Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/0D11E6DCD6D411EEB675D59A775412E6.roa
File: 0D11E6DCD6D411EEB675D59A775412E6.roa (raw, json)
Hash identifier: e4MN0Odk8P7mNcs/8c9IYXswLI1eDxy+ES9x4+fg7IE=
Subject key identifier: C6:E5:FE:5A:54:24:BE:CE:58:F1:9D:BA:1D:8E:5B:EF:11:DB:06:C3
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04FA
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/0D11E6DCD6D411EEB675D59A775412E6.roa
Signing time: Thu 29 Feb 2024 07:27:54 +0000
ROA not before: Thu 29 Feb 2024 07:27:50 +0000
ROA not after: Tue 28 Feb 2034 07:27:50 +0000
asID: 20011
IP address blocks: 168.210.234.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1274 (0x4fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:27:50 2024 GMT
Not After : Feb 28 07:27:50 2034 GMT
Subject: CN=65e031f9-7f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ef:a6:2c:b9:c8:84:ea:d4:72:39:8d:d1:72:
fb:4d:a0:df:63:c5:0c:4a:37:c4:4f:54:32:e3:79:
27:27:04:15:24:1c:61:0e:05:f1:34:1f:3d:70:0e:
6b:ed:15:23:d7:6d:fa:a2:c5:d7:76:ca:35:ca:d9:
d7:41:db:f4:45:af:b5:66:99:15:5a:a5:21:39:83:
4e:69:b8:62:90:d8:a5:b0:31:36:ec:9d:34:6d:9b:
67:e4:aa:2b:0f:8b:8a:54:9a:f3:9c:61:55:9a:4e:
50:b1:3a:bf:d5:87:d8:a3:49:cb:f5:d6:5b:5b:5d:
f1:a3:9b:47:20:38:84:14:f1:68:ae:55:85:15:0a:
40:65:6a:d1:18:5e:85:de:7e:65:65:53:3f:7e:2e:
6b:f7:5b:61:d4:4f:4f:6f:1b:32:5c:0a:79:81:7e:
d2:d3:ca:e6:e7:36:9b:cc:8f:0d:79:cb:58:d6:74:
8d:54:f6:bd:34:3c:5f:4d:27:7e:5f:8e:30:33:20:
fb:25:e6:c9:12:58:97:58:37:fb:bf:19:36:57:e5:
94:19:62:c2:78:b6:fe:d3:e8:23:59:ec:86:f6:39:
05:fc:5b:6b:00:97:6b:7c:09:98:99:cb:3a:98:34:
2e:66:00:7b:1e:e8:1f:61:2b:29:cf:d7:21:40:53:
4b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E5:FE:5A:54:24:BE:CE:58:F1:9D:BA:1D:8E:5B:EF:11:DB:06:C3
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/0D11E6DCD6D411EEB675D59A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.234.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:23:80:04:8e:7c:a5:cc:0b:ed:38:36:1b:47:9c:6f:38:85:
13:5a:90:43:23:8e:02:15:e3:89:0e:4f:34:25:9d:2a:fc:5f:
aa:63:14:31:0b:d4:85:ee:53:42:50:43:7b:e2:38:56:fc:f0:
40:cb:e4:5b:1c:8c:9b:ac:cb:a2:3c:86:08:16:ce:e0:3c:7e:
fc:64:02:e4:4c:9c:e6:1d:04:13:a8:9f:d5:c8:c5:7f:55:51:
2a:6f:b0:dd:e0:f3:84:a5:7a:57:20:b5:b2:4c:cf:0b:22:ca:
55:c3:98:65:b0:4c:3f:45:16:36:55:8a:88:7e:63:3f:b1:03:
a7:a8:8e:be:c7:0f:95:49:97:77:a0:61:30:9f:48:cc:99:2e:
7d:10:d6:0e:fd:49:5e:81:32:75:bf:c1:3f:e4:4f:73:7a:f9:
2e:1c:e0:f4:f7:11:43:8b:16:1f:63:e6:d7:98:68:0b:d0:bf:
fc:ae:95:e3:7f:f2:a6:fc:bc:9d:30:ab:21:98:6b:fb:5e:f6:
92:73:e8:79:b6:ab:d4:a7:1a:c2:59:1f:45:a0:68:5f:29:33:
a2:7c:b4:ee:e3:2a:dd:e3:13:78:45:78:ad:87:ac:0b:ae:c5:
a4:78:fa:f1:ef:db:2b:4d:db:da:4e:8a:a4:73:7e:5a:d0:92:
ae:e6:14:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:28 2024 by rpki-client on console-fra.rpki-client.org