Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/EB7417DEB90611EDB12879A2F1222468.roa
File: EB7417DEB90611EDB12879A2F1222468.roa (raw, json)
Hash identifier: LX5dEoKskjg1UzAxu1yMfDnMjaz10pgGYsI2RAGqcbc=
Subject key identifier: D7:B7:1A:0D:12:AF:4A:07:42:51:7A:37:73:FF:5A:4D:42:44:15:22
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 0B
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/EB7417DEB90611EDB12879A2F1222468.roa
Signing time: Thu 02 Mar 2023 14:31:29 +0000
ROA not before: Thu 02 Mar 2023 14:31:25 +0000
ROA not after: Fri 01 Mar 2030 14:31:25 +0000
asID: 33763
IP address blocks: 160.242.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 14:31:25 2023 GMT
Not After : Mar 1 14:31:25 2030 GMT
Subject: CN=6400b341-48e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ca:2e:b2:3f:0c:6c:30:ec:8b:8d:be:06:f5:
40:89:d9:70:64:67:87:0c:aa:40:b0:52:0d:a2:b8:
86:b5:77:e1:08:6e:0e:36:c0:b7:dd:63:fa:bc:d9:
28:51:56:f8:49:45:b6:f9:d9:18:c6:67:05:7c:ad:
c6:e8:6c:80:75:2f:c1:11:66:40:f9:2f:df:f0:b4:
2b:c3:04:be:69:06:72:22:5f:a4:0c:29:90:bf:d9:
0c:dc:61:db:95:c8:5b:89:d4:68:3e:18:8f:53:41:
23:26:2c:b2:89:7d:ad:cd:c7:ac:a5:4a:02:b6:05:
6c:fa:0e:2b:5a:9e:4f:f0:e2:48:bd:cd:80:20:3c:
7d:9a:f6:e7:22:0f:7c:e2:47:60:a8:fb:41:54:07:
85:1d:14:11:a0:a5:c3:cd:9a:e1:d0:bf:89:7f:f0:
04:0b:a4:67:0e:db:09:f3:d1:31:ef:51:3b:10:8a:
54:94:79:e6:4b:00:d2:2c:45:b0:ee:bd:9d:23:7d:
41:d3:71:8b:1b:4d:1d:7f:61:46:19:bd:4d:f8:9d:
ff:a5:c4:69:9d:5c:e7:03:35:19:5a:09:c1:f2:47:
1b:72:de:6a:b6:22:b0:24:67:56:5e:c6:44:68:76:
2a:5b:91:30:48:a1:4d:e0:a9:c8:e3:43:e7:f8:4b:
22:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B7:1A:0D:12:AF:4A:07:42:51:7A:37:73:FF:5A:4D:42:44:15:22
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/EB7417DEB90611EDB12879A2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.24.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:c7:b4:a0:e0:26:2a:48:fd:07:85:89:d4:7b:13:87:a9:41:
29:6a:ac:cd:1e:73:24:46:6b:d2:66:fd:d1:a3:32:13:e0:ac:
5c:32:a9:16:ab:34:9d:22:12:01:be:77:18:95:f5:a8:e1:36:
82:f5:55:8d:58:e7:94:9c:81:47:44:6c:20:ed:c1:1a:6e:65:
c3:b5:dc:e1:e8:31:13:97:4b:a1:30:64:12:69:4d:69:64:0d:
a6:3c:33:f1:e8:82:df:74:8b:c1:2e:98:f8:d9:f3:26:d8:84:
53:e2:e2:ec:53:42:f2:af:0b:df:56:04:0c:7a:21:44:45:6d:
8a:df:e0:63:cb:72:65:d3:ea:e8:ca:2b:d5:71:49:b0:08:45:
50:38:6b:07:a7:e4:9f:0e:8c:2b:6f:1c:a8:d0:e1:df:a8:2b:
ad:8e:89:bf:99:94:19:3f:5b:d0:27:ce:f3:93:d1:f8:1d:8c:
35:b3:04:b1:8f:e1:95:f9:6d:be:1a:2d:5d:13:17:8c:5f:4e:
93:39:a9:53:28:24:44:d1:42:c2:36:e3:f4:a9:62:4b:ad:24:
ab:1b:02:2a:6b:18:22:79:83:00:f7:6e:5a:3f:18:3d:96:87:
c0:69:32:a4:e9:09:b6:1e:d1:12:7e:5d:3d:d0:5d:b2:de:f1:
dc:f7:c5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:38:35 2024 by rpki-client on console-fra.rpki-client.org