Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/EC0AAE60435711EFB8E0D6BA762E951A.roa
File: EC0AAE60435711EFB8E0D6BA762E951A.roa (raw, json)
Hash identifier: CywE6U5JIpUptFBIfv36q/lnpSHgsnnC42/YpAaW+DI=
Subject key identifier: 13:34:B2:5E:30:3D:58:B9:2A:4F:69:6A:BE:3E:18:CD:E9:61:D1:54
Certificate issuer: /CN=F368F4A1AR/serialNumber=825DB034FAB437A89A8DD24406AB7282C78B62BA
Certificate serial: 10
Authority key identifier: 82:5D:B0:34:FA:B4:37:A8:9A:8D:D2:44:06:AB:72:82:C7:8B:62:BA
Authority info access: rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/EC0AAE60435711EFB8E0D6BA762E951A.roa
Signing time: Tue 16 Jul 2024 09:43:57 +0000
ROA not before: Tue 16 Jul 2024 09:43:54 +0000
ROA not after: Mon 31 Jul 2034 09:43:54 +0000
asID: 198949
IP address blocks: 129.122.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/gl2wNPq0N6iajdJEBqtygseLYro.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/gl2wNPq0N6iajdJEBqtygseLYro.mft
rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Sep 2024 00:16:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F4A1AR/serialNumber=825DB034FAB437A89A8DD24406AB7282C78B62BA
Validity
Not Before: Jul 16 09:43:54 2024 GMT
Not After : Jul 31 09:43:54 2034 GMT
Subject: CN=669640dd-fa20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:01:6c:81:a0:95:9a:18:2b:e4:55:32:f3:
ea:df:f6:5a:f3:b0:ae:ea:0c:51:75:61:5a:6d:e4:
92:b8:0d:d0:fa:19:35:56:95:50:5a:58:7c:48:2d:
63:e7:68:bd:79:ce:b7:c3:7a:54:ec:b6:ec:2c:85:
0f:0c:d9:7e:58:bc:13:d4:cc:11:f7:08:a1:9f:5a:
99:6d:4c:fb:8e:83:25:7f:dd:f7:05:28:bf:5e:9d:
9b:c6:a0:2e:7f:5f:43:95:7c:06:ad:26:95:5d:bb:
8c:32:a5:79:3f:7c:a9:5e:8f:aa:86:76:cf:fb:34:
56:d8:fc:58:65:8d:36:8c:fd:59:b4:08:31:1b:1d:
40:94:83:74:3f:b3:a3:ca:8c:49:a2:f0:85:6e:db:
bb:ed:5f:fb:42:03:bc:fc:de:0c:40:14:3e:ae:f0:
81:7f:00:b6:aa:ec:04:f1:e8:e1:be:96:ae:5f:53:
9b:5b:36:12:2c:5b:81:f7:c6:9d:da:11:d4:5e:97:
53:53:17:e2:94:0f:07:77:3c:9e:0b:3c:b5:e3:fd:
db:3b:69:1a:25:0d:28:3c:f6:aa:3f:1e:19:b0:8b:
23:68:7a:eb:65:b5:86:68:d6:20:52:9a:c7:e7:4c:
ee:86:8f:db:d0:95:4e:db:f0:de:dd:0b:44:5c:c5:
95:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:34:B2:5E:30:3D:58:B9:2A:4F:69:6A:BE:3E:18:CD:E9:61:D1:54
X509v3 Authority Key Identifier:
keyid:82:5D:B0:34:FA:B4:37:A8:9A:8D:D2:44:06:AB:72:82:C7:8B:62:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/gl2wNPq0N6iajdJEBqtygseLYro.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/EC0AAE60435711EFB8E0D6BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
129.122.64.0/18
Signature Algorithm: sha256WithRSAEncryption
31:e4:00:5f:60:d7:22:df:fb:2d:71:d3:65:e0:f6:bf:c4:2e:
38:72:12:ae:e4:6a:9e:55:75:d4:54:e0:2f:e5:20:6d:b6:36:
54:8d:53:fb:3a:65:84:04:22:58:16:72:49:fb:9f:29:3c:d7:
fc:1c:c0:4a:15:81:d6:5c:b4:d3:0d:72:2d:54:8d:45:85:dc:
fa:e1:aa:41:e1:25:fd:ec:aa:01:8b:20:09:e4:60:28:91:c0:
44:95:74:f8:ed:a3:c2:eb:29:8f:23:3b:df:ad:41:db:1b:25:
03:7d:f6:24:e5:fe:93:c2:17:2a:26:ad:0e:80:d4:75:dd:4a:
f1:62:5c:0c:65:99:63:c2:3b:c2:00:f5:27:85:dc:91:f4:5e:
26:8f:d4:cd:68:05:99:e2:8d:7f:31:b8:22:13:50:fe:fc:b8:
fb:ef:f9:9b:3a:5b:fa:ea:8c:8e:c2:b3:34:30:34:11:c6:ba:
92:9a:d4:6b:3b:28:c4:42:4b:80:65:64:c0:ef:20:9b:c5:02:
ab:95:2b:9f:7d:ac:9f:c3:a7:00:ca:16:6a:59:25:76:d3:26:
98:ac:1d:a8:c2:e4:3e:39:fa:bb:af:87:38:ad:01:11:78:8d:
11:2f:db:77:b2:a9:95:a0:7b:1a:4c:51:3b:b4:72:fb:6e:ef:
0a:d8:9e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 04:19:56 2024 by rpki-client on console-ams.rpki-client.org