Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/E003396AC31611EDB96E7A92F1222468.roa
File: E003396AC31611EDB96E7A92F1222468.roa (raw, json)
Hash identifier: ciPrkOvWkb92NsuX/kyyg0kAtFWJDiK6NuIcmVMrgcc=
Subject key identifier: 25:EE:02:94:61:E5:42:E3:57:E9:6A:6A:D2:03:90:CA:E2:88:BB:17
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 43
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/E003396AC31611EDB96E7A92F1222468.roa
Signing time: Wed 15 Mar 2023 09:50:54 +0000
ROA not before: Wed 15 Mar 2023 09:50:47 +0000
ROA not after: Sun 15 Mar 2026 09:50:47 +0000
asID: 33763
IP address blocks: 160.242.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67 (0x43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 15 09:50:47 2023 GMT
Not After : Mar 15 09:50:47 2026 GMT
Subject: CN=641194fe-9bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:b7:42:c8:55:55:79:d1:2d:34:1d:8b:e3:09:
a9:58:2f:f6:0e:33:fa:a5:e5:a8:31:44:6c:48:dd:
c2:9a:96:ea:61:c5:76:24:cc:41:cf:65:7d:46:1e:
7d:bb:8a:e4:95:ba:07:92:b5:fd:74:9b:ab:32:b1:
f0:92:51:e5:a0:64:8f:22:f5:42:24:1b:e3:cd:63:
cb:63:78:c3:62:31:96:7a:2d:02:4f:a8:f5:9b:9a:
06:4d:61:d7:ca:03:32:b2:c1:32:c0:ea:91:e4:23:
ec:54:c6:58:0b:df:46:35:8b:74:ee:6f:39:a6:6f:
ae:70:72:0f:bf:61:4b:06:1c:58:93:33:1c:b5:cd:
ea:b6:f3:4a:fd:4c:6c:d8:30:fb:1e:85:dc:63:77:
94:be:e4:79:9d:ea:7e:2b:90:e5:35:c1:00:48:4b:
63:35:e9:05:5a:fc:6f:a9:9f:8a:76:a9:3f:d1:06:
3c:e4:2a:c3:3c:66:10:60:a8:5c:02:f3:89:a4:69:
c1:ae:2f:bc:b5:c4:b3:22:04:82:22:de:fe:31:96:
11:2f:bf:48:3c:49:8c:f5:79:a0:5b:b0:45:bb:17:
30:c6:b1:68:8f:f3:de:e2:c8:52:8a:41:fe:31:81:
07:95:10:77:3b:3d:0a:f6:28:8f:79:e3:96:29:45:
81:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:EE:02:94:61:E5:42:E3:57:E9:6A:6A:D2:03:90:CA:E2:88:BB:17
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/E003396AC31611EDB96E7A92F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.41.0/24
Signature Algorithm: sha256WithRSAEncryption
50:57:70:56:7f:03:cf:6d:9f:6e:7a:45:b6:67:82:da:2d:c7:
47:ba:2e:8c:1b:ae:af:bb:64:d0:4b:88:db:ff:f3:fd:ba:5d:
57:62:69:dc:30:cd:e9:f2:79:7c:04:19:2a:ae:8a:08:bc:a7:
7f:4b:c4:f5:94:7f:44:b5:e7:1f:d4:41:6e:5c:35:25:5b:7f:
56:61:00:d9:3c:11:22:00:b7:d0:81:c9:4a:ff:65:35:f4:3c:
02:a1:03:ae:d3:63:42:12:37:26:89:e6:86:6e:53:ef:6a:86:
30:72:db:de:11:e2:4b:70:99:0a:78:a3:b7:c9:39:2b:ce:8e:
e6:bf:bb:9d:4b:24:13:ff:d7:53:cf:53:72:42:81:e2:27:a8:
6c:07:c5:c6:3f:35:eb:e9:1c:15:1f:ac:93:e9:27:b6:14:80:
46:46:25:26:7d:6d:8d:e2:8e:14:69:bc:1b:4c:58:ae:87:d4:
32:a9:14:fa:3a:bd:78:2f:b2:22:ea:02:22:40:74:34:f5:27:
89:f2:d0:30:bc:c5:0c:f2:9d:1b:71:3b:55:96:f8:f2:a0:56:
b2:37:1b:ea:4b:00:bb:4e:09:2e:62:c4:68:9a:8e:30:24:e8:
43:a4:09:ce:b9:e2:82:66:3c:bd:89:9c:fd:c6:25:27:c3:36:
e1:60:d2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:46 2024 by rpki-client on console-ams.rpki-client.org