Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/86F1AB563B6911EEA5032D7A4AD9E6FC.roa
File: 86F1AB563B6911EEA5032D7A4AD9E6FC.roa (raw, json)
Hash identifier: tXTkl36K5XLn7WgTr9rni780MBAg7Xu71NqmtnAIntU=
Subject key identifier: 8C:A1:46:E2:DE:FF:02:42:42:4E:6A:CC:DE:CF:FE:6D:F8:AB:98:46
Certificate issuer: /CN=F3699B8EAR/serialNumber=8A9F86050B4A4E4E925DE6FFD92AC348333E0712
Certificate serial: 0B24
Authority key identifier: 8A:9F:86:05:0B:4A:4E:4E:92:5D:E6:FF:D9:2A:C3:48:33:3E:07:12
Authority info access: rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/86F1AB563B6911EEA5032D7A4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 12:44:52 +0000
ROA not before: Tue 15 Aug 2023 12:44:48 +0000
ROA not after: Wed 31 Aug 2033 12:44:48 +0000
asID: 204136
IP address blocks: 169.239.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.mft
rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2852 (0xb24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3699B8EAR/serialNumber=8A9F86050B4A4E4E925DE6FFD92AC348333E0712
Validity
Not Before: Aug 15 12:44:48 2023 GMT
Not After : Aug 31 12:44:48 2033 GMT
Subject: CN=64db7344-27c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d7:22:be:85:fd:a0:2e:5c:7e:47:bf:bd:c7:
21:18:62:7c:f2:df:d5:18:29:1a:66:71:f9:f6:8b:
13:f0:37:4d:6b:b5:2d:99:66:61:e3:07:05:c6:67:
07:bf:7f:7c:7a:6a:ac:58:19:96:28:d0:ee:64:3c:
19:43:36:ce:48:7b:28:fb:98:61:62:31:91:d5:1a:
8f:94:cd:17:53:f3:ba:7e:21:b3:35:28:b9:74:3e:
03:12:f1:ea:18:9e:1d:de:48:43:25:2d:aa:9d:13:
87:b6:d1:c5:0f:ae:94:86:73:e0:d4:4a:7b:ea:c7:
78:9b:00:d5:48:f9:eb:23:8c:eb:d0:c0:cd:9f:0a:
a8:76:19:37:c2:48:99:6b:12:eb:b3:01:f1:9d:1d:
fb:ce:92:22:93:fa:43:35:ae:25:f4:16:85:88:bc:
9e:0f:93:da:11:ae:55:2a:49:b1:6c:44:52:c7:1f:
5c:43:e9:4e:e5:8f:57:45:4e:ca:c8:25:9a:ac:cb:
b8:b5:24:52:99:35:f7:ed:64:96:fd:6f:8b:a8:7c:
0b:61:4a:30:60:c4:1c:1d:45:83:61:5d:75:9a:39:
58:7c:48:3b:02:09:09:48:e6:59:cb:20:32:d0:c6:
fa:c9:1f:4b:53:51:0d:94:71:2d:55:c1:ec:c5:19:
20:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A1:46:E2:DE:FF:02:42:42:4E:6A:CC:DE:CF:FE:6D:F8:AB:98:46
X509v3 Authority Key Identifier:
keyid:8A:9F:86:05:0B:4A:4E:4E:92:5D:E6:FF:D9:2A:C3:48:33:3E:07:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/ip-GBQtKTk6SXeb_2SrDSDM-BxI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ip-GBQtKTk6SXeb_2SrDSDM-BxI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/0E47380CB12311E59144614AF8AEA228/86F1AB563B6911EEA5032D7A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.202.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:ec:1c:0c:d3:8e:e1:44:57:77:db:3e:6b:63:f4:7a:39:fd:
a2:1f:76:7f:cc:3e:31:82:6d:d1:34:65:0f:60:16:c9:e8:15:
15:ed:73:50:21:ac:8e:ce:ab:9a:c4:ca:a6:3a:b6:c4:6b:92:
52:eb:7d:af:cf:67:ab:5a:e2:d1:f8:b0:d9:b4:2c:ac:9f:0e:
dd:94:bc:02:99:8f:e2:1d:62:f8:db:93:85:9e:86:95:b0:0c:
ed:fe:f2:27:8b:21:25:54:27:0f:07:af:52:f7:89:ae:46:ca:
04:c6:b2:fa:95:1e:51:c7:22:51:2f:4e:d9:2f:ff:0f:d9:61:
a7:72:3e:b3:69:7a:42:3c:82:8d:e1:31:fb:d9:41:88:7d:b6:
51:25:3d:1b:ac:de:05:5d:b9:d6:55:3e:ff:0a:4b:df:78:04:
20:f8:98:21:5d:02:ae:30:11:3d:cb:02:8a:fe:3b:e7:6f:38:
61:2d:87:fb:c5:ac:be:55:bc:9b:e2:e9:8d:9c:b9:25:ee:be:
4a:89:04:b5:c3:a5:85:d8:d5:05:6f:c8:80:c5:0b:2c:79:05:
0a:fe:ef:c5:68:3e:49:ed:ed:46:0a:3b:68:79:71:f4:43:cc:
01:1f:cc:d5:33:66:f5:61:37:50:cd:e3:b7:e7:23:64:f8:fb:
51:83:37:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:13 2024 by rpki-client on console-fra.rpki-client.org