Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/62851EB0B90A11EDB17EB2ACF1222468.roa
File: 62851EB0B90A11EDB17EB2ACF1222468.roa (raw, json)
Hash identifier: KD/gAMizoiFtTVnStO9eX0QYZblw85vUZmHKsND2pTk=
Subject key identifier: 49:6F:97:48:EE:87:E2:5F:A2:11:22:61:05:09:4F:D5:77:64:97:75
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 29
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/62851EB0B90A11EDB17EB2ACF1222468.roa
Signing time: Thu 02 Mar 2023 14:56:17 +0000
ROA not before: Thu 02 Mar 2023 14:56:13 +0000
ROA not after: Mon 02 Mar 2026 14:56:13 +0000
asID: 33763
IP address blocks: 160.242.116.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41 (0x29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 14:56:13 2023 GMT
Not After : Mar 2 14:56:13 2026 GMT
Subject: CN=6400b911-f66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b6:6f:6f:b2:c1:58:1a:e2:bf:62:ce:18:b5:
95:02:07:7f:de:89:c6:e3:b5:e5:49:c3:13:10:44:
fe:60:b7:76:f4:bc:a2:76:f0:70:b9:26:80:a7:47:
ca:0c:c0:cb:e4:29:33:d0:98:8a:b6:bb:b7:e0:5a:
54:d6:66:77:6e:44:e5:e7:76:f5:ee:ef:3c:26:7c:
88:c4:be:cd:98:8b:85:95:89:5d:50:dc:11:ce:52:
03:c7:a3:cb:8f:7f:a2:89:16:a5:9f:21:6b:d3:ec:
10:14:4a:04:7f:98:53:53:e0:69:81:c9:06:e5:3a:
40:68:be:17:bb:86:b2:39:c4:8d:77:bf:7b:be:3a:
52:fb:88:6e:c8:b0:99:0d:a8:68:9e:ba:8d:e0:39:
d6:1d:d9:4e:c5:4d:ff:44:f6:8b:d0:49:ae:cd:af:
81:85:39:70:dc:7c:7f:d4:e2:bd:d5:10:fb:37:69:
b9:40:50:8d:59:66:84:46:a3:ac:b8:74:f7:02:17:
c9:a7:d1:f9:6b:9f:8e:13:3c:30:7c:29:17:ab:d9:
55:f5:d1:0e:c6:70:4e:46:14:46:c4:6b:9c:66:ca:
c8:a0:2a:02:84:27:fe:c6:a9:09:8c:a5:70:5a:3a:
fa:88:ae:e0:24:68:20:58:6f:e5:61:e3:3d:97:5f:
fc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6F:97:48:EE:87:E2:5F:A2:11:22:61:05:09:4F:D5:77:64:97:75
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/62851EB0B90A11EDB17EB2ACF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.116.0/22
Signature Algorithm: sha256WithRSAEncryption
64:8b:fa:7d:7c:ca:b6:1f:50:3c:72:e9:09:78:6b:ac:cc:cd:
c1:ec:c4:f8:04:01:0b:18:86:e5:8f:76:e0:41:09:f1:eb:a9:
47:fb:eb:77:39:8f:31:08:55:ff:de:d4:30:58:38:bf:cf:53:
45:34:04:d4:92:a8:af:89:00:25:17:db:f4:ea:14:3a:18:3b:
98:8e:5d:f9:07:ae:37:80:41:1e:fe:e6:64:00:99:94:9d:25:
8d:2c:3e:b8:a0:33:a8:46:34:e0:4e:b2:87:89:3f:ed:b6:cc:
84:1c:f3:32:d2:12:c7:da:1b:1e:ea:0b:40:de:12:d7:19:51:
d3:26:99:28:0f:a4:08:75:26:7a:38:fc:53:bf:97:56:51:38:
b1:35:dc:53:f2:0a:b3:ee:bf:3c:17:9c:48:2a:ca:58:13:78:
99:70:4e:b5:71:04:42:c5:97:33:60:0d:c3:73:91:df:03:70:
44:f6:48:27:2e:2e:b1:be:c3:6b:0a:f7:44:df:24:66:d3:a7:
ca:32:16:44:d7:7b:f6:24:21:66:c6:db:55:6c:00:3e:64:32:
eb:0e:6e:a3:02:76:4d:3a:42:d6:23:93:26:7f:a3:43:a5:ec:
33:b8:05:74:d0:8b:fd:b3:4e:41:56:24:46:71:dc:7b:62:c3:
ef:e2:4c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org