Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E8936/91B48D0690EC11EDA9E342F8F1222468/DC60099290ED11EDA023F07CF1222468.roa
File: DC60099290ED11EDA023F07CF1222468.roa (raw, json)
Hash identifier: 9KneDc8AxCXKlLKwihUlSkgU/m9aNJKS4oxTHOBZ0ns=
Subject key identifier: 6C:FE:28:D3:52:88:86:CC:A1:94:40:E8:03:91:DA:C5:B3:4C:60:AE
Certificate issuer: /CN=F36E8936AR/serialNumber=C52BF27A14D4C49BAA02F099590DBCECB0E04B97
Certificate serial: 02
Authority key identifier: C5:2B:F2:7A:14:D4:C4:9B:AA:02:F0:99:59:0D:BC:EC:B0:E0:4B:97
Authority info access: rsync://rpki.afrinic.net/repository/arin/xSvyehTUxJuqAvCZWQ287LDgS5c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E8936/91B48D0690EC11EDA9E342F8F1222468/DC60099290ED11EDA023F07CF1222468.roa
Signing time: Tue 10 Jan 2023 13:51:20 +0000
ROA not before: Tue 10 Jan 2023 13:51:15 +0000
ROA not after: Sun 09 Jan 2033 13:51:15 +0000
asID: 328216
IP address blocks: 156.0.192.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E8936/91B48D0690EC11EDA9E342F8F1222468/xSvyehTUxJuqAvCZWQ287LDgS5c.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E8936/91B48D0690EC11EDA9E342F8F1222468/xSvyehTUxJuqAvCZWQ287LDgS5c.mft
rsync://rpki.afrinic.net/repository/arin/xSvyehTUxJuqAvCZWQ287LDgS5c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E8936AR/serialNumber=C52BF27A14D4C49BAA02F099590DBCECB0E04B97
Validity
Not Before: Jan 10 13:51:15 2023 GMT
Not After : Jan 9 13:51:15 2033 GMT
Subject: CN=63bd6d58-0064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:4b:75:64:cb:63:0e:6b:78:15:62:eb:0e:
14:cf:17:4c:cf:79:b7:c8:42:1a:51:97:5e:28:0a:
21:8f:3d:a6:2b:76:05:d6:18:4a:69:a7:98:4f:49:
a3:52:48:0d:35:09:76:c4:a6:6c:6a:ba:e9:cf:ec:
82:ca:c2:0e:a6:f0:64:b5:e4:df:4e:59:d0:93:73:
01:2f:9b:0e:1e:49:f5:b0:a9:87:a3:cd:dc:0f:27:
c0:9c:20:37:9f:d4:86:92:d6:0b:e3:25:cc:8e:85:
85:9d:46:fa:62:92:77:47:4b:9e:e3:8a:7f:fe:c1:
3b:2a:a7:f0:ad:11:9e:a4:a9:eb:d0:11:a1:3b:19:
3c:fb:90:bc:02:e1:7a:84:fa:9b:00:27:9a:af:1b:
0f:d2:84:fa:3a:35:18:ac:19:69:c3:e5:7d:ef:38:
fd:c0:fb:c4:b9:72:5e:8e:3d:ab:29:66:c5:4e:f7:
8f:de:b3:2e:4e:24:e3:fd:35:b5:6b:91:f4:c6:37:
35:5a:c0:93:93:2b:5a:fb:8f:f1:9d:41:6c:25:72:
62:9e:3a:e8:cc:2e:93:dd:b5:8b:d8:32:47:15:bb:
4c:fb:b7:97:c9:a6:db:de:63:b3:c5:6b:f0:1f:f4:
da:f1:cf:3a:3a:e3:39:08:f0:f7:7c:b4:17:f8:f0:
2f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FE:28:D3:52:88:86:CC:A1:94:40:E8:03:91:DA:C5:B3:4C:60:AE
X509v3 Authority Key Identifier:
keyid:C5:2B:F2:7A:14:D4:C4:9B:AA:02:F0:99:59:0D:BC:EC:B0:E0:4B:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8936/91B48D0690EC11EDA9E342F8F1222468/xSvyehTUxJuqAvCZWQ287LDgS5c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/xSvyehTUxJuqAvCZWQ287LDgS5c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8936/91B48D0690EC11EDA9E342F8F1222468/DC60099290ED11EDA023F07CF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.192.0/22
Signature Algorithm: sha256WithRSAEncryption
33:15:a0:3b:b0:40:98:95:31:1e:b7:70:30:95:d2:cb:a5:73:
37:00:89:99:cb:86:e1:46:b2:00:b5:bc:ed:1f:6d:ae:9c:3a:
1c:24:05:3f:8f:c1:45:f8:65:30:b8:95:60:1f:7a:93:d6:a0:
6a:fd:5b:bc:ff:33:fc:36:a4:40:c2:4d:47:11:ed:af:99:80:
55:f1:4a:12:b6:53:f0:31:4b:6d:c4:cb:5d:b3:c9:d5:f2:38:
06:56:0c:98:37:2a:ae:cf:cb:85:7e:ba:bf:6a:6d:ca:4a:ba:
e3:42:be:fd:be:83:6c:7c:e7:f9:f9:e6:0a:05:c8:b7:76:71:
79:3d:55:13:3d:a9:a3:93:09:4f:a4:11:68:e6:03:33:81:1c:
99:f9:02:6d:4e:a6:c8:30:cd:6e:3d:07:d1:2b:f9:b2:19:21:
a5:ee:dc:fa:f1:4e:44:ba:6b:a6:b0:ad:13:df:f9:c3:31:10:
d7:e1:ec:3f:56:fb:c4:e5:e0:32:3e:65:e6:8c:2a:7a:9d:52:
b0:fa:4b:6f:b5:a7:54:b7:91:f8:35:02:98:ca:03:ba:96:38:
a5:fd:66:f0:d0:b1:e8:28:6e:8c:60:dd:45:85:c2:53:93:c2:
4c:b8:47:cd:91:ab:c5:71:e5:48:5b:97:f1:e5:b4:da:0f:70:
1c:f7:ea:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:31 2024 by rpki-client on console-ams.rpki-client.org