Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/EF153C06D6D311EE81B2A69A775412E6.roa
File: EF153C06D6D311EE81B2A69A775412E6.roa (raw, json)
Hash identifier: u4z/o2bi+coNZSpJQxlQFyneHgY3sC2mxikXEsI35Iw=
Subject key identifier: 92:00:69:93:C6:EB:EE:29:CC:30:D0:B2:DD:BB:61:5C:86:F8:5B:B5
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04F8
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/EF153C06D6D311EE81B2A69A775412E6.roa
Signing time: Thu 29 Feb 2024 07:27:03 +0000
ROA not before: Thu 29 Feb 2024 07:26:59 +0000
ROA not after: Tue 28 Feb 2034 07:26:59 +0000
asID: 20011
IP address blocks: 168.210.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1272 (0x4f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:26:59 2024 GMT
Not After : Feb 28 07:26:59 2034 GMT
Subject: CN=65e031c7-e1a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:58:f2:a1:57:44:0e:14:fa:0e:ca:e6:80:83:
94:ce:63:12:b8:d8:d0:43:00:54:8b:b0:c4:69:f0:
18:cd:9f:41:8d:d6:b0:24:83:d7:e4:dc:e9:aa:b4:
3e:23:3d:c3:0a:2f:68:f9:11:ee:81:cc:66:52:c5:
45:61:a2:87:17:53:01:6f:ec:51:3b:b1:48:37:10:
35:a9:54:8c:6e:9c:c8:a5:32:25:be:30:de:92:6d:
df:be:b6:c9:6e:c3:73:b5:ec:f5:6a:b4:73:f2:8d:
70:de:96:aa:1b:82:5d:7a:11:a4:9e:b9:ce:4f:ce:
06:61:61:13:18:45:ae:07:4d:06:c5:30:18:ed:35:
71:12:df:16:82:3f:16:1f:87:55:ab:a7:86:16:60:
ca:06:3a:a1:5c:c7:c2:39:16:15:a5:ef:92:66:64:
2e:b8:e9:54:ce:1d:3a:d8:c3:f6:15:de:73:d7:de:
02:ea:b1:15:1d:69:af:e8:1e:62:39:82:b4:39:eb:
12:05:f2:21:2c:ea:35:2b:5e:14:8e:19:12:cb:0f:
16:6d:dd:3a:a0:ab:52:38:39:fc:92:e4:86:bc:de:
29:ea:f5:26:90:4e:e3:86:b0:bd:7b:32:6c:e8:3e:
b6:62:48:f2:84:75:7d:c0:c8:87:be:fe:74:28:19:
fd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:00:69:93:C6:EB:EE:29:CC:30:D0:B2:DD:BB:61:5C:86:F8:5B:B5
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/EF153C06D6D311EE81B2A69A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.233.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:91:b1:4a:52:d7:b1:ff:36:12:37:42:0d:14:11:b9:9e:0e:
83:9e:4f:95:dd:8c:a6:7e:dc:9c:c5:3d:63:c9:80:9c:98:dc:
89:4e:6c:5e:5f:dd:95:b3:76:58:76:58:89:b8:23:75:7d:26:
79:39:5b:ce:a9:b2:ae:61:99:d8:a5:be:89:6f:4e:33:4f:51:
8c:30:dc:d6:8c:1c:19:b4:13:07:a5:6a:4c:55:8f:d0:63:36:
31:84:9e:c2:4e:91:6e:6f:a6:f7:08:41:05:5e:89:fc:75:0b:
ab:0d:c9:48:38:92:dc:b0:4f:42:99:77:5f:2f:ec:f4:c4:9e:
48:af:52:5a:79:3b:08:40:84:1e:a5:34:c7:a4:b6:91:52:74:
1c:15:52:bb:b9:61:3c:9d:43:4f:9d:9f:a5:e0:2c:2a:a3:34:
ac:95:53:e0:4d:15:bf:58:31:44:d4:bb:d5:e3:e0:4d:23:9d:
e1:21:21:7c:b8:de:ff:b2:b5:1e:fe:13:e7:74:d0:e9:4c:fd:
62:e1:51:0f:d5:47:fc:99:e4:2b:b5:8a:e0:37:0a:2c:45:1b:
d2:fb:33:ea:f9:b2:17:2f:27:57:21:20:d2:1d:28:91:54:95:
40:03:27:80:9c:1d:26:cf:e9:56:d9:2d:2c:be:56:45:ab:9f:
48:fa:1c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:29 2024 by rpki-client on console-fra.rpki-client.org