Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/55CCB4822FC811EEA5952D394AD9E6FC.roa
File: 55CCB4822FC811EEA5952D394AD9E6FC.roa (raw, json)
Hash identifier: yjU//nqZCL9+CBK10qedRrwMV78A1p3+GdhBCdB1FMk=
Subject key identifier: AB:4C:98:61:7F:D1:78:5C:D0:2E:B1:5B:A4:C6:C3:45:03:92:F7:44
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0B83
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/55CCB4822FC811EEA5952D394AD9E6FC.roa
Signing time: Mon 31 Jul 2023 17:33:17 +0000
ROA not before: Mon 31 Jul 2023 17:33:13 +0000
ROA not after: Wed 31 Jul 2024 17:33:13 +0000
asID: 212738
IP address blocks: 161.123.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2947 (0xb83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Jul 31 17:33:13 2023 GMT
Not After : Jul 31 17:33:13 2024 GMT
Subject: CN=64c7f05d-e309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d7:2f:ad:ec:8f:71:2a:f7:76:bb:d4:5d:dc:
15:5a:78:7b:60:cd:81:8f:b7:3d:1f:3d:64:28:cd:
a9:dd:d9:d9:ae:1b:ce:a0:ff:6d:64:dc:44:4c:e0:
11:2a:41:d9:5b:a6:39:39:2c:89:2f:a3:71:6b:57:
e5:0a:0a:45:60:d5:ae:5e:81:46:64:34:a0:bc:1f:
29:e4:c1:7a:c6:08:92:a9:fe:32:99:7c:b4:85:a2:
4b:8c:5b:c9:56:ff:5a:ea:46:0e:4e:b3:10:12:98:
e2:24:37:40:8c:58:28:d5:4d:42:66:1f:18:3d:21:
87:77:8d:77:d9:64:83:53:0a:8f:ed:03:8f:48:e8:
2b:73:4c:bb:49:a8:6f:0e:2f:32:19:16:4b:3c:f2:
c9:db:bf:5e:41:f9:3a:c5:44:03:2c:cf:5b:14:08:
c6:f5:e3:ea:fc:69:dc:c8:03:b3:a7:b5:94:75:d6:
b0:3a:04:47:b7:2e:23:f0:85:7e:76:0d:71:a8:e3:
8c:ff:a9:f4:13:76:7e:7a:15:b0:0e:01:b4:2f:86:
40:40:b6:bb:fa:d9:11:6f:1a:e5:6f:89:ed:46:4e:
01:19:4f:f3:24:96:e0:0c:87:10:25:d0:f2:27:99:
9d:aa:e6:b6:66:01:2a:6b:3d:c6:02:c2:23:88:6c:
cd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4C:98:61:7F:D1:78:5C:D0:2E:B1:5B:A4:C6:C3:45:03:92:F7:44
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/55CCB4822FC811EEA5952D394AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.223.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:1f:a3:02:6f:ff:e5:c5:31:6b:ff:0a:16:0b:76:67:18:4a:
a2:ce:0a:04:ce:74:fd:cb:e5:b5:90:2a:5e:1f:d2:31:54:2c:
7a:31:98:a4:11:be:7d:84:08:93:c9:81:49:15:29:8b:08:2a:
a7:2b:b0:5d:f7:eb:86:a1:14:c6:79:0c:ea:e1:70:91:38:2f:
aa:bd:7b:be:81:6e:df:2e:fd:e9:6c:b0:09:9d:b3:09:cb:1e:
09:37:2d:03:57:46:20:1a:d2:f5:eb:6e:e5:a0:7d:3d:6a:e2:
c4:32:53:ad:72:88:b5:23:f9:a2:37:4b:64:8c:68:96:fd:a6:
78:93:17:54:f4:79:36:62:55:40:9d:c6:d6:83:1a:d6:2f:f0:
5b:69:44:75:c8:2e:e8:58:86:d8:75:bb:8d:d7:76:c4:16:a7:
ef:bd:b7:df:14:a0:72:7b:64:5a:69:74:b8:07:2d:20:7e:68:
2b:45:3f:a9:e3:a5:54:35:88:cc:35:cb:ad:bc:e9:e6:d1:35:
3c:54:bf:dd:ce:b3:36:47:ad:3e:15:f3:7d:51:95:4a:2d:fa:
15:9d:3b:72:97:12:8c:fc:ba:36:8b:5f:13:c6:9a:ca:40:42:
a8:37:ad:80:3f:36:02:51:b0:9a:53:35:a9:87:de:dc:c3:a2:
d8:5d:b2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:42 2024 by rpki-client on console-fra.rpki-client.org