Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/17D28782D6D111EEBFE28F95775412E6.roa
File: 17D28782D6D111EEBFE28F95775412E6.roa (raw, json)
Hash identifier: KS2vg7aLfGAwDnrbeNSYJnAv18QQEcmCJ8O5zl72tMM=
Subject key identifier: 0D:47:FD:02:77:00:60:55:67:18:D4:02:65:3F:95:8A:DB:2F:F5:35
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04C5
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/17D28782D6D111EEBFE28F95775412E6.roa
Signing time: Thu 29 Feb 2024 07:06:43 +0000
ROA not before: Thu 29 Feb 2024 07:06:39 +0000
ROA not after: Tue 28 Feb 2034 07:06:39 +0000
asID: 20011
IP address blocks: 168.210.32.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1221 (0x4c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:06:39 2024 GMT
Not After : Feb 28 07:06:39 2034 GMT
Subject: CN=65e02d03-7cc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f7:6f:ce:b8:0e:83:8f:8d:be:ae:c6:27:74:
35:23:2e:9a:ff:ad:3d:b8:d6:a7:35:3f:96:da:25:
57:5d:08:4a:20:18:ff:65:cd:ba:5d:cf:9a:64:91:
73:38:e5:14:ca:70:77:93:fa:26:5d:cb:af:6c:43:
1b:59:2f:5c:d6:44:e7:8e:48:1b:e6:21:e9:a3:91:
60:9c:86:f0:c5:ec:e1:36:ef:da:bf:7d:a3:9a:ef:
b6:c5:20:c5:a1:02:4c:19:5d:e1:8c:55:49:75:fe:
3d:80:58:29:26:b9:c2:93:44:34:5a:4f:4d:cf:ef:
39:27:bd:c9:c0:d3:cf:65:fe:90:eb:27:26:b7:96:
0d:68:0e:87:13:87:e3:7d:28:67:38:6d:29:47:bb:
f4:6d:94:e0:9e:b9:bf:d1:d2:c7:be:27:4c:65:e7:
fb:8f:43:b0:cf:40:8d:e4:51:ef:e1:60:d8:cf:f4:
ff:54:a3:4b:93:3f:d9:a1:c0:a8:3c:a2:01:76:d8:
5c:46:31:19:31:8f:ce:e9:d0:75:ef:0a:a1:ac:fc:
3a:e2:ee:6f:e0:46:a1:b5:68:41:f3:50:78:4e:fe:
1e:71:b6:73:b3:8e:d9:45:7a:e0:c3:c0:2a:80:95:
29:9e:a2:b2:10:00:f8:b7:3d:a7:b5:01:b1:fd:7e:
a6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:47:FD:02:77:00:60:55:67:18:D4:02:65:3F:95:8A:DB:2F:F5:35
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/17D28782D6D111EEBFE28F95775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.32.0/21
Signature Algorithm: sha256WithRSAEncryption
07:61:90:f5:67:08:0c:93:f7:0c:e6:85:0a:e7:8a:b9:4d:14:
bb:a9:31:a0:41:64:71:61:b7:cf:c3:e0:2d:4a:d3:2f:c1:08:
e6:44:c2:0b:7d:a6:df:5e:98:74:5f:73:55:1a:36:cc:29:25:
a3:95:da:aa:5a:8d:4a:9c:84:81:4b:21:27:c4:38:48:9a:34:
d4:0f:e6:9c:43:a0:a6:74:db:44:cf:b6:f1:77:3b:b5:10:27:
9d:58:21:b8:5b:08:f6:76:1b:bc:16:81:58:d3:a0:27:e1:71:
7c:29:0b:a9:33:45:0f:05:0e:24:c7:eb:4a:28:54:e7:08:71:
a4:e9:96:c5:a9:1d:df:03:60:f8:40:b7:c9:62:fd:83:7b:be:
74:81:48:77:55:24:d4:02:5f:03:4c:98:f2:35:69:5c:8f:0b:
73:f5:48:2f:96:f9:2f:b8:ea:ce:c2:21:88:95:b2:f9:d3:a3:
96:9b:e3:fb:71:f6:0a:4e:46:4c:bb:8a:f1:c9:ec:0f:b8:94:
02:bf:4c:14:a7:67:f1:5c:6f:b3:8a:db:ab:58:0f:70:28:49:
a1:41:b2:43:fa:1b:ff:f8:e9:de:0c:22:3d:50:bb:27:e3:e4:
30:fb:9b:0d:60:5b:5d:1b:44:f5:35:01:1e:e1:a0:aa:09:dc:
fd:c5:c1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:22 2024 by rpki-client on console-ams.rpki-client.org