Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/6767E44ED6D211EE8B04FE97775412E6.roa
File: 6767E44ED6D211EE8B04FE97775412E6.roa (raw, json)
Hash identifier: HbXlNZmbbzwsIbWwhktUnRDS/upzcP5OA1nlcNgiVjw=
Subject key identifier: EA:C4:25:2E:90:56:47:2D:0A:92:09:32:E4:EB:9E:DE:85:73:0A:9E
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04DC
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/6767E44ED6D211EE8B04FE97775412E6.roa
Signing time: Thu 29 Feb 2024 07:16:06 +0000
ROA not before: Thu 29 Feb 2024 07:16:02 +0000
ROA not after: Tue 28 Feb 2034 07:16:02 +0000
asID: 20011
IP address blocks: 168.210.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1244 (0x4dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:16:02 2024 GMT
Not After : Feb 28 07:16:02 2034 GMT
Subject: CN=65e02f36-effa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:88:ac:71:c1:e3:a4:6f:25:fd:33:48:2a:76:
ea:3a:46:da:ce:a6:1c:1e:ab:3d:62:b3:11:d4:7a:
d1:04:60:b5:ef:80:23:18:d5:52:cf:eb:52:2b:1a:
b8:e1:3a:29:c6:89:c6:2a:c0:66:c7:71:8b:c3:3e:
d1:cf:b3:26:84:7f:5b:95:ea:a0:76:7d:9a:68:43:
52:c5:61:d3:c4:59:57:0b:f3:dc:22:c3:51:e0:64:
3e:54:48:1a:56:4a:3a:0b:12:9f:be:6c:7c:67:3b:
2c:be:44:5d:80:15:a7:a8:fa:0f:7c:a4:4f:93:48:
47:ce:c9:60:da:35:5b:42:f7:bc:6c:ab:9f:c4:d3:
16:5d:59:d1:27:5f:b5:fc:7f:84:03:d8:4f:c0:3b:
46:5d:0b:ee:55:2a:56:ac:47:96:5d:bf:7a:58:64:
45:c4:c5:ea:ad:92:70:83:22:e3:8d:88:d5:36:ed:
1b:c4:05:72:9b:4b:de:0d:57:64:ba:25:2b:23:1a:
53:84:6b:03:b0:59:5f:86:a1:dc:fb:1a:db:0d:de:
99:07:e9:62:ef:0c:f0:3f:63:ec:09:53:e1:1e:af:
8e:70:c5:7f:39:8f:3a:a4:95:4f:8e:ac:3b:f8:f5:
f7:3e:3a:f2:46:a1:d1:c7:37:68:7f:14:90:bd:d3:
1a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C4:25:2E:90:56:47:2D:0A:92:09:32:E4:EB:9E:DE:85:73:0A:9E
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/6767E44ED6D211EE8B04FE97775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.101.0/24
Signature Algorithm: sha256WithRSAEncryption
66:c8:73:c8:58:95:71:2f:62:04:a2:54:ca:3a:b8:f5:56:e9:
7d:40:ec:55:6f:d2:9d:15:3d:23:0d:76:5e:15:d8:94:b6:d5:
46:8e:9e:db:94:57:1b:bb:eb:4c:32:5f:f8:fb:93:f1:ce:16:
88:77:8f:62:0c:b2:e6:48:39:f2:32:0a:7d:6e:41:05:47:66:
a6:66:5b:ec:03:34:6a:e4:b4:f1:81:d9:ad:b8:38:fd:17:34:
89:21:33:f6:dc:42:50:87:19:5f:3a:0c:d3:51:b8:7d:b0:0f:
81:1f:74:17:71:f1:a6:34:88:7a:e4:1c:89:29:27:33:07:7c:
f2:49:1e:1d:ac:17:f2:00:e5:2c:28:25:d3:db:87:5c:b0:e9:
04:90:aa:92:45:b8:1d:a7:df:59:b8:b2:fc:d3:6b:3f:53:bc:
47:8a:9e:44:79:47:f4:00:2f:6c:f2:cd:5b:78:28:95:41:c3:
ff:2f:d1:09:35:db:9c:83:3a:48:e0:3d:05:12:6a:97:3a:af:
c8:8f:66:c4:e4:b5:26:0c:e7:f7:18:24:f2:e7:3a:ab:dc:ca:
b8:09:45:84:3a:26:72:e8:a9:cb:fc:e4:26:7e:8c:36:3b:ca:
53:8f:af:aa:34:f4:9b:ea:0c:2a:21:5d:8b:86:48:d7:57:1b:
f4:12:2e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:29 2024 by rpki-client on console-fra.rpki-client.org