Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C2BF2/F17A498A19EC11EF9C02892C017001B1/5E52EDD81C4911EFA98F9E317DDC24C2.roa
File: 5E52EDD81C4911EFA98F9E317DDC24C2.roa (raw, json)
Hash identifier: Zixh/aFPuo2zs0C1hGvWJdvczTuAhUvvaA1FyHi6zv8=
Subject key identifier: 19:8C:2E:96:6D:6C:D5:94:14:7E:05:28:C8:C9:F9:FD:3B:84:62:C0
Certificate issuer: /CN=F36C2BF2AR/serialNumber=2236FFAB4F78A07A19B82E8FDE6DC2DB064ADBBF
Certificate serial: 05
Authority key identifier: 22:36:FF:AB:4F:78:A0:7A:19:B8:2E:8F:DE:6D:C2:DB:06:4A:DB:BF
Authority info access: rsync://rpki.afrinic.net/repository/arin/Ijb_q094oHoZuC6P3m3C2wZK278.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/F17A498A19EC11EF9C02892C017001B1/5E52EDD81C4911EFA98F9E317DDC24C2.roa
Signing time: Mon 27 May 2024 16:51:31 +0000
ROA not before: Tue 28 May 2024 16:51:28 +0000
ROA not after: Thu 28 May 2026 16:51:28 +0000
asID: 37517
IP address blocks: 165.90.96.0/19 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/F17A498A19EC11EF9C02892C017001B1/Ijb_q094oHoZuC6P3m3C2wZK278.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/F17A498A19EC11EF9C02892C017001B1/Ijb_q094oHoZuC6P3m3C2wZK278.mft
rsync://rpki.afrinic.net/repository/arin/Ijb_q094oHoZuC6P3m3C2wZK278.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C2BF2AR/serialNumber=2236FFAB4F78A07A19B82E8FDE6DC2DB064ADBBF
Validity
Not Before: May 28 16:51:28 2024 GMT
Not After : May 28 16:51:28 2026 GMT
Subject: CN=6654ba13-922f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ff:d1:87:00:02:61:bb:65:57:80:ea:5c:ca:
c7:06:4b:63:c9:4e:4c:7d:0b:6b:dd:12:8d:82:c0:
45:31:56:a5:a0:d0:a6:63:e1:1a:45:f9:fa:09:9e:
48:8e:74:bf:ac:37:77:0b:c4:fd:36:a0:d4:b5:5e:
69:de:99:2a:ff:92:dc:e2:6d:5b:e6:26:4a:1e:cb:
aa:30:af:34:0d:f4:0c:04:a4:5d:ff:6c:f5:9a:81:
97:3c:1f:70:cb:cd:b3:af:09:a5:54:fc:ce:e5:45:
1b:1b:64:70:cf:fa:e0:8f:0e:20:e8:a8:1d:3b:17:
49:2b:a3:ea:b2:81:f3:1a:6e:4f:76:2b:61:cb:96:
b6:7f:eb:ef:80:8e:3d:7f:6f:ea:8d:27:32:6c:3e:
9f:a4:c2:b7:69:a7:a9:11:ce:e3:90:ca:ce:c9:d2:
eb:73:37:c1:c6:9e:70:93:76:d6:80:96:33:d5:69:
c3:0c:f8:13:c0:73:94:0b:22:be:fc:7f:3e:7b:2f:
f9:cb:30:be:0c:e0:6b:83:70:a9:6f:8b:f8:ec:6d:
35:93:96:78:25:9e:61:3d:ef:9e:8a:ca:40:74:c9:
fe:73:31:0b:24:3d:de:92:39:ab:cf:ad:7a:62:35:
a4:77:67:cc:5a:44:42:8e:4e:50:45:48:1a:3e:42:
67:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8C:2E:96:6D:6C:D5:94:14:7E:05:28:C8:C9:F9:FD:3B:84:62:C0
X509v3 Authority Key Identifier:
keyid:22:36:FF:AB:4F:78:A0:7A:19:B8:2E:8F:DE:6D:C2:DB:06:4A:DB:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/F17A498A19EC11EF9C02892C017001B1/Ijb_q094oHoZuC6P3m3C2wZK278.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/Ijb_q094oHoZuC6P3m3C2wZK278.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/F17A498A19EC11EF9C02892C017001B1/5E52EDD81C4911EFA98F9E317DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.90.96.0/19
Signature Algorithm: sha256WithRSAEncryption
1f:3e:91:00:97:2f:d3:73:3b:c6:ab:cc:66:24:c0:71:38:f6:
b6:1b:61:e9:db:9a:48:1e:8b:64:68:1c:77:41:0a:ed:49:bd:
2f:d5:9e:28:32:21:2c:86:bd:be:41:4e:a9:33:86:97:72:f5:
16:bb:9e:3d:fc:b6:fc:5d:7b:42:1c:a8:b5:5f:62:d3:0f:e8:
ac:ea:7d:47:b4:8c:92:f5:08:2a:b2:d8:4e:b8:62:6e:43:89:
1f:70:fd:08:f2:f3:3e:b7:26:40:81:2d:3f:7f:00:1e:1e:65:
7d:ab:27:79:e9:7c:6f:24:43:b2:b3:49:43:0a:d8:7d:63:64:
5a:19:48:4e:82:3c:64:f1:54:2d:61:e4:5a:4c:32:53:ca:62:
21:01:39:b2:98:82:c9:6e:26:67:77:69:63:a2:fc:68:79:29:
98:6e:da:f4:bd:5a:4c:92:f9:94:b8:42:c7:49:13:3e:82:be:
92:0a:db:3a:e5:34:8d:fd:91:a1:17:60:3c:97:38:9d:fe:cb:
4e:b4:11:60:65:09:f9:a9:c6:14:5d:4a:10:82:32:50:41:71:
85:6c:41:55:d8:97:e0:63:c1:9d:8e:57:3d:fe:6e:d0:25:ef:
c5:bc:24:7f:a7:71:32:ce:3b:7d:58:64:70:3a:13:07:71:14:
67:23:f6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org