Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3680C14/7707FAD65AE011E69FAE5E32F8AEA228/B72B3B7459DA11EC8F6187BD5A40D577.roa
File: B72B3B7459DA11EC8F6187BD5A40D577.roa (raw, json)
Hash identifier: lX5w/V9IxiCR5OIdQ46QZvuvbFy5St8N0ELixEctQHI=
Subject key identifier: 3C:C5:F1:23:DB:05:66:10:1A:8C:9D:0E:15:79:65:D5:2D:11:FE:36
Certificate issuer: /CN=F3680C14AR/serialNumber=2657C0DAA444CCB9BEF8C2A8586A0E749CEA9B52
Certificate serial: 07C7
Authority key identifier: 26:57:C0:DA:A4:44:CC:B9:BE:F8:C2:A8:58:6A:0E:74:9C:EA:9B:52
Authority info access: rsync://rpki.afrinic.net/repository/arin/JlfA2qREzLm--MKoWGoOdJzqm1I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3680C14/7707FAD65AE011E69FAE5E32F8AEA228/B72B3B7459DA11EC8F6187BD5A40D577.roa
Signing time: Fri 10 Dec 2021 17:00:45 +0000
ROA not before: Fri 10 Dec 2021 17:00:34 +0000
ROA not after: Fri 31 Dec 2032 17:00:34 +0000
asID: 327966
IP address blocks: 169.239.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3680C14/7707FAD65AE011E69FAE5E32F8AEA228/JlfA2qREzLm--MKoWGoOdJzqm1I.crl
rsync://rpki.afrinic.net/repository/member_repository/F3680C14/7707FAD65AE011E69FAE5E32F8AEA228/JlfA2qREzLm--MKoWGoOdJzqm1I.mft
rsync://rpki.afrinic.net/repository/arin/JlfA2qREzLm--MKoWGoOdJzqm1I.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1991 (0x7c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3680C14AR/serialNumber=2657C0DAA444CCB9BEF8C2A8586A0E749CEA9B52
Validity
Not Before: Dec 10 17:00:34 2021 GMT
Not After : Dec 31 17:00:34 2032 GMT
Subject: CN=61b387bd-a4d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4e:77:e7:4e:d0:bb:e1:41:2f:48:1d:17:68:
c5:ca:fb:11:ee:3a:02:25:22:db:5a:9e:09:c5:27:
ff:a8:8b:07:75:51:fa:81:9e:4f:d7:15:cc:6c:57:
aa:4e:7a:35:5c:89:14:61:e5:70:10:b9:d1:03:e0:
53:bb:56:67:f3:61:ae:48:a9:c5:8e:72:95:42:be:
70:70:46:f2:c2:a3:4f:c1:5d:9c:7c:0d:ea:8e:38:
27:6e:d8:13:92:8a:e1:1a:f5:82:4e:be:57:ea:5c:
d2:41:7e:b6:59:a8:f1:97:3c:7c:d0:96:d4:44:2d:
41:d3:5a:d3:dc:7e:73:e1:81:21:b6:34:27:62:4c:
47:6f:a6:79:23:28:22:ec:e2:52:eb:3d:4b:6f:8d:
ba:f8:8f:e4:be:f6:14:80:80:aa:ad:21:c9:fe:a9:
8a:f3:7f:c2:b6:27:31:2c:37:92:a5:94:a3:9c:ea:
2c:d1:91:7a:c2:c2:a4:6b:ee:ac:cc:81:46:2c:25:
a0:4c:2b:5a:e2:0e:4b:77:75:a5:d1:1e:07:d1:36:
e8:d1:c7:21:f4:ee:ba:73:61:52:08:1f:54:86:2f:
11:22:9f:65:75:c7:4b:51:d7:ea:59:71:8f:85:99:
0b:d2:b9:51:1b:a8:05:6d:4d:59:a5:bb:13:75:6f:
69:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C5:F1:23:DB:05:66:10:1A:8C:9D:0E:15:79:65:D5:2D:11:FE:36
X509v3 Authority Key Identifier:
keyid:26:57:C0:DA:A4:44:CC:B9:BE:F8:C2:A8:58:6A:0E:74:9C:EA:9B:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3680C14/7707FAD65AE011E69FAE5E32F8AEA228/JlfA2qREzLm--MKoWGoOdJzqm1I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/JlfA2qREzLm--MKoWGoOdJzqm1I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3680C14/7707FAD65AE011E69FAE5E32F8AEA228/B72B3B7459DA11EC8F6187BD5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.164.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:16:09:eb:26:46:d3:b2:2d:e2:74:82:f8:d4:05:a4:07:ec:
37:0d:72:30:00:a8:ad:e1:c5:1e:73:c9:ab:2c:43:75:bd:8c:
3b:92:71:2e:54:55:96:71:70:a0:a4:cd:98:78:8e:03:4a:de:
b1:28:ca:d5:a9:2e:6c:98:5b:de:5a:7a:6b:ed:b6:6f:bc:2c:
93:49:f0:6e:aa:3a:f7:40:1e:9c:aa:72:f4:d8:0c:83:35:e7:
5d:be:09:fa:44:57:37:ec:44:2f:59:a9:3a:a2:22:03:bc:36:
3d:ff:91:5b:bf:1d:f3:e2:22:21:85:a4:59:72:49:ba:a8:86:
8e:bf:07:19:57:39:7a:6b:4b:ce:55:c7:1d:6f:94:fb:9f:ea:
a7:85:67:45:25:24:f1:31:d4:34:f4:8a:8d:07:1b:f7:d8:16:
98:ef:0f:cb:c7:90:d8:44:82:18:b8:fd:83:0d:39:e2:55:9d:
91:fd:f9:a7:cd:ba:e9:c8:17:63:69:c2:c5:21:f4:da:be:18:
40:f6:91:aa:8c:ac:6a:38:8b:ae:ba:b9:c1:5b:93:06:c2:22:
03:e7:88:81:ae:ab:95:4f:ec:e9:45:1c:4c:3d:28:ba:69:1a:
8e:04:04:fd:39:03:0e:04:a1:ab:fc:d0:f2:eb:1b:e5:b8:ec:
1b:67:cd:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:22 2024 by rpki-client on console-ams.rpki-client.org