Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/78EE6C50D6D311EE8E30F999775412E6.roa
File: 78EE6C50D6D311EE8E30F999775412E6.roa (raw, json)
Hash identifier: OmyWMkWZqAwBmqum01dwiU7OnnccgS3behI0J5OgbJU=
Subject key identifier: 77:AC:01:09:B8:DE:22:F2:F9:26:BB:AA:91:57:43:F8:22:AB:13:80
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04F0
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/78EE6C50D6D311EE8E30F999775412E6.roa
Signing time: Thu 29 Feb 2024 07:23:45 +0000
ROA not before: Thu 29 Feb 2024 07:23:41 +0000
ROA not after: Tue 28 Feb 2034 07:23:41 +0000
asID: 20011
IP address blocks: 168.210.210.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1264 (0x4f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:23:41 2024 GMT
Not After : Feb 28 07:23:41 2034 GMT
Subject: CN=65e03101-8c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:db:1b:26:1a:5d:e9:ae:d8:c0:65:a8:2b:4f:
a6:0a:75:8a:6b:a1:39:14:eb:b7:ee:a4:54:70:14:
4b:79:87:2a:c7:d6:4b:f9:d0:4e:2b:51:29:e6:48:
86:78:0e:54:08:a0:62:71:6a:d3:43:a3:0a:72:f9:
5b:dc:14:3b:ca:00:92:f0:71:e5:bb:25:9a:b4:4c:
1a:d8:e1:46:17:ff:a4:b3:4f:48:f8:f7:f6:51:eb:
8f:7e:ae:c8:07:01:24:a6:00:70:da:2b:78:a0:c5:
9f:2c:a0:56:65:3d:03:57:c9:19:d7:0b:f7:71:05:
cf:27:92:34:fc:00:14:f7:09:26:de:df:6e:4b:05:
41:a4:d0:6e:13:3a:70:9a:f7:49:dc:43:91:87:35:
d1:6e:87:e6:c5:3b:88:8b:cc:58:b5:15:f3:83:c3:
55:0f:07:03:b4:6a:d1:c5:51:78:40:71:0b:c7:5e:
1f:4c:f2:bc:26:e0:07:00:d8:e7:96:ee:7f:d2:dc:
72:7b:98:eb:8b:ec:08:2d:17:9f:44:a1:60:8a:e1:
3e:44:df:26:04:8a:33:f4:c3:09:8b:fc:51:29:01:
9b:ec:53:d9:de:40:87:e7:cf:03:2c:bb:30:c1:b7:
bd:56:29:a8:e3:8b:e1:5b:ca:ca:95:b4:97:02:48:
64:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AC:01:09:B8:DE:22:F2:F9:26:BB:AA:91:57:43:F8:22:AB:13:80
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/78EE6C50D6D311EE8E30F999775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.210.0/23
Signature Algorithm: sha256WithRSAEncryption
69:f3:55:ab:5d:6d:f6:61:8a:7f:82:56:26:ac:80:84:4f:91:
f2:75:d2:4a:e6:a7:de:85:1a:9e:82:95:0c:06:b9:f9:ab:66:
80:8e:83:6c:a8:ef:a4:0b:f8:2a:c9:45:61:96:58:0c:2a:fc:
a0:f7:bd:83:c9:9c:0d:ec:72:a9:09:ed:b2:54:a3:7e:44:a9:
22:e5:da:19:f5:80:67:87:b2:ba:15:7c:7f:a1:bf:58:07:a3:
0b:d4:2d:47:eb:c6:9b:33:c3:5f:ff:15:22:82:76:4d:68:73:
0c:cb:b1:0e:08:17:51:21:ca:a6:79:de:fe:d0:6e:bb:fb:04:
b8:92:85:d8:8f:23:50:ce:31:e3:ad:01:0e:3a:0f:3a:ba:75:
63:7f:b8:5c:ee:9a:81:e2:35:17:f7:aa:89:9b:bc:04:cb:d6:
fe:15:7d:61:07:94:05:10:b5:f4:be:be:24:93:63:41:ec:c9:
35:d3:11:3d:d6:82:85:51:d0:ea:56:9c:5a:fe:aa:c9:4b:ef:
37:f9:88:f1:91:60:21:82:77:89:ea:23:a5:9a:29:bd:1e:e9:
cf:3b:33:31:cf:a0:4b:7d:bf:a5:39:61:a9:bb:db:8d:34:1a:
b5:2d:f1:48:88:d8:ad:46:51:d6:12:6a:00:9b:d0:d2:0d:2e:
8f:d6:1d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:29 2024 by rpki-client on console-fra.rpki-client.org