Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/D57ADAA0B81111EBA7DB4454F8AEA228.roa
File: D57ADAA0B81111EBA7DB4454F8AEA228.roa (raw, json)
Hash identifier: UFXsrZ6SaipkzaQ680zeRQ03y6uI2CG5Iu4xeDfpl2Q=
Subject key identifier: F0:ED:D3:1D:3B:65:AD:E9:30:DF:ED:52:C3:19:BD:A1:5A:71:77:C4
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 86
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/D57ADAA0B81111EBA7DB4454F8AEA228.roa
Signing time: Tue 18 May 2021 19:47:10 +0000
ROA not before: Tue 18 May 2021 19:47:02 +0000
ROA not after: Sat 18 May 2041 19:47:02 +0000
asID: 3741
IP address blocks: 192.96.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134 (0x86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: May 18 19:47:02 2021 GMT
Not After : May 18 19:47:02 2041 GMT
Subject: CN=60a419be-a052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ea:60:5e:b6:29:e2:c2:f3:de:5e:d2:a2:6b:
4f:9a:7f:9c:95:30:c4:d7:63:f0:cd:cf:61:77:10:
46:cf:cb:c8:db:5d:9c:b7:18:3d:2f:e4:ef:71:2d:
f9:89:f7:62:e0:18:c5:c2:e4:a3:52:78:aa:90:80:
55:f0:68:75:a3:65:52:b9:88:81:e3:7b:c5:5c:e7:
ee:e8:a9:14:9b:2f:f3:3c:63:d4:b3:54:25:3b:2e:
63:cb:47:35:30:5d:40:4c:4e:32:74:94:73:fd:65:
06:ed:84:d5:6f:70:66:a2:98:f9:1d:43:de:cb:d3:
2c:e4:12:5a:b9:90:dd:6f:b2:ba:db:04:68:35:19:
19:4b:4b:62:bc:2a:b4:ab:a1:15:78:66:41:0f:59:
1c:6a:7b:b7:eb:bf:36:e3:85:83:7a:1f:bb:ac:38:
4c:32:61:ad:bf:3c:6c:1e:70:fc:e3:5a:05:25:c7:
c4:43:93:97:4f:2c:02:69:44:b8:2e:e5:dd:27:7e:
b7:0d:7b:22:aa:c8:98:8a:a1:1e:9b:d2:17:1a:9b:
27:15:db:96:3c:fc:00:39:df:67:82:6d:55:e5:d5:
0c:1c:52:05:12:27:0c:df:05:6a:de:15:be:bf:00:
53:e9:df:78:50:2f:a0:ba:e0:c0:41:0e:69:2c:98:
e2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:ED:D3:1D:3B:65:AD:E9:30:DF:ED:52:C3:19:BD:A1:5A:71:77:C4
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/D57ADAA0B81111EBA7DB4454F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.96.37.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ea:07:a8:01:27:24:94:74:64:eb:a1:ef:fe:55:54:6e:41:
7c:43:77:c3:23:d4:f8:80:04:c4:6e:8f:35:62:d5:b4:86:bc:
d2:25:a3:72:98:3b:dc:a4:b3:af:c3:4e:7e:45:38:17:fc:dc:
e6:c5:7f:46:62:55:aa:df:b4:13:c0:fb:2a:db:88:65:ca:fb:
2f:f8:08:6c:e6:6e:3f:61:73:22:fb:57:df:e4:a0:37:c3:91:
80:c6:74:2d:12:94:e1:4f:fe:e3:4d:e0:18:5e:eb:db:4f:d9:
4b:ef:9b:a0:48:d6:50:fe:2d:04:27:1a:79:ff:37:25:99:36:
d9:fd:88:6d:9b:a0:0c:6e:af:af:59:60:e7:9d:5b:5a:dd:b7:
a3:76:e7:9d:6c:a5:6b:01:c8:b0:b7:65:c5:64:76:6b:e4:da:
6d:92:0b:7b:55:11:f2:57:ab:86:5e:bf:6f:b6:b4:ed:ec:c1:
d8:44:89:b3:d6:ac:fc:84:96:0a:59:a9:21:81:37:97:d1:02:
2f:17:45:45:66:e2:1d:2a:26:06:6f:f3:1d:8c:53:76:56:0f:
47:94:ec:4c:ef:db:db:f2:91:ad:3f:09:f5:1a:20:8c:07:b7:
b6:d5:62:96:73:2c:0b:ae:98:44:38:ba:b1:85:06:22:89:7c:
b1:fc:74:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org