Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A7FC6/6C0765F6EE3911EDB951826A4AD9E6FC/C285DB2CEE3B11ED981A49714AD9E6FC.roa
File: C285DB2CEE3B11ED981A49714AD9E6FC.roa (raw, json)
Hash identifier: MY+Zfaa2WucnEK2i4KO732TikQHEdd9xqx5LoKoX4+Q=
Subject key identifier: 69:30:CE:99:14:C3:DF:03:7B:93:27:4B:34:37:80:08:0B:F8:E8:CC
Certificate issuer: /CN=F36A7FC6AR/serialNumber=B102D328DA3A4C5B416C27A83D5487902D0638FD
Certificate serial: 02
Authority key identifier: B1:02:D3:28:DA:3A:4C:5B:41:6C:27:A8:3D:54:87:90:2D:06:38:FD
Authority info access: rsync://rpki.afrinic.net/repository/arin/sQLTKNo6TFtBbCeoPVSHkC0GOP0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A7FC6/6C0765F6EE3911EDB951826A4AD9E6FC/C285DB2CEE3B11ED981A49714AD9E6FC.roa
Signing time: Tue 09 May 2023 07:33:15 +0000
ROA not before: Tue 09 May 2023 07:33:05 +0000
ROA not after: Fri 09 May 2025 07:33:05 +0000
asID: 36864
IP address blocks: 165.90.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A7FC6/6C0765F6EE3911EDB951826A4AD9E6FC/sQLTKNo6TFtBbCeoPVSHkC0GOP0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A7FC6/6C0765F6EE3911EDB951826A4AD9E6FC/sQLTKNo6TFtBbCeoPVSHkC0GOP0.mft
rsync://rpki.afrinic.net/repository/arin/sQLTKNo6TFtBbCeoPVSHkC0GOP0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A7FC6AR/serialNumber=B102D328DA3A4C5B416C27A83D5487902D0638FD
Validity
Not Before: May 9 07:33:05 2023 GMT
Not After : May 9 07:33:05 2025 GMT
Subject: CN=6459f73b-0f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:52:c7:3a:48:be:9c:a5:19:08:3d:36:7c:63:
76:06:17:b4:26:83:db:ab:04:b9:75:fc:78:14:7b:
00:14:ea:c2:75:22:cf:69:67:82:96:78:06:9f:f5:
52:45:5a:b6:b4:ca:90:7c:ec:51:68:7a:97:89:d1:
45:05:f9:c1:17:d4:53:21:07:77:73:9d:e2:b1:83:
45:15:82:cf:f5:71:35:56:a8:7a:b6:10:a6:3d:7a:
e5:29:66:da:16:49:87:e0:23:89:24:27:05:2d:1a:
16:4f:a7:8e:ab:e1:a7:7b:c3:68:5b:1e:88:7e:75:
8b:5c:33:95:f7:44:f5:d9:d5:a4:88:ae:a5:ed:8c:
33:18:01:b0:83:90:1a:e0:1b:98:17:db:88:08:4b:
77:a7:b9:29:3f:d2:ab:40:bd:17:55:7d:36:f8:8e:
e5:cc:55:ec:1b:48:07:0b:12:cf:ab:00:b2:16:50:
0b:07:f1:c5:73:b2:62:0e:05:d4:9e:07:ee:95:23:
ef:c9:91:ce:1d:8e:5d:f9:80:6a:0d:d0:5f:b8:62:
d6:31:86:2c:01:ea:26:9a:ba:3f:03:2f:60:81:63:
b4:da:2c:eb:00:f1:ed:6f:e9:6a:1f:14:8e:ea:48:
bf:6b:76:75:7e:5d:0b:fa:55:50:f9:72:67:a7:15:
12:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:30:CE:99:14:C3:DF:03:7B:93:27:4B:34:37:80:08:0B:F8:E8:CC
X509v3 Authority Key Identifier:
keyid:B1:02:D3:28:DA:3A:4C:5B:41:6C:27:A8:3D:54:87:90:2D:06:38:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7FC6/6C0765F6EE3911EDB951826A4AD9E6FC/sQLTKNo6TFtBbCeoPVSHkC0GOP0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/sQLTKNo6TFtBbCeoPVSHkC0GOP0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7FC6/6C0765F6EE3911EDB951826A4AD9E6FC/C285DB2CEE3B11ED981A49714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.90.208.0/20
Signature Algorithm: sha256WithRSAEncryption
9a:7c:12:b4:16:83:30:d8:71:b9:dd:28:57:21:c6:0e:de:c4:
2b:6e:ff:11:fa:92:5c:5d:4e:94:0a:dc:ef:25:27:b5:2f:20:
36:f7:7e:d6:ad:1d:2a:34:31:05:14:b2:ce:04:61:f1:96:14:
92:9e:d6:a4:21:6c:d4:86:e7:5a:7c:c3:00:d8:a9:42:8f:7d:
4c:d8:c3:6a:cb:b3:38:ba:67:b2:c8:45:dc:b6:5a:57:fb:1b:
76:17:90:88:3e:36:6f:f1:93:58:fb:2d:9a:85:9a:73:1f:64:
0d:07:90:8f:94:50:8e:ca:0d:7e:e0:03:2c:cd:5d:10:23:5f:
62:c3:14:0d:02:8a:23:bf:88:06:33:3a:5d:15:7d:2b:1c:d3:
db:29:f8:c0:82:2f:e0:d8:3a:75:8d:42:51:8a:a5:70:78:63:
7e:19:92:a7:6d:e1:5f:e1:e7:94:39:ac:0d:9a:e0:1e:1f:28:
26:a3:b5:f6:5e:c0:d8:27:19:c1:90:66:e0:0a:f3:d6:3a:c7:
33:f6:ab:ca:82:3b:89:55:ff:1e:79:5b:13:59:80:60:8e:f7:
cf:c2:b9:c0:00:2b:db:7f:2f:e9:b2:58:76:12:08:02:92:f9:
4c:63:d2:37:6c:e6:44:22:a4:b2:a7:07:d1:7f:cd:a1:fe:20:
8a:01:17:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:19 2024 by rpki-client on console-ams.rpki-client.org