:ce:bf:d7:9b:f0:e1:c6:4c:5a:a6:81:e9:b0:e6:fc:
1a:f8:9d:76:cb:12:b4:a6:1d:30:bc:54:6b:5e:58:84:4b:f3:
ef:85:19:2a:0f:e2:62:88:3f:ba:fb:6d:9c:84:38:91:ed:4a:
2d:c4:83:6f:22:c8:5f:cb:c9:34:0e:65:9c:fb:2a:a7:a9:3b:
eb:88:7d:0e:b5:d1:cb:55:ce:d1:69:08:6a:4c:9e:5a:5c:f4:
da:cd:2a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:37:54 2025 by rpki-client