Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AC63A/0A48C3D240C311EEBF0E47434AD9E6FC/698E9F34419411EEACB6225E4AD9E6FC.roa
File: 698E9F34419411EEACB6225E4AD9E6FC.roa (raw, json)
Hash identifier: Do8surr/Om2q4tT9UI+z5gRxR2ztOA+6DaMkNjqE0sI=
Subject key identifier: EA:70:1A:33:87:E0:A3:B9:A6:06:A6:FE:8D:EF:F1:21:E4:92:DF:4F
Certificate issuer: /CN=F36AC63AAR/serialNumber=5D517BF0F73919F76D6BC9125269CEEB60DD532C
Certificate serial: 08
Authority key identifier: 5D:51:7B:F0:F7:39:19:F7:6D:6B:C9:12:52:69:CE:EB:60:DD:53:2C
Authority info access: rsync://rpki.afrinic.net/repository/arin/XVF78Pc5Gfdta8kSUmnO62DdUyw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/0A48C3D240C311EEBF0E47434AD9E6FC/698E9F34419411EEACB6225E4AD9E6FC.roa
Signing time: Wed 23 Aug 2023 09:06:58 +0000
ROA not before: Wed 23 Aug 2023 09:06:54 +0000
ROA not after: Tue 23 Aug 2033 09:06:54 +0000
asID: 19905
IP address blocks: 192.96.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/0A48C3D240C311EEBF0E47434AD9E6FC/XVF78Pc5Gfdta8kSUmnO62DdUyw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/0A48C3D240C311EEBF0E47434AD9E6FC/XVF78Pc5Gfdta8kSUmnO62DdUyw.mft
rsync://rpki.afrinic.net/repository/arin/XVF78Pc5Gfdta8kSUmnO62DdUyw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AC63AAR/serialNumber=5D517BF0F73919F76D6BC9125269CEEB60DD532C
Validity
Not Before: Aug 23 09:06:54 2023 GMT
Not After : Aug 23 09:06:54 2033 GMT
Subject: CN=64e5cc32-7c2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c1:05:12:f3:37:b2:c8:db:78:95:07:f3:67:
24:a5:c9:6c:d9:a8:8c:b0:1d:ac:7e:be:6f:ba:ae:
e2:30:23:fb:43:82:4a:ea:8a:86:7e:ff:fe:ae:7b:
16:1e:5c:a7:67:8c:63:bf:a5:01:27:93:f5:25:f7:
9e:fd:4e:fa:fe:c3:80:47:68:5b:a2:e7:ad:08:4a:
92:b2:1d:cc:7d:d7:9b:62:ba:1b:e8:2f:9b:28:69:
b0:44:a8:2e:db:16:c5:66:37:6d:50:9e:61:77:b0:
10:fb:ca:c8:ca:19:11:d7:b9:bc:b2:1d:c2:11:60:
e5:47:85:83:13:05:c6:6e:78:d1:b8:c8:ce:22:a2:
cd:9f:65:c8:37:68:ff:15:21:1f:40:42:68:18:95:
93:c2:7d:81:1e:d4:13:83:1b:70:e2:08:26:79:96:
45:28:04:69:04:71:47:08:82:91:0d:a7:38:38:12:
ac:c8:3e:24:f9:45:37:79:57:db:4b:f9:6e:0c:ae:
5d:c9:38:76:13:de:a0:45:0c:d5:b2:30:49:38:20:
42:54:0f:49:bf:27:b7:7a:ba:d7:db:8f:89:e7:09:
c1:08:a5:5e:41:94:97:9c:db:1e:1b:a0:b6:25:bc:
51:b9:32:73:fb:57:07:b7:86:7e:5d:c6:89:ad:92:
ee:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:70:1A:33:87:E0:A3:B9:A6:06:A6:FE:8D:EF:F1:21:E4:92:DF:4F
X509v3 Authority Key Identifier:
keyid:5D:51:7B:F0:F7:39:19:F7:6D:6B:C9:12:52:69:CE:EB:60:DD:53:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/0A48C3D240C311EEBF0E47434AD9E6FC/XVF78Pc5Gfdta8kSUmnO62DdUyw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/XVF78Pc5Gfdta8kSUmnO62DdUyw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/0A48C3D240C311EEBF0E47434AD9E6FC/698E9F34419411EEACB6225E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.96.146.0/24
Signature Algorithm: sha256WithRSAEncryption
51:34:d4:56:5e:f4:6d:64:c6:32:6e:a7:88:21:28:6a:7f:1c:
45:78:c8:75:ed:9a:f9:8b:fd:e3:8e:eb:2c:ba:28:fd:ce:77:
3a:3c:b2:1d:af:1c:4a:ec:c8:e5:7d:7f:60:3b:51:8a:37:a1:
ce:dc:cb:bc:0e:97:c5:59:c7:97:e0:28:97:fb:e4:22:84:ab:
0a:3d:6f:e2:3d:83:2f:88:d0:05:a7:42:5a:bc:65:61:e0:11:
9f:e9:cd:7b:6d:07:b3:a5:8d:a3:5d:cc:43:69:e5:23:a6:3c:
d5:c8:b0:84:c8:d9:a8:4c:7d:e8:5e:50:90:a7:cd:56:e2:9f:
f3:64:97:05:cf:35:6d:33:49:4f:ce:12:08:44:08:1a:fe:5c:
bb:81:ca:53:66:d2:a2:c6:7a:fb:6d:6c:01:67:86:66:8d:f1:
47:4d:61:ea:3a:4b:76:af:8d:91:4e:f6:5b:c5:77:15:aa:45:
de:e5:ae:44:4f:e1:fd:20:9b:e8:36:40:e6:ae:25:57:d5:cd:
ab:45:53:46:92:81:4a:dc:d2:89:e4:1f:26:aa:a3:c2:3d:db:
48:f9:17:17:37:42:b1:ab:96:d9:03:b3:ec:e5:ae:a5:7a:4f:
54:c7:87:e6:e6:c9:89:97:0b:e1:99:40:bf:92:3b:67:fd:a3:
29:62:4e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 03:11:39 2024 by rpki-client on console-fra.rpki-client.org