Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/8378B942986E11EBA9B2860AF8AEA228.roa
File: 8378B942986E11EBA9B2860AF8AEA228.roa (raw, json)
Hash identifier: DCXxXlW0spouErSs20DWzGFXGGBNaPXmr93oX+0glto=
Subject key identifier: 11:01:04:4F:64:B1:09:8F:6B:29:CA:A0:5F:8F:AD:53:F3:D0:81:4F
Certificate issuer: /CN=F3699B8EAR/serialNumber=8A9F86050B4A4E4E925DE6FFD92AC348333E0712
Certificate serial: 07AD
Authority key identifier: 8A:9F:86:05:0B:4A:4E:4E:92:5D:E6:FF:D9:2A:C3:48:33:3E:07:12
Authority info access: rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/8378B942986E11EBA9B2860AF8AEA228.roa
Signing time: Thu 08 Apr 2021 13:29:58 +0000
ROA not before: Thu 08 Apr 2021 13:29:54 +0000
ROA not after: Tue 08 Apr 2031 13:29:54 +0000
asID: 49870
IP address blocks: 169.239.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.mft
rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1965 (0x7ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3699B8EAR/serialNumber=8A9F86050B4A4E4E925DE6FFD92AC348333E0712
Validity
Not Before: Apr 8 13:29:54 2021 GMT
Not After : Apr 8 13:29:54 2031 GMT
Subject: CN=606f0556-03d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d8:54:d7:89:5f:3b:4f:bb:ca:e2:a4:2a:21:
b7:a0:c0:8b:e1:e9:86:a5:a2:34:9a:d8:74:6e:ce:
77:00:aa:93:af:73:62:64:cf:68:7f:86:a6:1f:d9:
4a:ec:ab:87:25:b6:03:4c:a5:f1:37:c4:7b:15:af:
2b:1c:f9:6c:48:6e:df:69:c9:c0:b8:74:39:bd:fa:
3b:0e:64:49:5a:b4:cb:c8:93:e6:9b:5f:be:35:c4:
ca:17:e9:38:c9:ad:39:da:cc:c0:d1:41:95:52:27:
f4:da:6d:86:32:6e:77:95:a8:43:87:7c:b8:ac:3e:
40:b1:23:71:68:5f:e6:70:a7:90:1e:8d:78:5d:80:
94:19:e0:6c:9b:09:58:db:63:22:85:fb:36:fb:db:
35:86:60:4b:fc:2d:3a:79:20:14:81:58:af:23:f1:
2b:8f:2f:fb:33:e9:df:28:e4:d9:4e:ef:16:a0:bd:
77:f4:16:12:3b:0f:d6:90:90:a8:8f:6c:02:7f:95:
71:9f:3a:3a:d7:0d:c4:a7:d9:a7:2b:d8:a9:76:1c:
ba:e5:a0:20:7a:91:07:63:3b:26:51:e7:fa:21:a5:
62:07:0d:3d:22:73:c5:37:8a:cb:9e:a3:8f:51:ef:
1e:80:c8:a2:05:50:ef:b8:f6:17:1c:72:da:fe:3e:
2f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:01:04:4F:64:B1:09:8F:6B:29:CA:A0:5F:8F:AD:53:F3:D0:81:4F
X509v3 Authority Key Identifier:
keyid:8A:9F:86:05:0B:4A:4E:4E:92:5D:E6:FF:D9:2A:C3:48:33:3E:07:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/8378B942986E11EBA9B2860AF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.130.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f0:c9:59:6a:e2:18:90:03:20:cc:60:f7:01:c3:17:57:c4:
04:d0:3c:c2:d4:93:e4:7f:5f:6f:19:78:52:32:c1:1c:28:68:
82:10:dc:e7:c2:c3:8a:a9:36:3c:98:56:0a:c5:ab:d1:11:34:
c0:fe:2f:1b:a8:cb:ce:05:bf:51:5c:9f:cd:f0:fa:42:68:24:
24:b0:af:74:c2:b6:32:b8:69:53:88:7e:97:25:88:fa:ca:62:
66:06:41:02:af:b1:c4:67:27:da:73:24:4f:b7:d2:d4:60:30:
11:2e:45:d8:6e:b8:e9:94:20:a8:6b:53:c8:d3:a2:78:e4:f5:
02:49:ca:f8:cb:99:cb:0f:9a:17:be:a6:ce:17:df:d3:ac:4a:
e5:fe:06:e2:b1:57:c0:49:e8:21:89:cc:88:2a:39:79:17:bd:
00:03:58:ea:35:1a:37:79:81:7d:3c:ad:63:65:e0:09:0c:39:
d7:74:dc:d8:d3:a7:82:78:ff:9f:22:e1:70:7c:0f:3a:39:f4:
bf:04:0b:5a:3e:62:39:82:7a:c9:57:d3:e3:10:fd:fa:0c:16:
07:8d:5b:a7:d3:66:7e:9c:a3:de:76:06:78:69:73:67:b2:b1:
92:fd:d2:40:73:7f:c3:cb:29:3a:cc:b4:cd:00:6c:03:4d:15:
22:99:b8:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 01:22:17 2024 by rpki-client on console-fra.rpki-client.org