Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DA9B/9F9BF08C964911ED8A168AF4F1222468/4CEBE78CABC211ED80A4B483F1222468.roa
File: 4CEBE78CABC211ED80A4B483F1222468.roa (raw, json)
Hash identifier: RMWNA7CymMg9CNpy2XouqWvp370orj1H39/pzyyz1/Q=
Subject key identifier: CC:CD:16:4B:2E:0E:FD:DE:0A:98:8E:F8:F3:5C:82:C7:46:7B:41:BD
Certificate issuer: /CN=F367DA9BAR/serialNumber=55C48021922338318251CBDAD2E8208C1B224321
Certificate serial: 22
Authority key identifier: 55:C4:80:21:92:23:38:31:82:51:CB:DA:D2:E8:20:8C:1B:22:43:21
Authority info access: rsync://rpki.afrinic.net/repository/arin/VcSAIZIjODGCUcva0uggjBsiQyE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/9F9BF08C964911ED8A168AF4F1222468/4CEBE78CABC211ED80A4B483F1222468.roa
Signing time: Mon 13 Feb 2023 17:17:32 +0000
ROA not before: Mon 13 Feb 2023 17:17:17 +0000
ROA not after: Sun 13 Feb 2033 17:17:17 +0000
asID: 37532
IP address blocks: 155.0.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/9F9BF08C964911ED8A168AF4F1222468/VcSAIZIjODGCUcva0uggjBsiQyE.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/9F9BF08C964911ED8A168AF4F1222468/VcSAIZIjODGCUcva0uggjBsiQyE.mft
rsync://rpki.afrinic.net/repository/arin/VcSAIZIjODGCUcva0uggjBsiQyE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DA9BAR/serialNumber=55C48021922338318251CBDAD2E8208C1B224321
Validity
Not Before: Feb 13 17:17:17 2023 GMT
Not After : Feb 13 17:17:17 2033 GMT
Subject: CN=63ea70ac-9bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:d7:b7:4d:d3:17:fa:c8:c6:5f:e8:f9:d0:
a8:87:96:52:66:42:b8:91:85:4a:5b:33:49:44:71:
24:14:8a:c8:c7:d5:2f:cc:b4:85:7a:66:bf:ca:2d:
0d:47:b6:31:95:dd:51:37:12:55:fb:37:4a:67:ad:
54:1c:a8:f7:10:a9:ae:5f:0e:1c:73:a5:99:14:f5:
30:5b:b3:e6:d1:28:ec:af:a8:9c:8c:50:84:2a:6e:
50:73:2b:99:67:80:a8:ea:c4:5e:90:0b:45:c0:05:
fa:55:58:09:1c:f3:e6:78:cf:7c:22:00:28:47:8a:
54:97:93:0a:2f:84:d5:a6:4d:5c:50:fc:1e:f6:11:
c7:09:2b:a1:12:59:b0:33:18:9c:a3:73:26:b6:6b:
ad:89:86:31:de:86:2d:8c:ee:99:aa:98:1a:1c:2a:
6f:93:9d:3c:f2:55:b8:0e:03:2a:f3:73:91:2e:45:
c9:b9:1f:78:f1:1d:12:ae:73:03:47:94:0a:8a:c8:
71:b0:b4:2a:92:12:49:d2:84:ae:af:d8:8f:91:fb:
a5:39:93:8f:9a:22:96:3d:44:00:04:8f:9d:60:b0:
6e:2c:a9:97:74:58:e8:70:9d:8f:ee:a5:10:88:41:
ce:8a:39:6d:ed:4f:a4:6d:9a:10:f5:fc:ee:7a:f6:
29:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:CD:16:4B:2E:0E:FD:DE:0A:98:8E:F8:F3:5C:82:C7:46:7B:41:BD
X509v3 Authority Key Identifier:
keyid:55:C4:80:21:92:23:38:31:82:51:CB:DA:D2:E8:20:8C:1B:22:43:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/9F9BF08C964911ED8A168AF4F1222468/VcSAIZIjODGCUcva0uggjBsiQyE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/VcSAIZIjODGCUcva0uggjBsiQyE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/9F9BF08C964911ED8A168AF4F1222468/4CEBE78CABC211ED80A4B483F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.0.0.0/16
Signature Algorithm: sha256WithRSAEncryption
30:76:c4:e8:fe:39:0a:cf:dc:86:31:11:5c:f0:63:6f:bd:6d:
f7:0f:1d:a5:d3:da:77:2d:10:75:6a:e6:52:b5:f5:f1:5c:8d:
e2:0b:07:dc:85:94:01:17:82:f7:9d:1c:26:de:f9:aa:3d:38:
6a:7f:8f:c2:4a:37:14:ce:a8:73:78:26:f6:c2:e5:2b:f3:4b:
b3:c2:60:f6:cc:28:b4:66:fc:19:aa:8f:02:cf:0d:2c:7c:37:
58:0c:aa:cc:0f:4d:a2:f8:58:a9:ea:7b:56:a1:45:a5:91:0d:
70:2b:e0:e6:77:bc:39:24:70:4c:01:d2:c0:46:be:6d:9a:1d:
0d:c0:89:15:a6:56:d1:10:37:06:6a:2c:4b:63:fa:e0:8e:50:
08:e5:a9:33:6b:f9:d7:60:2c:c6:5a:b4:51:e4:30:fe:ad:89:
e5:c8:64:82:22:b4:fa:26:96:ac:be:75:91:54:70:11:69:12:
4a:3f:6b:21:7f:f5:73:7b:a0:03:46:1f:c7:cc:53:d3:6a:a0:
22:02:e7:b8:a6:54:aa:7b:fa:4c:b0:1d:76:5e:f6:98:4d:9f:
23:ca:52:4f:7c:56:c6:a7:b2:8c:43:a1:ce:22:ad:9b:53:ab:
b2:79:02:98:fe:0c:e7:e5:3d:6b:84:1e:e7:6d:a9:80:ce:f5:
71:d3:52:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:45 2024 by rpki-client on console-ams.rpki-client.org