Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F9BF2/5A60711A6FF711EC954B07CA5A40D577/59C3BC58C4BE11EEA20DE8C3775412E6.roa
File: 59C3BC58C4BE11EEA20DE8C3775412E6.roa (raw, json)
Hash identifier: WURfrEfKPZ97KXyzvQylM5QOU9M1/hxNrHNIesZD+uI=
Subject key identifier: 93:B2:7E:33:0A:08:FE:94:2F:C0:72:D8:5D:10:D5:D5:1A:A3:1B:7A
Certificate issuer: /CN=F36F9BF2AR/serialNumber=AD33560A35FDC24E32B7E1A479E21B0E896A2B0F
Certificate serial: 031A
Authority key identifier: AD:33:56:0A:35:FD:C2:4E:32:B7:E1:A4:79:E2:1B:0E:89:6A:2B:0F
Authority info access: rsync://rpki.afrinic.net/repository/arin/rTNWCjX9wk4yt-GkeeIbDolqKw8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/5A60711A6FF711EC954B07CA5A40D577/59C3BC58C4BE11EEA20DE8C3775412E6.roa
Signing time: Tue 06 Feb 2024 07:07:12 +0000
ROA not before: Tue 06 Feb 2024 07:07:09 +0000
ROA not after: Fri 28 Feb 2025 07:07:09 +0000
asID: 37154
IP address blocks: 165.56.20.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/5A60711A6FF711EC954B07CA5A40D577/rTNWCjX9wk4yt-GkeeIbDolqKw8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/5A60711A6FF711EC954B07CA5A40D577/rTNWCjX9wk4yt-GkeeIbDolqKw8.mft
rsync://rpki.afrinic.net/repository/arin/rTNWCjX9wk4yt-GkeeIbDolqKw8.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 794 (0x31a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F9BF2AR/serialNumber=AD33560A35FDC24E32B7E1A479E21B0E896A2B0F
Validity
Not Before: Feb 6 07:07:09 2024 GMT
Not After : Feb 28 07:07:09 2025 GMT
Subject: CN=65c1daa0-ff3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:48:19:73:cb:13:ea:4a:2f:64:a1:c3:17:b0:
91:db:d3:e9:7d:e3:c8:3f:92:43:6c:87:a3:16:2a:
e1:0f:64:f5:f7:5a:a2:ba:92:98:00:6d:d5:f6:48:
ff:49:5e:f4:0f:58:25:57:19:83:22:94:19:cd:64:
ba:7e:3d:0a:52:8f:6c:1d:83:29:d8:94:f5:5e:0d:
c0:9b:2d:34:4c:16:29:3e:f9:4c:37:8e:ea:18:79:
8a:0c:a2:86:bc:f9:4a:a9:91:d6:e1:8a:4b:87:92:
1f:6b:18:64:d2:69:bb:c8:09:94:ec:21:5f:bd:89:
cf:8a:44:1f:38:f9:16:b8:f0:6c:96:cc:a6:e7:4b:
71:24:03:6c:98:e7:bd:a6:e0:94:55:1f:4d:fa:7a:
86:de:e6:11:57:4b:07:9e:fc:1f:6c:e4:9a:e5:b1:
5b:61:c1:1e:55:68:a1:2a:a8:8f:60:db:b7:fa:68:
b1:3c:17:1c:6d:03:25:fa:fb:ce:42:1b:14:33:ff:
41:82:1c:4e:e2:97:4b:05:12:60:c0:0c:ed:db:06:
e4:2b:1b:a3:22:f7:81:00:45:f0:98:bf:56:a8:72:
9f:e6:42:be:10:bc:4e:ae:7b:0e:55:2c:ac:d3:ad:
90:bf:b8:bf:aa:e9:25:cb:44:81:b0:d8:1e:1d:91:
88:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B2:7E:33:0A:08:FE:94:2F:C0:72:D8:5D:10:D5:D5:1A:A3:1B:7A
X509v3 Authority Key Identifier:
keyid:AD:33:56:0A:35:FD:C2:4E:32:B7:E1:A4:79:E2:1B:0E:89:6A:2B:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/5A60711A6FF711EC954B07CA5A40D577/rTNWCjX9wk4yt-GkeeIbDolqKw8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/rTNWCjX9wk4yt-GkeeIbDolqKw8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/5A60711A6FF711EC954B07CA5A40D577/59C3BC58C4BE11EEA20DE8C3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.56.20.0/23
Signature Algorithm: sha256WithRSAEncryption
21:1c:13:94:78:1c:96:cf:8f:4c:4a:87:f1:32:b8:22:57:5c:
ac:5a:de:b2:58:b9:89:c8:53:94:c2:a2:bc:4e:b3:ab:3e:80:
ef:f5:85:80:b7:af:4c:0d:d1:16:e2:79:a8:50:73:3c:70:28:
55:f3:9b:20:5d:07:b4:c5:2e:22:dc:d0:01:5b:3c:11:f0:66:
3e:91:28:dd:3c:5d:09:d4:2c:4c:58:1f:c7:b1:9e:9e:a2:72:
eb:10:57:b8:44:06:bb:04:81:db:43:d1:46:9d:92:df:9c:f8:
6d:a6:70:c0:b5:c3:3c:fa:c6:74:fd:65:e9:78:79:99:4e:eb:
30:42:ed:1b:6b:1f:9d:d8:61:ef:00:69:fd:18:d8:74:d4:f6:
ae:91:5d:f8:16:c6:80:c3:34:9c:07:7c:43:46:6b:10:a8:b7:
86:d9:55:e6:eb:a0:96:d5:f1:f0:71:13:32:ee:81:32:71:50:
a8:b6:80:f9:af:2e:a1:c6:51:0a:3b:64:b7:76:12:98:de:3c:
99:c2:a0:9c:b7:69:d1:41:37:fb:10:57:4b:77:bb:c2:77:ea:
f2:cc:93:86:e8:b1:05:59:d2:cf:27:ac:8b:27:58:8d:03:9a:
85:c7:dc:c7:7d:09:70:0e:5d:4d:bf:d1:c1:31:e3:1d:55:20:
47:7a:d0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org