Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369FA36/AD43F906813911E9928B381AF8AEA228/6FD0F2A0720311EC9A9E06CD5A40D577.roa
File: 6FD0F2A0720311EC9A9E06CD5A40D577.roa (raw, json)
Hash identifier: 0YOPAiQdI63WuPMZYazmFfDvbZMq2Za60mP0nK9Jjvk=
Subject key identifier: C0:C8:E8:CC:F7:96:9C:DF:BD:78:7C:06:62:A4:92:D5:BD:78:F1:92
Certificate issuer: /CN=F369FA36AR/serialNumber=C5F86148A44116A6292C008A09B4E75B8BD9DA1D
Certificate serial: 03EC
Authority key identifier: C5:F8:61:48:A4:41:16:A6:29:2C:00:8A:09:B4:E7:5B:8B:D9:DA:1D
Authority info access: rsync://rpki.afrinic.net/repository/arin/xfhhSKRBFqYpLACKCbTnW4vZ2h0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369FA36/AD43F906813911E9928B381AF8AEA228/6FD0F2A0720311EC9A9E06CD5A40D577.roa
Signing time: Mon 10 Jan 2022 10:52:43 +0000
ROA not before: Mon 10 Jan 2022 10:52:39 +0000
ROA not after: Wed 01 Jan 2025 10:52:39 +0000
asID: 327908
IP address blocks: 168.253.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369FA36/AD43F906813911E9928B381AF8AEA228/xfhhSKRBFqYpLACKCbTnW4vZ2h0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369FA36/AD43F906813911E9928B381AF8AEA228/xfhhSKRBFqYpLACKCbTnW4vZ2h0.mft
rsync://rpki.afrinic.net/repository/arin/xfhhSKRBFqYpLACKCbTnW4vZ2h0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1004 (0x3ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369FA36AR/serialNumber=C5F86148A44116A6292C008A09B4E75B8BD9DA1D
Validity
Not Before: Jan 10 10:52:39 2022 GMT
Not After : Jan 1 10:52:39 2025 GMT
Subject: CN=61dc0ffb-c39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:24:a8:9a:24:83:86:a0:f7:17:73:e8:8c:b2:
78:96:8e:66:15:79:3d:d2:68:23:aa:68:9e:3f:01:
db:b5:65:35:43:68:9c:dc:e0:75:c3:84:1b:a1:10:
7b:ea:8f:25:18:ca:02:be:e3:6b:d4:a2:38:86:74:
9b:88:27:2f:94:d0:32:7f:74:c9:a2:b8:a0:b9:4c:
d9:71:81:dc:d2:e8:05:a7:3b:04:c1:ec:db:c6:4e:
64:f1:b7:67:b4:6e:6f:93:6b:ca:58:b6:a3:2f:d7:
70:bf:15:95:e5:13:4a:18:92:74:da:ac:9a:f0:80:
40:5b:5d:a2:47:a9:28:d1:5d:e1:5a:5f:65:31:70:
6b:5b:43:e9:8c:56:af:87:ba:a9:62:e8:18:32:e5:
1d:25:ec:8f:c2:c3:ed:f5:c1:41:04:23:69:34:e0:
9f:f1:66:ca:6f:a6:26:7f:2b:5e:eb:8d:b9:76:b9:
7f:0d:98:c1:34:a1:d2:f3:87:a9:8f:e8:c6:31:47:
0a:e2:0a:b8:00:ae:59:99:82:5e:f0:00:75:0b:04:
13:e7:75:95:84:1d:82:14:41:bc:1e:d2:81:e7:98:
94:b3:ed:fc:63:00:ae:28:d1:be:02:1e:a0:c8:49:
ff:b5:65:0d:58:87:25:b3:17:02:3c:70:58:b4:de:
72:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:C8:E8:CC:F7:96:9C:DF:BD:78:7C:06:62:A4:92:D5:BD:78:F1:92
X509v3 Authority Key Identifier:
keyid:C5:F8:61:48:A4:41:16:A6:29:2C:00:8A:09:B4:E7:5B:8B:D9:DA:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369FA36/AD43F906813911E9928B381AF8AEA228/xfhhSKRBFqYpLACKCbTnW4vZ2h0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/xfhhSKRBFqYpLACKCbTnW4vZ2h0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369FA36/AD43F906813911E9928B381AF8AEA228/6FD0F2A0720311EC9A9E06CD5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.253.120.0/21
Signature Algorithm: sha256WithRSAEncryption
33:80:e3:ac:1d:ce:2b:52:71:02:66:3e:95:cf:f2:9e:0e:de:
d2:e3:d4:f8:60:69:95:80:06:1a:bd:12:eb:3d:db:7a:f6:1c:
45:d3:d7:c7:38:95:16:86:93:81:9c:fd:49:ac:dc:ca:b2:74:
29:c7:fb:26:7b:ee:57:8b:c6:08:7c:b4:d3:e6:dc:0d:02:65:
7e:a9:61:a0:fa:36:a9:d1:17:de:a6:94:bd:7c:a7:d5:d9:75:
6a:69:14:35:a8:2f:55:3a:55:5b:90:f4:e0:a1:8c:42:07:83:
bb:6c:54:7c:4b:cf:15:ee:c8:23:de:b5:d0:6a:72:78:cd:e4:
02:9b:4d:aa:d5:f4:1a:5a:29:48:f3:b7:1b:2f:15:49:19:5d:
48:3c:6b:20:4f:f3:5b:08:b7:8a:0c:99:e6:0c:bc:bd:db:f2:
b0:d8:44:38:66:dd:7f:0d:bc:b3:1d:b7:08:af:48:c0:85:1a:
75:e0:6c:d5:e3:ad:2e:44:17:40:e9:67:8e:9e:34:d2:43:1c:
a9:56:4f:43:08:44:8a:22:bb:00:f2:ca:4f:d0:9b:fe:81:ee:
e0:d5:d4:ae:5e:a6:6b:ec:8e:79:01:97:cb:9d:d4:ff:32:ff:
67:1b:ce:96:94:48:7d:0b:5d:47:05:14:25:ec:a0:48:a3:a8:
1f:cf:0d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:18 2024 by rpki-client on console-ams.rpki-client.org