Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/51C5A8F4B94711EEA95CED63775412E6.roa
File: 51C5A8F4B94711EEA95CED63775412E6.roa (raw, json)
Hash identifier: xoOPzNirO3OEURXix91k5lFqS5bRVn+UPAYM81oFoYM=
Subject key identifier: CF:B3:EC:D7:85:BB:E9:3D:77:C6:EE:3A:F4:6D:75:67:D2:54:D6:52
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D10
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/51C5A8F4B94711EEA95CED63775412E6.roa
Signing time: Mon 22 Jan 2024 16:57:26 +0000
ROA not before: Mon 22 Jan 2024 16:57:21 +0000
ROA not after: Sat 22 Jan 2028 16:57:21 +0000
asID: 50028
IP address blocks: 161.123.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3344 (0xd10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Jan 22 16:57:21 2024 GMT
Not After : Jan 22 16:57:21 2028 GMT
Subject: CN=65ae9e76-6934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9e:04:50:34:bb:b2:0b:f9:ee:d1:d9:26:7d:
59:5a:10:f0:a4:96:eb:86:14:6f:4a:b7:b3:07:3a:
b2:20:82:d4:9d:0b:54:5f:ee:05:8b:03:f8:01:01:
2a:70:0e:11:54:88:58:00:e5:eb:82:bc:23:7c:4f:
42:cd:fb:27:44:3d:e5:4e:36:42:94:18:b9:1b:bf:
dc:ed:af:f8:21:06:bd:33:c9:82:64:22:73:b8:9f:
fd:2d:0f:cf:37:6b:15:24:cd:b6:31:5c:e1:9e:a7:
5d:9b:5f:db:72:a5:56:eb:72:84:20:37:fb:9b:2b:
9c:9b:0c:f8:e6:a2:c6:78:37:80:ea:d9:37:6d:39:
61:33:3a:b1:48:85:a1:78:4f:ef:76:83:9b:d5:21:
45:22:6b:29:a0:98:c8:c3:e5:3d:f8:25:15:2b:c8:
06:c3:1e:3a:73:9b:8d:cc:c1:dc:e2:21:c0:0a:02:
3f:36:9e:a7:c6:6f:05:05:36:d9:95:dd:2f:80:ca:
50:19:6c:5a:8c:c4:37:ea:07:3a:9d:6d:73:48:5c:
f8:26:86:34:d8:5c:e5:66:ac:5b:7b:0d:dc:8b:b1:
00:78:e0:c3:d0:22:fe:0e:8e:0e:dc:91:a0:ac:9d:
8a:ad:68:95:b8:ee:dc:9f:37:04:67:c8:57:56:6c:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B3:EC:D7:85:BB:E9:3D:77:C6:EE:3A:F4:6D:75:67:D2:54:D6:52
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/51C5A8F4B94711EEA95CED63775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.155.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:53:f3:42:aa:9d:31:34:e6:15:4d:fc:8a:71:04:7a:75:34:
e3:2b:39:bd:0e:1c:5b:e7:82:7d:1f:e5:74:04:bd:52:eb:57:
b9:1e:69:2d:87:6c:fc:91:4d:cd:e2:e2:fd:1f:e6:2a:05:a4:
b3:96:88:36:ed:ce:86:5a:33:f4:6b:16:3c:fe:8d:1d:f2:3d:
c7:7e:c2:15:2b:f8:34:aa:00:fa:7d:25:79:ec:2d:a6:f0:c5:
1e:70:64:b3:ac:58:c0:f8:db:78:7b:31:28:c7:d9:9e:ed:71:
90:27:25:38:14:3c:99:e1:48:ca:7a:1c:2e:cd:6e:a2:5f:50:
c4:cf:40:ff:cf:34:4e:e8:55:be:f7:98:94:27:8c:3a:fd:0a:
9c:4f:f2:7f:68:1f:16:67:3b:b9:43:5f:93:3c:f5:32:99:5f:
0c:57:e0:83:65:db:3b:c1:64:89:8e:61:17:2a:e9:5e:bd:a7:
3f:62:66:a4:32:60:91:2a:0a:67:0b:4b:8d:93:d4:a9:b6:4d:
7e:68:68:a8:61:f0:12:dc:63:99:bb:71:1c:9a:65:48:cd:fb:
01:d0:e6:49:65:9d:f3:6d:ae:63:a0:d0:6b:77:3a:6d:6e:da:
a5:40:14:b9:02:3f:69:c2:9b:81:7e:67:3d:97:89:91:84:13:
ef:f6:07:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:33 2024 by rpki-client on console-ams.rpki-client.org