Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/8325C8B29A9111EF82535743762E951A.roa
File: 8325C8B29A9111EF82535743762E951A.roa (raw, json)
Hash identifier: vxSRw9EknnpHrk8ZzgSK6UNym5nVbkWhC2XG0zxVjuY=
Subject key identifier: 85:1B:42:E9:6E:CA:A0:D7:C7:0B:13:E9:29:7A:8E:14:C5:64:36:77
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0E76
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/8325C8B29A9111EF82535743762E951A.roa
Signing time: Mon 04 Nov 2024 09:45:23 +0000
ROA not before: Mon 04 Nov 2024 09:45:20 +0000
ROA not after: Wed 30 Sep 2026 09:45:20 +0000
asID: 212738
IP address blocks: 161.123.102.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3702 (0xe76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Nov 4 09:45:20 2024 GMT
Not After : Sep 30 09:45:20 2026 GMT
Subject: CN=672897b3-6f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:31:43:1d:46:e3:41:e3:88:d6:2e:87:20:e5:
49:87:d5:14:a9:ef:0d:41:94:69:00:45:a7:cc:34:
47:48:9e:d9:fe:c3:8a:8f:12:05:47:34:7f:e6:ac:
89:33:d2:c1:c8:ef:9d:41:3f:0d:fa:99:a6:2b:ca:
c6:ee:73:ae:b0:de:34:dc:ee:82:07:b0:91:5c:89:
2e:87:90:c5:9f:fd:d0:de:f4:c8:24:ac:8a:f6:cd:
36:1d:69:7b:e8:bd:71:54:1c:a3:9c:95:fb:39:67:
e6:27:fd:07:b9:17:00:3a:a9:e7:37:8c:e8:10:aa:
a5:9b:52:de:9e:e7:03:1c:f5:e8:2f:a5:9a:d8:06:
4a:9f:d7:94:22:9d:f4:80:15:6d:80:d1:d3:ad:64:
40:b3:0c:c3:65:21:65:2f:73:3a:45:9f:ad:25:77:
69:50:4b:80:41:66:1f:25:28:e8:06:68:4e:e3:09:
0b:e1:32:59:98:04:2b:fb:2b:89:52:14:cc:eb:1f:
04:d9:40:b0:fc:21:6b:c0:9e:a0:2e:b7:a6:43:0e:
25:d9:25:2f:9e:cf:9f:74:54:9c:f7:5a:33:fb:d0:
26:eb:39:66:dd:02:d1:1c:0c:d8:e4:2f:2e:74:d5:
b4:8d:a1:61:2b:2b:00:31:6f:bc:9e:00:5e:89:94:
39:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1B:42:E9:6E:CA:A0:D7:C7:0B:13:E9:29:7A:8E:14:C5:64:36:77
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/8325C8B29A9111EF82535743762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.102.0/23
Signature Algorithm: sha256WithRSAEncryption
76:76:ad:3d:a9:ea:82:d6:60:64:dd:79:5b:c9:df:17:c8:65:
26:aa:af:d0:af:cc:ff:40:60:b0:2c:de:46:d5:e7:59:73:52:
ea:59:93:69:ec:ae:89:cd:d2:21:19:ee:5b:e9:99:10:c7:ca:
9b:be:06:dc:93:56:5c:a2:0a:05:d0:8b:5f:9d:05:9d:87:12:
96:b6:e1:a7:62:e5:9b:1d:bb:ac:27:38:53:df:84:6d:70:3f:
a5:cd:4d:14:73:c3:5e:7d:31:4e:aa:5f:1e:98:26:29:1f:7e:
fe:aa:03:1d:11:33:8b:aa:5b:69:dd:ee:53:c5:ba:17:ef:60:
f2:77:b2:2d:0a:4d:cf:e4:39:f1:7f:2c:49:fd:fb:be:6f:6e:
dc:6d:65:6c:fe:77:28:41:f1:e1:99:8b:ad:62:d7:14:69:c1:
53:89:92:70:e8:e2:64:8e:ea:13:43:6c:6b:05:1d:3c:c7:aa:
77:a3:27:a2:e2:42:67:98:58:18:0e:ab:01:4d:c9:09:0c:fb:
d8:1f:55:c6:47:cd:3f:96:86:d6:c9:ee:9b:af:82:7b:e8:47:
df:21:22:e4:17:04:80:2f:f1:57:9e:19:14:53:1f:d6:93:cd:
a7:ad:07:67:61:08:0e:1a:36:ea:ee:f0:cf:fe:90:c5:55:21:
c5:1c:a2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org