Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/66CC4E1812FE11EFA442C929017001B1.roa
File: 66CC4E1812FE11EFA442C929017001B1.roa (raw, json)
Hash identifier: txkcWmO0HmxRjuvIMJbIgZlHd8fMYu1kErOKiyhWv8I=
Subject key identifier: 4B:5A:D7:BF:0A:75:E3:E8:1C:54:86:83:A0:B6:AD:A3:FE:D6:42:9F
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0DA9
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/66CC4E1812FE11EFA442C929017001B1.roa
Signing time: Wed 15 May 2024 21:02:13 +0000
ROA not before: Wed 15 May 2024 21:02:09 +0000
ROA not after: Wed 15 May 2030 21:02:09 +0000
asID: 136557
IP address blocks: 161.123.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3497 (0xda9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: May 15 21:02:09 2024 GMT
Not After : May 15 21:02:09 2030 GMT
Subject: CN=664522d5-1dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ed:dd:e5:e3:39:78:12:ad:10:61:87:f1:be:
4f:3a:e4:0a:28:a6:ee:5d:2a:46:a0:c5:06:89:b9:
23:d0:ed:07:dc:a6:40:4a:41:02:1a:bf:d4:22:a3:
7c:25:7e:3a:ee:d3:93:87:74:be:71:ea:d8:c5:ee:
ef:37:3a:c5:35:a1:a2:14:c7:c4:09:79:33:f7:af:
4f:29:75:c4:52:ab:d6:03:85:d2:53:c6:4b:d6:3f:
4f:bc:f0:4b:a3:38:11:ff:10:4d:3e:7e:39:1b:54:
db:02:01:60:ce:c5:96:76:71:d8:2e:ac:03:f1:8e:
ab:4d:8a:1a:62:7b:63:c8:44:c4:40:69:7d:3e:08:
74:73:47:9e:62:85:12:a4:33:dc:05:ff:de:65:e8:
72:cf:03:c7:67:82:4b:2a:77:83:66:41:89:a6:58:
28:73:7a:2f:2a:76:91:68:e9:bb:72:e3:47:10:a7:
1d:6c:67:eb:81:5b:dd:32:1f:14:4e:0a:7e:27:71:
b9:24:18:bc:af:bf:24:21:ca:59:10:47:07:cd:88:
40:bf:e8:ce:8b:0f:19:08:d1:d0:1f:e9:e8:b6:26:
51:48:b8:50:5f:a1:3d:83:d9:67:91:61:aa:f4:4f:
28:8a:0a:e8:1b:06:f6:02:a9:af:04:c8:79:6b:32:
85:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5A:D7:BF:0A:75:E3:E8:1C:54:86:83:A0:B6:AD:A3:FE:D6:42:9F
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/66CC4E1812FE11EFA442C929017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.213.0/24
Signature Algorithm: sha256WithRSAEncryption
30:4e:3d:27:05:17:7a:d0:f6:8b:78:3a:94:01:0f:70:f0:98:
bd:b7:2d:09:bb:13:67:f0:7c:60:b9:a5:1e:16:15:43:6e:2a:
7f:a8:5a:1a:07:8a:a3:37:04:50:7e:82:2a:4c:55:4d:e9:b5:
5d:1d:c7:19:02:fd:04:1d:20:3d:62:9f:76:3d:19:a8:66:72:
69:bc:e3:ca:1d:fd:bd:0b:73:1e:c1:6f:a1:aa:aa:b5:21:5b:
b8:73:b3:84:c5:97:ec:e3:25:09:5a:d4:23:a0:90:63:19:ee:
db:05:24:fd:eb:8c:52:29:5c:70:62:75:14:29:1c:0a:c9:77:
01:2d:36:76:98:8c:cc:b2:9c:03:93:7a:48:f0:52:5f:2a:9c:
86:d1:12:58:c2:2e:4c:b2:51:2e:71:97:bd:fc:a8:69:0a:69:
4c:4a:1c:ad:dc:be:5f:35:d7:3f:e6:e6:c8:e0:74:71:0a:c9:
90:d0:89:b9:b7:c1:ce:4e:6f:8c:69:ac:23:96:60:5d:67:83:
32:dc:3a:ae:cc:fd:c3:f0:14:11:9b:d5:67:10:c7:1b:82:3b:
2a:b9:15:bf:66:0f:b6:24:1d:92:a0:ac:a6:cb:df:28:10:7d:
3a:aa:e8:52:f9:47:7b:77:9c:d7:5f:51:c5:80:2f:8f:16:91:
f8:b6:f4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org