Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/D2BCB8AC24CD11EFBA1E711B7DDC24C2.roa
File: D2BCB8AC24CD11EFBA1E711B7DDC24C2.roa (raw, json)
Hash identifier: pk6a4ptH8vZ8/DDIS6o5NsLyUfZR0uUROi741ipkTm8=
Subject key identifier: 6D:86:72:1C:8E:C6:86:5B:75:25:27:DF:04:36:06:B6:CD:6D:12:22
Certificate issuer: /CN=F3698125AR/serialNumber=CEDF6EC23B3A0E9FC8C99B14734ADAE7A1D8994A
Certificate serial: D8
Authority key identifier: CE:DF:6E:C2:3B:3A:0E:9F:C8:C9:9B:14:73:4A:DA:E7:A1:D8:99:4A
Authority info access: rsync://rpki.afrinic.net/repository/arin/zt9uwjs6Dp_IyZsUc0ra56HYmUo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/D2BCB8AC24CD11EFBA1E711B7DDC24C2.roa
Signing time: Fri 07 Jun 2024 12:59:50 +0000
ROA not before: Fri 07 Jun 2024 12:59:46 +0000
ROA not after: Thu 07 Jun 2029 12:59:46 +0000
asID: 329227
IP address blocks: 164.160.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/zt9uwjs6Dp_IyZsUc0ra56HYmUo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/zt9uwjs6Dp_IyZsUc0ra56HYmUo.mft
rsync://rpki.afrinic.net/repository/arin/zt9uwjs6Dp_IyZsUc0ra56HYmUo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216 (0xd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3698125AR/serialNumber=CEDF6EC23B3A0E9FC8C99B14734ADAE7A1D8994A
Validity
Not Before: Jun 7 12:59:46 2024 GMT
Not After : Jun 7 12:59:46 2029 GMT
Subject: CN=66630445-c87a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3a:18:00:47:ad:92:67:9a:78:2c:76:18:e8:
ed:ae:ca:ce:73:5b:b4:60:cc:77:bf:1b:6c:35:7d:
31:34:61:1b:3e:e5:28:38:f3:0b:bf:40:e1:cc:ea:
b4:02:ac:f8:f4:3e:e7:fb:71:49:21:39:93:51:4a:
81:31:1d:7c:2d:ba:58:8c:df:ea:cc:32:e9:92:64:
55:fa:42:96:2a:95:47:14:a6:ce:e5:16:30:4b:d8:
6e:f0:60:15:27:55:aa:fd:27:71:1c:c8:f7:e2:8b:
6b:2a:29:85:67:70:01:8f:53:ec:8f:0b:52:2f:51:
38:07:16:e5:bd:4a:97:bf:b0:07:38:66:09:0e:03:
cb:b1:22:09:24:aa:a0:eb:1d:14:53:ab:7a:33:e0:
d1:07:cf:4c:04:c1:dd:e9:19:9c:6a:83:be:5d:e7:
5e:83:be:d0:99:07:b4:35:c3:12:cb:a2:47:29:7f:
0c:a5:84:f3:0e:d2:13:6a:55:e4:bd:a7:4a:19:71:
d0:b3:b2:09:9c:b2:10:23:80:c7:0b:c6:a4:26:f1:
f2:fb:9c:76:21:bd:c8:99:00:20:1b:2f:41:95:10:
db:10:0e:0c:54:ff:ae:f8:41:52:e8:2a:81:33:10:
8e:70:e4:72:e4:22:dd:eb:8e:c7:b6:a5:1d:94:18:
73:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:86:72:1C:8E:C6:86:5B:75:25:27:DF:04:36:06:B6:CD:6D:12:22
X509v3 Authority Key Identifier:
keyid:CE:DF:6E:C2:3B:3A:0E:9F:C8:C9:9B:14:73:4A:DA:E7:A1:D8:99:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/zt9uwjs6Dp_IyZsUc0ra56HYmUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/zt9uwjs6Dp_IyZsUc0ra56HYmUo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3698125/BEF71C94838411EE8E2697354AD9E6FC/D2BCB8AC24CD11EFBA1E711B7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.160.184.0/22
Signature Algorithm: sha256WithRSAEncryption
32:66:d9:52:10:f6:3a:34:6f:2d:61:4b:b8:68:76:18:78:89:
e0:65:cd:fb:af:f3:1d:7a:1b:23:88:e0:a4:fe:f0:6a:b7:90:
b1:43:69:b5:03:9c:33:12:ca:96:f1:c9:5f:05:02:10:b7:3b:
ab:c0:6e:f4:9d:24:29:3a:d1:2f:3a:cf:4c:89:12:60:e5:6d:
c8:64:2d:b6:87:37:c4:6b:e5:54:71:de:76:f0:ca:b2:18:5a:
eb:cc:3f:64:b8:12:1f:f1:3f:a7:81:e3:59:db:99:a8:6d:51:
91:7e:3b:d5:9e:0b:b3:ff:6f:9d:29:37:ff:27:4c:59:ab:4d:
5d:f8:a0:a7:4b:3e:7c:09:ea:60:12:56:0b:ef:0f:89:ed:d8:
37:38:c9:89:17:ab:c4:f5:a5:58:3f:e1:7b:b9:b7:26:5e:5d:
05:c2:47:d1:4e:f1:c5:22:83:db:55:9d:2b:82:02:a2:68:3a:
1e:6e:1d:20:b0:7c:9f:6d:81:3d:11:54:b8:50:fb:e8:7d:81:
f6:98:cc:9c:04:09:3d:18:a3:ce:ce:ca:52:e1:57:dd:85:70:
34:45:86:2a:97:77:53:b2:c4:9c:1a:af:9a:8e:45:9a:d9:e2:
36:65:47:ac:ca:e7:7f:8e:e9:8c:e0:8f:62:12:08:d3:17:89:
b8:90:ef:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org