Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/B6688076435611EFAB2BE6B1762E951A.roa
File: B6688076435611EFAB2BE6B1762E951A.roa (raw, json)
Hash identifier: 9tse/mxNJXfyu1H3gIXX1krLQVJ31qcACHPTQWNjpxU=
Subject key identifier: 60:6B:1B:A0:36:6F:FF:87:08:01:C5:21:81:64:22:0F:FC:EE:B3:D6
Certificate issuer: /CN=F368F4A1AR/serialNumber=825DB034FAB437A89A8DD24406AB7282C78B62BA
Certificate serial: 07
Authority key identifier: 82:5D:B0:34:FA:B4:37:A8:9A:8D:D2:44:06:AB:72:82:C7:8B:62:BA
Authority info access: rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/B6688076435611EFAB2BE6B1762E951A.roa
Signing time: Tue 16 Jul 2024 09:35:18 +0000
ROA not before: Tue 16 Jul 2024 09:35:13 +0000
ROA not after: Mon 31 Jul 2034 09:35:13 +0000
asID: 49902
IP address blocks: 129.122.64.0/18 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/gl2wNPq0N6iajdJEBqtygseLYro.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/gl2wNPq0N6iajdJEBqtygseLYro.mft
rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 22 Sep 2024 00:16:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F4A1AR/serialNumber=825DB034FAB437A89A8DD24406AB7282C78B62BA
Validity
Not Before: Jul 16 09:35:13 2024 GMT
Not After : Jul 31 09:35:13 2034 GMT
Subject: CN=66963ed6-8ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cd:1f:09:ea:47:b3:b3:bd:e2:e5:2a:e0:18:
02:0d:87:56:92:c9:b9:5d:c4:0d:28:99:9e:f8:08:
5d:f8:38:5f:c8:62:e5:56:03:b6:d3:26:cd:a0:ed:
e2:96:80:f7:17:ed:e5:68:52:d7:ec:6f:03:e7:54:
06:9c:d0:3f:69:c5:b4:a6:04:40:3a:be:71:43:9e:
30:a2:a1:77:84:0e:e5:ee:7e:9e:19:28:b6:84:ae:
05:a2:7f:01:e0:67:c0:15:41:58:8c:56:6f:57:4f:
af:74:18:18:52:2a:ea:67:f8:53:81:31:7b:2d:80:
43:4a:c4:7d:3e:02:75:34:d4:68:49:c1:89:81:4b:
4f:51:45:2e:b0:20:06:3b:73:96:dc:5d:20:73:51:
ff:b3:9d:14:52:be:e4:6f:b9:b3:04:c9:93:11:03:
f7:ff:7a:94:d3:00:1b:0c:c8:a2:c2:a3:31:77:30:
87:44:7a:80:da:55:a6:bd:b6:7a:7c:5b:76:ae:3c:
02:3c:44:f8:e0:45:4f:3b:15:02:fc:d8:c7:88:22:
7b:f5:bd:0d:65:0a:1a:3b:f0:e1:98:77:ba:93:4c:
83:a7:31:67:94:7e:1b:f7:56:65:a5:27:be:e3:d0:
50:ac:cc:33:21:57:3b:c3:40:44:f4:10:45:e8:1c:
c4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:6B:1B:A0:36:6F:FF:87:08:01:C5:21:81:64:22:0F:FC:EE:B3:D6
X509v3 Authority Key Identifier:
keyid:82:5D:B0:34:FA:B4:37:A8:9A:8D:D2:44:06:AB:72:82:C7:8B:62:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/gl2wNPq0N6iajdJEBqtygseLYro.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/B6688076435611EFAB2BE6B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
129.122.64.0/18
Signature Algorithm: sha256WithRSAEncryption
8c:ec:a9:66:9d:bb:8b:aa:bc:de:0e:7c:ae:76:9b:3e:81:02:
35:47:a2:03:d9:e1:0b:05:5d:43:56:d6:59:c5:34:5f:7a:42:
1b:30:a1:a2:af:46:72:8e:33:20:8c:34:b4:89:ef:1c:f3:2c:
54:64:99:ec:00:77:c6:fb:34:f2:46:6f:9a:bf:4d:4e:80:17:
23:a8:8c:dd:5a:ad:ec:a2:1b:8a:dc:64:5f:c6:12:55:9b:87:
61:67:47:41:06:5e:89:19:2b:8f:e4:cf:56:89:9d:b9:ed:be:
ca:3f:44:45:d8:28:cb:70:f7:43:67:51:e4:58:3c:57:d6:fc:
79:a2:4a:ea:dc:fa:75:b7:6f:05:a4:f4:f8:55:29:da:c1:b9:
db:4f:47:67:54:d7:7f:d1:21:63:24:b3:cd:0b:29:ad:fc:3a:
8e:c8:a4:7d:95:e5:73:70:a8:3b:88:50:7b:5d:c6:69:cf:5d:
4e:b4:23:7a:9a:28:59:9e:2a:d1:e9:a2:d2:14:1d:24:ca:e1:
3e:fd:dd:14:d0:b0:ae:33:3a:35:54:a1:a9:54:4d:c5:1a:b0:
95:43:ea:ea:2b:03:a0:88:69:e9:5b:c4:89:62:07:2c:2f:cd:
f5:6f:a3:1a:a9:45:39:de:7a:6d:4b:9e:bb:ba:4d:7d:fe:08:
ad:39:2e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 04:26:03 2024 by rpki-client on console-fra.rpki-client.org