Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2F84/935BF350EEAF11EB91CC6D2AD8A014CE/09859B12EEB511EBAC07A132D8A014CE.roa
File: 09859B12EEB511EBAC07A132D8A014CE.roa (raw, json)
Hash identifier: QJgNFrSSnI5wUL7064SxE7ymTJEcB6oc8kqJd8ZGe2E=
Subject key identifier: 29:71:C6:6C:41:0F:35:F3:7F:11:EE:66:BA:35:50:49:65:A2:27:5B
Certificate issuer: /CN=F36A2F84AR/serialNumber=DCC3D6736DEF8E69B176C2E3808EA8406A5EB4A1
Certificate serial: 03
Authority key identifier: DC:C3:D6:73:6D:EF:8E:69:B1:76:C2:E3:80:8E:A8:40:6A:5E:B4:A1
Authority info access: rsync://rpki.afrinic.net/repository/arin/3MPWc23vjmmxdsLjgI6oQGpetKE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2F84/935BF350EEAF11EB91CC6D2AD8A014CE/09859B12EEB511EBAC07A132D8A014CE.roa
Signing time: Tue 27 Jul 2021 08:31:46 +0000
ROA not before: Tue 27 Jul 2021 08:31:42 +0000
ROA not after: Thu 27 Jul 2028 08:31:42 +0000
asID: 328252
IP address blocks: 156.0.83.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2F84/935BF350EEAF11EB91CC6D2AD8A014CE/3MPWc23vjmmxdsLjgI6oQGpetKE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2F84/935BF350EEAF11EB91CC6D2AD8A014CE/3MPWc23vjmmxdsLjgI6oQGpetKE.mft
rsync://rpki.afrinic.net/repository/arin/3MPWc23vjmmxdsLjgI6oQGpetKE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2F84AR/serialNumber=DCC3D6736DEF8E69B176C2E3808EA8406A5EB4A1
Validity
Not Before: Jul 27 08:31:42 2021 GMT
Not After : Jul 27 08:31:42 2028 GMT
Subject: CN=60ffc472-25fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1e:4d:bf:93:41:d7:a7:47:33:ad:1d:65:95:
a6:e6:e3:e5:c2:56:3e:33:25:a1:10:0c:03:36:80:
c5:99:79:09:62:f2:e1:dd:a1:3f:41:f6:aa:d6:7e:
17:f0:cc:1b:ca:5d:56:2f:3a:7e:ab:3a:0a:d4:30:
96:16:6b:b0:b4:3a:75:e0:92:76:8f:6e:a3:5b:c0:
02:6e:d5:83:4b:b9:ba:a9:8b:34:cf:e9:8d:71:06:
a9:64:62:5b:84:44:4b:f1:56:79:0b:f9:1e:c6:d8:
99:9a:35:ad:9e:1d:a4:a1:36:29:3e:f5:0f:5a:42:
12:fd:40:95:33:0a:4a:d7:53:cf:bb:1e:20:4d:b8:
46:81:6b:63:c2:71:8d:3e:12:4b:04:dc:b3:45:6d:
a6:85:42:f6:28:b4:94:8c:96:a9:aa:f8:c5:f9:e3:
82:8f:fb:85:4b:54:9b:51:6d:c6:dc:a9:82:2e:05:
2a:cc:d2:41:96:16:26:9d:1b:35:ed:ad:99:31:e7:
3d:97:09:b8:d7:bc:8a:f4:7a:c7:8b:4e:7b:2c:19:
a9:13:9d:4e:1b:88:67:9f:e4:74:ea:cb:5b:6d:ec:
52:db:c0:a2:f8:8d:b5:22:f9:c8:46:40:96:b7:14:
ab:c6:ce:5f:e9:21:e4:49:95:3a:d8:9a:fa:fa:90:
24:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:71:C6:6C:41:0F:35:F3:7F:11:EE:66:BA:35:50:49:65:A2:27:5B
X509v3 Authority Key Identifier:
keyid:DC:C3:D6:73:6D:EF:8E:69:B1:76:C2:E3:80:8E:A8:40:6A:5E:B4:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2F84/935BF350EEAF11EB91CC6D2AD8A014CE/3MPWc23vjmmxdsLjgI6oQGpetKE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/3MPWc23vjmmxdsLjgI6oQGpetKE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2F84/935BF350EEAF11EB91CC6D2AD8A014CE/09859B12EEB511EBAC07A132D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.83.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:67:14:ba:db:75:3e:97:65:56:dd:4f:ce:b6:1e:cf:d5:0d:
ec:51:20:5c:7f:43:a1:4c:07:15:e1:d0:c4:68:50:3a:ca:68:
f0:ce:fd:18:a5:1b:76:69:60:23:35:ec:42:d8:ce:cb:0e:1b:
55:98:56:65:c0:16:59:d0:5c:96:40:fd:f4:c6:a4:2f:4e:59:
59:66:11:0f:9c:c1:18:4d:1f:e2:b6:e5:68:46:11:fa:a9:2c:
ee:47:47:5d:2b:4f:6b:60:ad:51:f4:7b:6d:0e:22:6e:1d:98:
02:e6:b3:24:04:17:ee:69:e0:99:88:d5:11:8d:58:fc:1f:0d:
a8:66:8b:b8:9f:1c:2f:dc:3e:27:89:09:23:de:7d:7a:04:9a:
80:2c:a6:98:40:d5:8d:21:30:84:c3:61:9e:e4:cd:33:69:23:
e6:32:4f:b4:ec:6f:e4:e7:79:41:2f:bf:d7:da:2d:07:21:32:
13:9f:08:8a:90:09:b8:3a:f6:e7:ce:9f:d6:9c:51:69:56:74:
cc:a0:97:15:82:d2:98:70:df:84:84:1c:f8:be:df:50:aa:11:
79:1f:d3:23:37:da:01:38:82:32:dc:3b:2e:69:da:41:81:1d:
2f:b8:bd:c7:1a:13:26:9d:14:00:ab:77:54:8a:35:23:09:fe:
5f:88:b0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org