Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/4A59DAB2D0CC11EE92D6309F775412E6.roa
File: 4A59DAB2D0CC11EE92D6309F775412E6.roa (raw, json)
Hash identifier: DjC7444eJvmSipRlF85JQ6VeUlaceu/x9QiYxEgUQfQ=
Subject key identifier: 2B:27:FA:C3:2E:50:39:A9:84:10:54:A2:B4:2E:C6:E9:06:DE:41:AE
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D40
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/4A59DAB2D0CC11EE92D6309F775412E6.roa
Signing time: Wed 21 Feb 2024 15:17:14 +0000
ROA not before: Wed 21 Feb 2024 15:17:10 +0000
ROA not after: Thu 21 Feb 2030 15:17:10 +0000
asID: 50028
IP address blocks: 161.123.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3392 (0xd40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Feb 21 15:17:10 2024 GMT
Not After : Feb 21 15:17:10 2030 GMT
Subject: CN=65d613f9-bbcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:26:3a:0d:4c:70:b1:4c:4f:f9:b4:2c:e0:31:
d7:78:f7:4b:50:bb:09:5d:e2:3b:e9:58:28:a0:01:
fa:da:55:03:2f:10:6f:ce:fa:c9:7d:5d:49:9b:12:
15:69:1c:2b:15:ce:bc:18:09:c6:18:6d:44:20:f5:
63:a8:44:ac:a0:7c:6a:09:5f:8c:e1:3e:17:32:4a:
65:bc:a6:fd:86:5c:6a:8e:87:de:26:b9:3a:48:d1:
91:c0:aa:67:bf:ed:be:3d:e0:86:1f:40:3b:2c:52:
c7:e6:54:90:2d:f0:85:dc:7f:fd:17:6e:97:d5:93:
ae:2c:d0:1c:0a:90:3d:2a:24:a6:c8:0b:09:38:e7:
92:49:49:bb:ae:00:ef:75:d1:db:0f:4f:0e:c6:3c:
94:fc:9a:30:b9:6a:be:d5:0e:5a:a6:00:50:6f:78:
a9:6b:8b:13:bc:1e:08:4d:9e:85:1f:a0:7c:df:9d:
1a:ca:59:a5:8a:6f:d3:a7:17:28:67:40:0a:9b:0b:
b9:4b:73:e4:49:e8:1e:a3:01:e6:45:f2:a7:96:4b:
55:e1:53:30:65:ba:6f:25:cf:a7:dc:cb:ba:41:9c:
ae:ba:fb:e2:69:30:14:4a:cb:1a:98:3e:70:66:64:
1a:5c:0e:b8:25:00:73:69:04:4b:cf:ab:01:aa:7f:
5a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:27:FA:C3:2E:50:39:A9:84:10:54:A2:B4:2E:C6:E9:06:DE:41:AE
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/4A59DAB2D0CC11EE92D6309F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.69.0/24
Signature Algorithm: sha256WithRSAEncryption
92:30:6b:60:35:ee:c6:81:17:e8:7c:dd:34:a7:28:b5:a2:4d:
01:d8:e2:5e:db:dd:0d:2e:49:81:f3:e8:b0:95:dc:b1:bc:0d:
e9:86:7d:de:7e:fe:7d:36:57:11:be:f6:fb:b7:93:e2:a7:c9:
3d:3e:60:da:cf:83:73:75:33:ec:0e:cf:fc:e4:c8:39:71:7e:
3c:c4:5b:30:7a:ab:4b:a9:1b:6c:07:35:97:13:5c:86:d7:c1:
b9:d3:e5:4a:e5:60:9c:03:f1:cb:aa:34:3e:3f:dd:c9:f8:e4:
a7:86:3e:b4:9b:1c:a6:c4:c3:06:0b:d6:f7:ec:c3:dc:2f:02:
ba:49:7f:cf:f7:f9:1e:4d:80:44:fe:71:21:73:20:54:e3:74:
4d:4d:3c:f7:88:17:7c:06:d9:32:ea:f3:0b:de:b1:a8:94:78:
47:57:9a:65:b8:1c:47:7e:08:55:fe:f1:ff:1f:44:20:fe:e9:
e2:31:8c:24:3e:79:2f:fd:50:66:1c:ed:42:0a:5b:39:79:06:
65:ba:dc:ff:83:ed:3e:f3:f1:a8:12:05:dd:07:5d:bb:34:46:
11:14:27:76:9a:4c:8e:c9:2a:06:3f:69:a0:98:db:1e:64:82:
05:b9:39:b5:8f:c3:b8:94:6a:1f:f7:75:6d:c8:c8:e0:91:26:
b6:25:4f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:33 2024 by rpki-client on console-ams.rpki-client.org