Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/F1721C06D6D011EE90D85995775412E6.roa
File: F1721C06D6D011EE90D85995775412E6.roa (raw, json)
Hash identifier: outMRddXF9WXOVZiQBmMyCeqJmDZ0QscQ342UcSxPB4=
Subject key identifier: F3:9B:25:40:61:70:11:8C:46:3C:F5:45:E9:5A:B3:B0:34:69:35:CB
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04C3
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/F1721C06D6D011EE90D85995775412E6.roa
Signing time: Thu 29 Feb 2024 07:05:39 +0000
ROA not before: Thu 29 Feb 2024 07:05:35 +0000
ROA not after: Tue 28 Feb 2034 07:05:35 +0000
asID: 20011
IP address blocks: 168.210.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1219 (0x4c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:05:35 2024 GMT
Not After : Feb 28 07:05:35 2034 GMT
Subject: CN=65e02cc3-d31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a4:8b:0d:d5:5f:c5:a4:38:b9:86:c5:91:cf:
96:97:f3:3f:86:6d:ca:f5:1c:7c:fd:ef:d3:21:a9:
e2:19:ae:16:d6:72:80:d4:c5:be:c1:59:15:66:f2:
11:8d:48:57:e3:a2:80:7a:5d:31:2e:35:89:9e:d8:
4c:ef:c0:0f:21:76:e8:58:46:f7:b5:e5:4a:33:49:
e7:24:16:fa:26:d8:ca:b2:24:42:8c:ac:b7:76:47:
f5:58:01:af:51:9c:69:87:23:07:7d:a3:60:22:29:
a9:40:48:de:47:5e:a1:f8:77:40:1f:53:48:7e:f9:
8e:06:98:b3:75:17:74:f1:e4:94:27:9a:89:de:60:
71:ae:d7:e1:14:f1:ad:ed:ce:8a:cc:ac:d7:a4:4b:
fc:6c:8d:21:2f:a0:62:81:8a:ae:a3:e8:c7:8d:d9:
91:d7:bc:14:5a:d4:57:10:7a:19:66:fb:ca:d2:f5:
1e:54:86:0d:f6:ac:95:d0:70:d5:d8:2a:e9:69:0a:
45:39:69:0e:62:d7:6a:9e:d4:3c:a3:46:31:45:81:
91:29:31:a3:8f:aa:74:f2:08:97:b3:6e:ff:1c:3e:
7e:bc:95:c3:f8:b2:7c:5f:ee:a4:0a:68:9e:8d:da:
71:3e:6f:2a:4d:dd:15:6f:d2:ad:31:8b:2c:91:60:
16:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:9B:25:40:61:70:11:8C:46:3C:F5:45:E9:5A:B3:B0:34:69:35:CB
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/F1721C06D6D011EE90D85995775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.28.0/22
Signature Algorithm: sha256WithRSAEncryption
30:0d:78:27:81:55:b1:72:2d:b8:32:9a:12:41:b6:a1:34:00:
95:ca:12:73:39:4f:a8:94:ea:70:ce:a1:f0:2a:8f:50:50:d7:
fd:8e:0d:42:07:53:60:10:77:95:01:b8:62:53:ea:7e:c0:c2:
1d:0b:a8:d8:64:e6:fb:6b:50:3e:27:28:7d:a0:76:ab:78:a4:
1e:3b:17:4e:f3:44:58:1d:e0:2c:14:2c:16:54:ec:48:85:c7:
59:86:59:2a:5c:96:6d:c2:da:4d:ea:a9:e1:16:fb:4f:f4:bf:
9e:a2:d5:6c:42:ea:28:1b:93:23:49:62:ce:43:de:a6:ae:9f:
e1:73:7e:28:50:14:d3:d0:cb:60:72:3c:13:e0:ef:e8:e6:1c:
34:61:67:95:27:b9:f5:68:ea:39:d4:2a:24:73:b7:37:5c:7b:
ed:94:a9:e4:80:eb:69:90:2b:de:e2:40:33:16:3f:5b:b7:a4:
fd:d5:4a:fc:56:21:91:13:b2:9d:44:a1:c4:ce:4a:72:b6:59:
9c:70:5a:32:2a:05:4c:37:39:c3:61:e4:66:d2:09:6a:80:79:
20:57:c9:b4:36:e6:a0:38:fc:f0:94:6a:f1:fc:d5:cc:b2:9a:
5d:3f:77:75:26:73:8c:f7:eb:ae:1d:3b:09:7f:3c:f1:d0:59:
71:2a:95:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:22 2024 by rpki-client on console-ams.rpki-client.org