Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/54554C04042E11EB814EE311F8AEA228.roa
File: 54554C04042E11EB814EE311F8AEA228.roa (raw, json)
Hash identifier: onUIXvOiTLaHtKeCxm3b6uqCM95dsnBo0FQxUaZDWI4=
Subject key identifier: 53:D9:47:3E:8D:8D:62:1D:B9:89:55:BE:FF:11:F5:27:34:D4:5B:43
Certificate issuer: /CN=F3699B8EAR/serialNumber=8A9F86050B4A4E4E925DE6FFD92AC348333E0712
Certificate serial: 06EA
Authority key identifier: 8A:9F:86:05:0B:4A:4E:4E:92:5D:E6:FF:D9:2A:C3:48:33:3E:07:12
Authority info access: rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/54554C04042E11EB814EE311F8AEA228.roa
Signing time: Thu 01 Oct 2020 21:37:40 +0000
ROA not before: Fri 02 Oct 2020 21:37:36 +0000
ROA not after: Wed 02 Oct 2030 21:37:36 +0000
asID: 61138
IP address blocks: 169.239.130.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.mft
rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1770 (0x6ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3699B8EAR/serialNumber=8A9F86050B4A4E4E925DE6FFD92AC348333E0712
Validity
Not Before: Oct 2 21:37:36 2020 GMT
Not After : Oct 2 21:37:36 2030 GMT
Subject: CN=5f764c23-f8f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:7b:74:fc:0d:91:5a:00:90:cf:c8:ea:82:
ae:30:49:90:9a:22:6a:d0:ef:14:b6:8c:ea:04:2c:
52:bf:c2:f8:0b:b0:16:0c:f5:8a:6c:bb:fd:17:36:
dd:23:33:58:ba:68:83:5b:bf:78:b5:c5:c9:28:3b:
f1:1a:6e:0c:ef:71:81:af:33:a8:99:ad:dd:ee:8a:
20:50:af:40:4b:63:16:30:e3:20:90:b3:77:5e:05:
51:b4:a5:12:a3:ed:3f:b2:f4:89:01:fc:9e:89:17:
98:a4:33:1e:dd:1a:6e:30:57:1b:48:89:e3:da:67:
73:9f:b8:e6:e1:d3:51:0b:10:50:77:58:94:63:30:
3f:13:85:5d:93:f8:bb:23:94:c5:e8:16:1e:6e:67:
c0:57:fe:d7:f1:95:d2:57:e8:72:d1:2d:60:7e:83:
11:e3:c8:b0:e0:7d:44:8e:07:0e:ec:1d:c9:9d:55:
d4:0e:d4:a3:a0:5f:28:a0:20:d2:c5:8a:d7:1c:e5:
f4:a0:91:28:04:fb:9c:25:74:18:c2:2d:35:5b:e2:
02:7b:68:71:d0:fe:94:c2:e9:cc:98:d2:af:ab:a7:
d9:e3:d1:f4:51:44:84:14:24:7d:62:16:8c:29:7d:
05:55:07:c1:2b:cc:10:30:ab:af:6f:60:5a:db:96:
bd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D9:47:3E:8D:8D:62:1D:B9:89:55:BE:FF:11:F5:27:34:D4:5B:43
X509v3 Authority Key Identifier:
keyid:8A:9F:86:05:0B:4A:4E:4E:92:5D:E6:FF:D9:2A:C3:48:33:3E:07:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/54554C04042E11EB814EE311F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.130.0/23
Signature Algorithm: sha256WithRSAEncryption
36:21:09:70:a1:8f:20:58:ee:59:3a:de:07:b2:a7:1b:21:9f:
b7:43:e9:82:c0:04:9a:ed:06:c8:b9:bd:58:9f:39:b2:48:21:
51:d4:d4:e1:da:14:1b:57:c9:86:cc:bb:ce:c6:52:6c:e3:b6:
60:f8:6b:05:7a:a7:2b:e3:69:87:bc:31:e1:7c:e4:17:da:ed:
90:be:ee:c7:a5:2a:bf:22:c4:37:d3:3a:ec:86:e3:76:d6:45:
94:e2:c3:27:a8:7f:01:d6:62:94:97:d7:9f:6f:70:07:28:37:
b0:2d:20:3b:f1:e9:71:da:0f:c8:69:5a:a7:14:b4:af:05:b9:
3b:6b:40:17:1b:da:58:df:71:cb:5e:81:45:4a:3a:ea:34:da:
0e:d8:69:67:6d:9e:00:e5:f5:b4:c5:4b:0e:70:74:58:a9:23:
b6:d7:3c:56:4e:97:a5:37:fa:23:b2:15:f1:9c:a7:0f:2e:1f:
49:0a:ab:fe:5b:42:32:de:b3:51:02:51:91:dd:45:e3:c5:48:
64:f8:e0:cb:6d:2f:06:31:a6:d1:c0:33:02:eb:fb:f7:c7:2f:
90:de:da:f0:56:9c:3d:a9:78:e1:4a:36:5e:6c:ee:82:85:7a:
5d:d7:6b:bc:47:8a:21:b2:80:db:d0:c9:62:5c:a3:9a:20:cd:
d8:e9:71:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:13 2024 by rpki-client on console-fra.rpki-client.org