Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/8BC654C2B94711EEAECF4764775412E6.roa
File: 8BC654C2B94711EEAECF4764775412E6.roa (raw, json)
Hash identifier: ILwXzmYamt6nqO12bjEIZOAdA+b8lSAJwYTm+TwMMaU=
Subject key identifier: 5C:04:33:BC:1C:07:75:6D:8B:F3:0F:77:41:58:78:54:BC:F3:8E:2C
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D12
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/8BC654C2B94711EEAECF4764775412E6.roa
Signing time: Mon 22 Jan 2024 16:59:03 +0000
ROA not before: Mon 22 Jan 2024 16:59:00 +0000
ROA not after: Sat 22 Jan 2028 16:59:00 +0000
asID: 50028
IP address blocks: 161.123.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3346 (0xd12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Jan 22 16:59:00 2024 GMT
Not After : Jan 22 16:59:00 2028 GMT
Subject: CN=65ae9ed7-7c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a7:fc:fc:22:a8:5e:fe:7c:57:32:c2:4f:40:
56:da:7d:60:6f:16:e4:69:f1:fe:ce:5d:9f:bb:39:
df:45:ad:3f:bc:2c:d5:30:3f:89:64:21:44:9e:a9:
5a:b9:5f:95:a6:35:b5:2f:ab:d6:de:95:a7:15:77:
9c:8a:0d:c0:b5:3a:5b:d0:bc:b6:8a:d9:0f:81:91:
20:32:c1:73:8a:fa:9a:24:c6:56:82:2b:80:f4:e6:
f9:9a:68:4f:4d:5c:cf:a7:ca:96:7c:13:58:13:00:
de:75:03:52:73:23:c5:8f:fd:41:0c:ef:be:f2:43:
50:f8:65:72:1e:d1:b2:b9:18:d4:7c:02:37:47:e5:
6c:f2:50:89:ef:a3:57:5f:5a:99:af:89:e7:8e:8f:
26:a4:78:69:f2:dc:4e:80:33:79:e3:c3:71:62:6d:
fc:8e:44:2f:38:36:1a:ce:8b:26:7a:25:eb:3f:d1:
26:39:29:ab:52:1c:7b:91:74:38:f1:11:1a:7b:8e:
94:4c:e4:bd:43:41:b0:1f:bb:4d:81:5a:aa:42:ca:
37:7d:45:d9:36:77:60:13:87:07:c4:d7:9b:d8:9b:
10:df:33:c6:78:3d:83:fc:69:09:6a:57:e5:fc:97:
79:ec:7e:b3:41:e9:7c:92:77:23:04:b6:e5:ed:0b:
9e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:04:33:BC:1C:07:75:6D:8B:F3:0F:77:41:58:78:54:BC:F3:8E:2C
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/8BC654C2B94711EEAECF4764775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.116.0/24
Signature Algorithm: sha256WithRSAEncryption
65:a1:e4:62:00:5c:71:2a:49:33:8d:b7:b6:90:f2:be:8a:bb:
7f:bb:c8:74:80:0e:b7:9d:f2:f5:e4:54:39:2b:ea:4a:8a:e4:
1f:07:9a:4e:a6:78:c4:2e:6c:c7:78:58:5c:02:69:c5:63:8c:
8e:b4:b9:1a:68:00:39:cf:07:cd:4e:83:e8:c9:d8:d9:a5:d1:
cb:93:92:32:d7:d3:1c:08:76:2c:e4:6c:4c:34:ea:cc:86:86:
ee:7c:62:61:27:87:ed:0a:6e:8e:98:2d:e9:20:fe:2f:d9:7d:
3c:8c:7c:c9:f5:d4:3e:62:7e:52:37:98:9e:c2:48:b8:07:69:
31:7d:7d:77:77:e3:f9:74:c5:57:81:cd:1d:ae:ad:d0:bd:8f:
aa:2a:92:63:8b:df:f9:50:89:54:d0:98:20:67:a4:35:cd:85:
61:7d:87:4f:ff:38:cb:cf:d1:15:78:1e:b2:38:18:ef:31:6c:
9a:29:55:d3:1a:7e:6a:18:83:ea:8c:ab:51:d6:48:05:ce:85:
52:01:34:c7:a8:e6:77:4e:61:7c:02:2f:1f:a5:00:ad:0a:9e:
85:68:0b:da:91:b4:46:32:5b:45:a2:7f:e1:ba:b6:36:c3:00:
f2:ae:80:21:f5:23:74:58:4b:b0:5e:f6:e9:55:06:1c:01:ff:
ac:9f:4a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org