Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366EFDF/B8FBFDC6C3A811EBB226A912F8AEA228/3E53A38EC3A911EB9BF37113F8AEA228.roa
File: 3E53A38EC3A911EB9BF37113F8AEA228.roa (raw, json)
Hash identifier: UWrlx8pnd01IE224YMAsfjin1d86LPgTgd2/Rsv7P6o=
Subject key identifier: 72:8D:8B:A0:EA:24:89:A0:2B:73:EE:61:C0:B7:30:C5:C8:46:BF:8F
Certificate issuer: /CN=F366EFDFAR/serialNumber=4EE5A9FAC7D46B0B1627C64EE70ABDDBD2D55E7D
Certificate serial: 02
Authority key identifier: 4E:E5:A9:FA:C7:D4:6B:0B:16:27:C6:4E:E7:0A:BD:DB:D2:D5:5E:7D
Authority info access: rsync://rpki.afrinic.net/repository/arin/TuWp-sfUawsWJ8ZO5wq929LVXn0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366EFDF/B8FBFDC6C3A811EBB226A912F8AEA228/3E53A38EC3A911EB9BF37113F8AEA228.roa
Signing time: Wed 02 Jun 2021 13:48:43 +0000
ROA not before: Wed 02 Jun 2021 13:48:38 +0000
ROA not after: Sun 02 Jun 2024 13:48:38 +0000
asID: 15964
IP address blocks: 192.145.186.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366EFDF/B8FBFDC6C3A811EBB226A912F8AEA228/TuWp-sfUawsWJ8ZO5wq929LVXn0.crl
rsync://rpki.afrinic.net/repository/member_repository/F366EFDF/B8FBFDC6C3A811EBB226A912F8AEA228/TuWp-sfUawsWJ8ZO5wq929LVXn0.mft
rsync://rpki.afrinic.net/repository/arin/TuWp-sfUawsWJ8ZO5wq929LVXn0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366EFDFAR/serialNumber=4EE5A9FAC7D46B0B1627C64EE70ABDDBD2D55E7D
Validity
Not Before: Jun 2 13:48:38 2021 GMT
Not After : Jun 2 13:48:38 2024 GMT
Subject: CN=60b78c3b-62d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:40:69:9e:99:d7:02:53:68:cf:af:d9:2f:91:
11:14:66:e7:7d:23:94:13:f8:ab:75:bd:21:fb:cb:
86:a8:13:9c:aa:75:0d:d6:a2:bc:5b:35:f6:ac:a9:
b7:ca:df:26:b2:d0:fb:fc:6d:f0:18:eb:d9:67:9a:
9a:b4:86:dc:44:d7:b3:03:cd:0f:1a:6b:00:ed:ef:
16:f0:1e:bd:a5:69:b0:47:48:f6:04:d8:20:4e:9c:
a7:4c:ed:8b:c7:bb:d7:d8:4e:92:dd:95:a5:09:ae:
ed:a8:75:7e:13:76:e9:5e:0f:b6:92:71:a8:69:03:
a3:25:01:46:74:60:80:da:14:34:5b:63:2a:54:b9:
78:ce:56:e7:5e:27:f4:bf:52:4d:6e:b1:cb:33:dd:
6d:ab:72:e2:d5:b0:40:cb:18:6e:74:9c:f2:78:65:
e4:6c:ad:30:6a:be:f6:5a:b4:98:f0:6c:9f:59:35:
6f:80:a4:08:b4:f4:86:9d:1f:5a:97:86:a5:da:38:
4a:9d:a1:eb:16:e7:b6:59:0b:90:65:27:a3:b6:65:
a8:82:e3:6b:13:39:ce:b0:2d:da:c0:ec:06:89:2d:
52:f4:a6:45:fe:9b:ba:c3:ec:93:23:3e:b7:9b:f1:
d6:47:f5:4c:bd:6d:82:48:e1:f2:55:62:d4:c2:d4:
4a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8D:8B:A0:EA:24:89:A0:2B:73:EE:61:C0:B7:30:C5:C8:46:BF:8F
X509v3 Authority Key Identifier:
keyid:4E:E5:A9:FA:C7:D4:6B:0B:16:27:C6:4E:E7:0A:BD:DB:D2:D5:5E:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366EFDF/B8FBFDC6C3A811EBB226A912F8AEA228/TuWp-sfUawsWJ8ZO5wq929LVXn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/TuWp-sfUawsWJ8ZO5wq929LVXn0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366EFDF/B8FBFDC6C3A811EBB226A912F8AEA228/3E53A38EC3A911EB9BF37113F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.145.186.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:9e:e1:94:cd:66:c9:ae:f2:79:1a:6e:30:45:50:8d:81:93:
db:58:bf:1c:7e:73:a2:50:5d:eb:1f:c3:00:42:af:bb:50:8d:
03:c8:f2:aa:f5:c6:67:42:10:af:9a:b9:33:db:76:70:0f:10:
52:5f:b8:a6:75:a6:55:2a:6e:0b:dc:38:8e:d8:f6:20:04:4d:
f7:c1:83:34:39:a9:d8:fa:fc:d7:4a:d3:10:5f:69:73:de:f3:
13:4a:5c:a6:14:83:d7:52:80:7e:4e:8f:33:95:7f:4e:3c:41:
a7:f3:c1:66:1c:74:91:12:18:c4:7b:5b:ff:e6:cc:fd:c5:f2:
bc:3c:a6:a2:4a:24:c2:15:d7:e0:47:01:a1:00:03:48:11:c4:
51:e4:10:02:59:ac:40:d9:d5:3d:2a:b6:62:ec:8e:fc:b0:3a:
2a:8c:26:fa:65:e7:04:a3:bd:f2:e6:0c:ed:55:65:18:a9:21:
e7:7d:a2:cc:63:07:95:07:72:ca:72:68:c2:9d:db:19:8f:6e:
93:ba:64:aa:20:e2:15:fd:fd:44:d7:ed:d5:53:c4:68:65:0a:
98:77:4b:77:79:77:f2:1e:d2:29:e0:73:c0:cc:69:3f:b3:6b:
4c:25:8c:e1:99:5d:52:6e:a9:1b:98:c6:dc:1e:16:ba:53:51:
71:3a:2d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:52:51 2024 by rpki-client on console-fra.rpki-client.org