Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/637017A4270D11EF83B8A0DA7CDC24C2.roa
File: 637017A4270D11EF83B8A0DA7CDC24C2.roa (raw, json)
Hash identifier: KcWpAlTox8uHxgsa4XXL2SuGUP0/4ifMRuSUqNE8VdQ=
Subject key identifier: 2A:48:5B:CD:2C:FF:C7:D1:55:A1:6C:2B:DA:E3:0C:37:B1:99:C7:D0
Certificate issuer: /CN=F3698125AR/serialNumber=CEDF6EC23B3A0E9FC8C99B14734ADAE7A1D8994A
Certificate serial: DD
Authority key identifier: CE:DF:6E:C2:3B:3A:0E:9F:C8:C9:9B:14:73:4A:DA:E7:A1:D8:99:4A
Authority info access: rsync://rpki.afrinic.net/repository/arin/zt9uwjs6Dp_IyZsUc0ra56HYmUo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/637017A4270D11EF83B8A0DA7CDC24C2.roa
Signing time: Mon 10 Jun 2024 09:39:53 +0000
ROA not before: Mon 10 Jun 2024 09:39:49 +0000
ROA not after: Sun 10 Jun 2029 09:39:49 +0000
asID: 24757
IP address blocks: 164.160.184.0/22 maxlen: 29
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/zt9uwjs6Dp_IyZsUc0ra56HYmUo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/zt9uwjs6Dp_IyZsUc0ra56HYmUo.mft
rsync://rpki.afrinic.net/repository/arin/zt9uwjs6Dp_IyZsUc0ra56HYmUo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221 (0xdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3698125AR/serialNumber=CEDF6EC23B3A0E9FC8C99B14734ADAE7A1D8994A
Validity
Not Before: Jun 10 09:39:49 2024 GMT
Not After : Jun 10 09:39:49 2029 GMT
Subject: CN=6666c9e9-4992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:31:86:12:3f:fe:5f:a7:6d:44:b0:4c:44:
60:37:0c:a0:0e:00:0f:a3:8b:31:37:23:3b:97:22:
b8:0a:fd:98:ad:c9:76:d1:d5:c9:da:f7:b8:e7:20:
7c:23:7e:7b:ce:58:20:25:0b:41:b1:11:6a:8f:48:
7d:50:a4:6e:8d:57:b0:34:e5:93:d4:c5:04:b8:64:
04:ff:87:25:ca:a9:9d:66:84:66:68:c6:13:95:85:
67:f3:66:66:0c:fd:0a:52:b1:37:11:83:54:f8:f4:
d9:c5:4c:5e:da:bd:52:1a:9b:fe:64:5d:77:b2:bb:
e9:09:63:e1:06:ee:cd:de:d9:2c:68:6d:7c:bf:30:
b7:3c:5f:e6:83:b1:a9:c3:3e:ad:0f:70:f6:19:61:
79:7d:c0:07:c0:b6:06:c2:39:00:d9:db:0a:7f:b6:
19:70:5d:de:8a:09:44:09:06:20:aa:32:18:69:a3:
a3:85:ef:89:87:7e:ff:27:d4:68:5d:95:2d:f1:6b:
07:92:1f:9c:57:35:a8:28:13:cb:06:8b:a0:64:29:
c4:87:f8:37:a7:9b:99:b2:fb:66:7e:f0:f2:03:a4:
08:57:9c:b9:00:6d:04:dc:1d:59:b7:c4:f5:c7:a2:
75:1f:c3:f5:84:4e:52:de:70:4a:5d:69:4c:f9:d6:
97:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:48:5B:CD:2C:FF:C7:D1:55:A1:6C:2B:DA:E3:0C:37:B1:99:C7:D0
X509v3 Authority Key Identifier:
keyid:CE:DF:6E:C2:3B:3A:0E:9F:C8:C9:9B:14:73:4A:DA:E7:A1:D8:99:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/zt9uwjs6Dp_IyZsUc0ra56HYmUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/zt9uwjs6Dp_IyZsUc0ra56HYmUo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/637017A4270D11EF83B8A0DA7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.160.184.0/22
Signature Algorithm: sha256WithRSAEncryption
25:38:4b:1b:b6:2a:46:07:06:10:ed:8b:a7:b3:7c:df:5d:17:
af:b5:67:a2:6d:7b:59:32:04:b4:4e:65:66:b2:d5:73:b4:00:
72:61:13:b8:59:79:1c:cb:97:5e:07:58:42:e1:1e:f4:cf:8c:
18:41:b9:21:00:a1:0f:7f:3a:a7:d0:aa:6e:1b:0a:89:fe:2c:
ab:33:62:ce:99:d9:ef:fe:39:32:96:a5:50:5c:1d:6b:34:36:
c9:d7:04:0f:25:50:24:fc:7f:02:7b:03:71:6a:93:8e:e0:b4:
07:cc:5b:58:79:f4:b6:44:96:d0:54:85:d8:0b:a9:e8:b0:98:
87:ff:d8:9c:3c:f1:54:13:12:fd:f7:58:dc:c2:37:2f:dc:dc:
f8:91:d4:6e:7e:d8:3f:50:20:c4:b7:44:bc:d0:05:57:1c:36:
bf:16:ad:f7:de:fa:cc:a4:77:bb:bb:af:5d:95:ed:ed:a5:4e:
66:68:2c:38:3e:14:0a:df:42:1e:cf:27:22:21:06:2d:9e:7c:
97:09:f7:8a:80:7f:6e:5f:37:16:52:a4:5e:34:4c:36:93:e0:
10:cd:ba:a6:6c:3d:48:dc:29:ad:e4:db:1e:da:e2:71:7d:74:
b4:a6:f9:61:e6:92:56:96:e7:1e:25:0e:87:35:71:99:58:eb:
5d:65:46:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org