Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/9D4E4A445CFC11EE9D81F5464AD9E6FC.roa
File: 9D4E4A445CFC11EE9D81F5464AD9E6FC.roa (raw, json)
Hash identifier: 3BWvbnLa0a3yXD5jrvhg1W8zKqTwlcGlLFfqwqOmM2c=
Subject key identifier: 36:42:23:51:A1:AD:1E:E3:18:01:51:BF:9E:F4:4B:08:E0:C8:21:5A
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C1D
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/9D4E4A445CFC11EE9D81F5464AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:10:54 +0000
ROA not before: Wed 27 Sep 2023 06:10:50 +0000
ROA not after: Mon 30 Sep 2030 06:10:50 +0000
asID: 203999
IP address blocks: 161.123.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3101 (0xc1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 27 06:10:50 2023 GMT
Not After : Sep 30 06:10:50 2030 GMT
Subject: CN=6513c76d-90b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:07:ca:c7:96:29:7e:9d:54:97:0d:3d:66:c0:
50:af:aa:ec:80:4a:75:84:ae:aa:81:d6:de:79:ea:
cb:e9:0a:bb:41:80:33:cc:e5:01:1a:a2:80:7b:2d:
d0:de:3f:7c:84:7c:a8:f2:f3:28:be:1f:0f:df:22:
1b:96:67:7d:fd:47:3b:85:bf:19:a5:c7:0e:c4:5e:
b2:72:ad:ab:fc:eb:f0:a2:43:d5:9b:2f:c2:8e:9c:
43:78:f2:4a:d7:fd:77:5d:09:c1:9a:29:fe:b5:44:
e1:37:d6:6e:9b:96:be:a0:cd:93:a9:36:1a:3a:47:
79:f6:15:52:ef:51:97:f3:58:f9:87:a5:2c:55:ee:
4b:ae:78:1f:26:9f:74:82:d1:22:4f:8c:5a:46:6d:
d7:50:23:af:cb:ad:1e:97:f1:c4:da:6e:d6:39:ec:
1a:aa:77:44:ab:17:47:63:c9:2c:ee:20:32:69:d4:
e0:f2:f8:b3:01:ad:b1:79:be:14:fa:2e:8e:d4:6e:
23:7c:49:f7:b9:e2:c2:34:19:fa:38:e7:13:21:68:
4a:30:64:09:65:26:3f:f0:50:72:b5:15:65:7c:63:
b2:52:0f:ff:29:bf:fb:20:1a:51:15:87:53:48:02:
99:03:ac:79:92:d2:a2:15:b8:c9:c6:da:77:03:11:
d3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:42:23:51:A1:AD:1E:E3:18:01:51:BF:9E:F4:4B:08:E0:C8:21:5A
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/9D4E4A445CFC11EE9D81F5464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.36.0/22
Signature Algorithm: sha256WithRSAEncryption
39:f9:b6:71:ba:69:60:35:34:32:4f:67:6b:74:8a:6e:91:18:
58:17:1b:78:96:6c:c6:3f:62:cd:34:16:dd:d5:d9:21:01:92:
27:b0:cf:c0:86:d6:c9:48:4b:b7:92:2f:25:9a:5d:4e:b0:89:
6f:14:07:f7:e3:55:22:dd:b8:d8:d8:63:da:b9:70:20:62:c8:
48:a5:bc:83:8b:99:94:dc:4f:cb:e6:7f:b4:50:1e:6f:05:35:
53:90:90:f1:4c:d3:1a:bf:7e:09:74:cd:54:9a:c1:c1:50:a3:
a1:af:20:ea:2b:04:9a:cb:3c:bb:22:6a:9b:ca:6e:ae:ce:14:
a1:e2:18:7f:ef:cf:12:79:4c:d1:5f:1d:fb:32:dd:22:83:9e:
b8:bb:dd:10:92:1e:20:7a:88:3e:68:d6:b4:64:37:2c:c3:de:
2c:b6:d4:d8:97:d3:c3:00:6e:b8:04:19:bc:6b:9d:5e:25:b1:
d9:f1:8f:b8:03:f6:15:2b:91:08:bb:9c:e1:0f:d6:f8:90:87:
5f:6a:2d:7f:b2:5b:34:f9:73:23:36:78:19:84:7b:32:54:0a:
5c:44:a2:7b:60:0d:06:33:bc:97:b0:bd:c6:39:15:34:38:b9:
44:50:bc:ab:d7:27:f3:2c:92:b3:84:7f:59:1c:ba:60:6b:e7:
9d:6d:d6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:20 2024 by rpki-client on console-fra.rpki-client.org