Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/BDD29D70D6D111EE858DC496775412E6.roa
File: BDD29D70D6D111EE858DC496775412E6.roa (raw, json)
Hash identifier: 3QpUfB1uqQrOQAiX8rmw5+mdhJJe2Ty9dlWX56QYMI8=
Subject key identifier: 71:12:88:13:27:0D:01:BF:9D:B8:E9:5E:00:54:D6:5E:CC:50:DD:7E
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04D0
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/BDD29D70D6D111EE858DC496775412E6.roa
Signing time: Thu 29 Feb 2024 07:11:22 +0000
ROA not before: Thu 29 Feb 2024 07:11:17 +0000
ROA not after: Tue 28 Feb 2034 07:11:17 +0000
asID: 20011
IP address blocks: 168.210.48.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1232 (0x4d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:11:17 2024 GMT
Not After : Feb 28 07:11:17 2034 GMT
Subject: CN=65e02e19-eff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e0:c4:f6:15:b1:b9:51:38:b9:88:6e:12:b6:
ef:66:9a:be:45:15:de:9e:27:8a:1d:a4:0a:cb:f6:
cd:67:0c:f1:cb:84:87:5d:80:07:0b:2a:77:e5:95:
5a:01:88:fa:63:3e:cf:4f:1a:1a:2c:c0:68:2c:fe:
70:ae:46:45:a6:ae:4f:19:94:c7:45:fc:6e:c7:7f:
ef:04:24:03:67:62:5e:90:85:d5:01:59:1d:bf:0e:
3d:7b:26:ee:92:fb:2f:d1:89:94:f8:78:5c:94:a1:
28:36:6d:d5:0e:30:35:fd:e2:48:92:e6:1c:a7:ee:
80:a9:a8:9e:40:34:21:5f:15:f2:1b:1e:d5:d9:e5:
44:e7:17:18:6e:80:fa:76:7f:87:0b:fd:2f:e2:64:
8c:de:84:e7:13:c3:c2:ae:8e:a0:99:13:44:5e:54:
b6:64:8b:97:52:a7:b9:1a:7e:5e:2a:b3:a9:9d:43:
a2:e7:98:44:19:04:29:1c:3c:20:13:71:c2:fd:a6:
82:73:33:96:b4:ff:13:f0:f7:3c:bc:0e:5e:a9:65:
7b:e0:43:20:51:37:83:60:10:b5:59:f8:5a:e8:ee:
a9:22:92:fb:85:a8:50:c8:d6:2e:17:db:6f:48:8d:
92:4b:8a:f4:93:9b:66:e6:62:0c:b3:aa:41:66:af:
5e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:12:88:13:27:0D:01:BF:9D:B8:E9:5E:00:54:D6:5E:CC:50:DD:7E
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/BDD29D70D6D111EE858DC496775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.48.0/20
Signature Algorithm: sha256WithRSAEncryption
52:50:cd:68:a2:bd:e2:d7:42:f8:85:8c:8f:f7:6d:c8:a7:cc:
0b:8b:90:09:6f:72:a0:bf:05:73:e0:f4:34:5f:c7:a7:89:0b:
80:89:84:f3:9a:09:73:c6:79:09:cc:d0:10:dc:02:a5:a9:0d:
ee:4c:92:95:5c:59:99:49:37:91:28:f1:86:1b:e3:25:72:17:
fe:d3:40:a1:40:47:8b:c5:1a:13:ce:7c:95:99:35:07:a3:dd:
d3:d2:a9:aa:88:4e:4c:e6:4d:7c:b3:59:29:70:c3:cf:47:b0:
18:76:c7:50:c6:24:1f:65:95:04:a8:fe:89:95:a8:c9:c5:28:
68:a1:82:09:29:5f:6d:cb:ac:02:23:44:16:2e:ca:bc:4e:54:
1c:59:d7:90:c7:dc:27:af:d5:13:ef:1c:e0:9c:31:53:ee:35:
e7:d7:64:24:fc:64:cb:59:11:9f:51:30:e8:c8:be:7f:6b:37:
94:7a:55:8a:92:cd:ae:69:1f:4c:89:f0:aa:18:17:6e:d7:78:
a4:28:44:06:a9:42:66:bf:17:70:6f:0e:e3:06:f6:04:d2:e6:
d6:00:41:37:7e:05:b5:1d:3a:f9:78:4a:24:9e:44:8e:8d:0d:
db:0f:39:ba:89:dc:44:62:c4:ce:6d:1c:63:44:13:98:7a:34:
4f:49:34:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:29 2024 by rpki-client on console-fra.rpki-client.org