Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367D68C/C3F92A42920611EB95D6E57CF8AEA228/A724E396920811EB990A017FF8AEA228.roa
File: A724E396920811EB990A017FF8AEA228.roa (raw, json)
Hash identifier: 5uvsa9KPQNKjLyH5QubOl7NtYUWNWOe2gq4vsJw6dHc=
Subject key identifier: D9:C6:7B:A6:14:FB:6E:49:00:D2:3A:99:5A:1A:21:68:FE:DC:1D:E0
Certificate issuer: /CN=F367D68CAR/serialNumber=598DA01DE4E9CD5474AD0A6826625BE6B808F0AB
Certificate serial: 0A
Authority key identifier: 59:8D:A0:1D:E4:E9:CD:54:74:AD:0A:68:26:62:5B:E6:B8:08:F0:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/WY2gHeTpzVR0rQpoJmJb5rgI8Ks.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367D68C/C3F92A42920611EB95D6E57CF8AEA228/A724E396920811EB990A017FF8AEA228.roa
Signing time: Wed 31 Mar 2021 10:05:43 +0000
ROA not before: Wed 31 Mar 2021 10:05:38 +0000
ROA not after: Tue 31 Mar 2026 10:05:38 +0000
asID: 327859
IP address blocks: 169.255.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367D68C/C3F92A42920611EB95D6E57CF8AEA228/WY2gHeTpzVR0rQpoJmJb5rgI8Ks.crl
rsync://rpki.afrinic.net/repository/member_repository/F367D68C/C3F92A42920611EB95D6E57CF8AEA228/WY2gHeTpzVR0rQpoJmJb5rgI8Ks.mft
rsync://rpki.afrinic.net/repository/arin/WY2gHeTpzVR0rQpoJmJb5rgI8Ks.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367D68CAR/serialNumber=598DA01DE4E9CD5474AD0A6826625BE6B808F0AB
Validity
Not Before: Mar 31 10:05:38 2021 GMT
Not After : Mar 31 10:05:38 2026 GMT
Subject: CN=60644976-6d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:47:9a:67:e2:4f:a8:c1:28:b8:69:68:32:27:
b0:3c:34:e1:1f:f7:69:4d:1d:3d:99:82:28:97:65:
33:2a:89:0f:2c:20:da:13:c5:33:20:a1:25:e2:4c:
cb:20:58:ad:d0:c3:d1:df:df:53:9b:ee:f3:4a:8d:
21:90:f2:c7:43:45:b0:b3:ab:bd:a8:a8:d6:d8:c1:
34:06:25:d8:57:94:49:6a:54:c9:1f:d5:01:4f:f0:
3a:bb:33:dd:4a:3e:94:5a:47:2d:06:d3:a2:34:d7:
95:09:a1:27:30:1b:90:b9:0e:f6:40:c9:62:99:5a:
31:34:d0:2b:b9:d5:4a:b7:85:e0:64:96:83:ce:ea:
65:49:14:11:ff:fa:48:fa:9f:11:41:c3:ae:92:4a:
8c:20:d3:7e:52:0e:6b:b9:fb:de:6e:95:ba:05:e1:
1b:71:c1:5a:60:03:c1:3d:16:b5:ba:84:6a:fa:80:
d9:e0:82:0b:1b:b2:04:45:e8:23:73:d3:0f:96:47:
1e:a9:fc:8f:6d:9c:ed:a9:d2:dc:7e:d5:2f:29:56:
91:7b:a4:4a:bf:91:f4:06:fb:ef:ec:7f:49:84:37:
2e:25:15:20:f9:f7:f9:fa:b2:ab:4d:b8:49:8c:9b:
bb:2b:48:01:8f:be:aa:90:ed:28:0a:73:2c:fc:27:
cb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C6:7B:A6:14:FB:6E:49:00:D2:3A:99:5A:1A:21:68:FE:DC:1D:E0
X509v3 Authority Key Identifier:
keyid:59:8D:A0:1D:E4:E9:CD:54:74:AD:0A:68:26:62:5B:E6:B8:08:F0:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367D68C/C3F92A42920611EB95D6E57CF8AEA228/WY2gHeTpzVR0rQpoJmJb5rgI8Ks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/WY2gHeTpzVR0rQpoJmJb5rgI8Ks.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367D68C/C3F92A42920611EB95D6E57CF8AEA228/A724E396920811EB990A017FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.112.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:5e:14:a7:50:19:47:d9:a3:1c:4e:32:78:70:eb:7e:3b:8f:
7d:ae:db:17:e5:27:f5:de:4a:66:19:8a:6f:5f:62:53:71:f6:
60:30:aa:3b:63:1c:70:3b:60:1d:56:08:cf:d1:59:71:a7:bf:
aa:ce:bb:2f:6e:93:dc:ee:ea:bb:9c:67:63:a0:69:51:9d:fd:
82:72:a2:26:9c:9d:2f:8a:3f:48:b2:1a:aa:45:c2:7a:18:38:
a4:6e:18:28:25:aa:3f:bd:54:45:8e:15:80:3b:7b:16:6a:c9:
6d:06:00:c0:e9:18:ec:01:de:0a:5b:f2:5a:a0:f5:5a:eb:4e:
32:af:f1:3f:de:4b:cf:d8:f1:7f:39:1f:3d:9a:67:60:d6:9d:
cb:bf:f2:59:62:22:8f:b7:f1:7b:78:b9:ef:a4:ec:0e:23:88:
ae:66:c0:ad:78:f9:99:bf:82:c2:69:27:eb:79:7d:e7:b8:df:
32:b0:5d:75:cb:99:a8:fa:f8:ae:5a:f7:99:c6:7c:4d:ef:b5:
51:9c:59:42:62:e7:1b:ff:8f:25:73:89:7d:5c:d0:83:f0:e1:
52:30:71:51:a6:d2:53:d4:89:22:c4:ad:13:04:bd:a4:98:0c:
ec:12:ba:b1:99:e9:12:10:d3:e7:93:ba:6b:f4:9c:17:2d:12:
ec:3d:62:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:45 2024 by rpki-client on console-ams.rpki-client.org