Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/DB5426FCD6D111EE8821F696775412E6.roa
File: DB5426FCD6D111EE8821F696775412E6.roa (raw, json)
Hash identifier: ewSN3NtRrJJE/mn0lq0kjCSH8LZR+bHGqCfgNdGJeus=
Subject key identifier: 7C:C1:04:85:AA:1C:D7:B8:95:BB:AB:2E:5A:08:3C:AD:7E:00:45:03
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04D2
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/DB5426FCD6D111EE8821F696775412E6.roa
Signing time: Thu 29 Feb 2024 07:12:11 +0000
ROA not before: Thu 29 Feb 2024 07:12:07 +0000
ROA not after: Tue 28 Feb 2034 07:12:07 +0000
asID: 20011
IP address blocks: 168.210.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1234 (0x4d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:12:07 2024 GMT
Not After : Feb 28 07:12:07 2034 GMT
Subject: CN=65e02e4b-5a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ae:ba:55:8e:c6:7f:7b:90:c9:bf:66:5b:36:
81:68:6b:2e:d5:0a:46:fd:a8:e9:ff:9b:b8:fa:a0:
62:11:9f:0a:bc:f1:0d:a8:b2:5d:90:7a:f6:b0:57:
44:ec:88:21:00:bd:28:27:b5:c3:a7:e3:80:be:2e:
36:c0:d6:2f:e3:08:6f:a0:f1:fa:d2:a1:a2:12:e6:
48:9f:52:b4:0d:2e:b0:10:d6:d8:1c:69:62:c8:60:
b8:ca:d9:f4:37:ca:87:79:bf:95:b4:89:a3:0c:90:
d0:a8:8f:63:a5:6d:dc:cd:46:8e:47:b7:4a:39:f2:
a9:ec:e0:b6:f8:ea:f7:2c:25:4f:ba:6f:08:9e:cb:
e2:de:a8:b8:a1:2b:94:55:7c:4c:d0:38:08:f7:73:
af:77:9e:14:36:39:34:9e:c4:90:69:9c:8c:4d:e6:
e4:16:a1:e2:c6:df:54:6e:9d:b7:42:07:15:78:07:
2f:44:88:81:45:99:4f:22:4b:ff:be:a6:4d:59:96:
81:dd:4e:c5:7c:4d:61:c2:75:16:e7:52:a5:40:32:
86:54:ae:23:d0:5f:54:0e:95:4e:52:1c:c4:25:a2:
0a:26:a4:2d:ba:4a:4a:c1:c9:aa:02:73:65:ee:2f:
83:bb:08:d7:7f:7c:7d:47:00:79:a6:60:20:34:f4:
c2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C1:04:85:AA:1C:D7:B8:95:BB:AB:2E:5A:08:3C:AD:7E:00:45:03
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/DB5426FCD6D111EE8821F696775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.64.0/20
Signature Algorithm: sha256WithRSAEncryption
02:30:4a:ce:22:be:b7:48:b3:df:0a:5d:1c:ce:f3:f7:78:ff:
97:be:e5:71:74:eb:44:4a:f3:9f:21:50:6a:54:e7:08:93:b7:
69:37:52:ad:7d:32:51:90:ff:f6:77:c1:4c:db:c3:9f:8b:55:
eb:34:04:a9:e7:8f:fe:25:79:c3:66:7c:ca:0d:3f:8d:cb:89:
6c:8f:46:2d:5d:62:7c:f2:d9:60:43:cb:9e:bf:1c:f4:88:6c:
3a:a6:4d:1a:5b:f1:b7:99:ad:1d:c9:2c:f0:58:75:db:bf:3f:
4d:1f:56:7a:3e:1c:06:55:73:d3:b9:84:fb:80:6c:fd:7c:71:
97:21:1c:d4:c9:94:ac:49:b1:5a:e6:c1:58:56:fb:93:8c:e1:
24:b6:06:ed:63:11:8b:9e:d7:a4:30:bb:eb:de:5c:94:be:44:
cb:7f:cc:59:b4:f4:c3:6c:3a:41:31:92:b8:ab:5b:9a:e5:0c:
a4:54:f8:c4:28:d2:bc:23:61:18:db:b3:26:5e:94:80:17:21:
c5:1a:23:c9:24:bc:80:06:b0:64:6d:e5:36:57:41:69:7c:7e:
05:9f:18:db:4c:1c:63:59:79:bd:e0:4b:02:d8:ae:01:d3:e1:
9f:ca:02:bd:2f:c7:b0:29:7b:4c:a3:a8:10:db:60:3b:9d:0e:
33:58:8a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:29 2024 by rpki-client on console-fra.rpki-client.org