Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BCA7BF005FF911EFABE9BC69762E951A.roa
File: BCA7BF005FF911EFABE9BC69762E951A.roa (raw, json)
Hash identifier: irzO8RXGwJPbcu+k9vkrsq2/vKBh5RWnHc2R2qbJUUY=
Subject key identifier: D6:0D:B4:62:C2:6F:52:B6:42:FD:AF:BD:11:F4:11:D3:E9:BD:01:20
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0E27
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BCA7BF005FF911EFABE9BC69762E951A.roa
Signing time: Wed 21 Aug 2024 20:12:49 +0000
ROA not before: Wed 21 Aug 2024 20:12:46 +0000
ROA not after: Thu 21 Aug 2031 20:12:46 +0000
asID: 61290
IP address blocks: 161.123.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3623 (0xe27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Aug 21 20:12:46 2024 GMT
Not After : Aug 21 20:12:46 2031 GMT
Subject: CN=66c64a41-0318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dc:7e:5b:73:f4:a0:b2:8a:ea:13:6d:e0:60:
c6:8f:17:b8:46:91:95:97:7b:74:90:52:e3:bf:5d:
9c:48:b5:9a:2f:78:7f:c8:4a:8b:cb:15:26:4a:5d:
d5:a3:26:d3:49:a0:05:02:b6:86:e4:89:23:b9:2c:
6e:60:11:5a:64:05:2f:1e:ad:b6:3f:8d:25:34:1f:
b8:c0:48:65:bf:dd:6a:96:9b:a0:a2:7c:bf:37:cb:
8c:d9:89:25:36:f7:c7:9b:ca:e5:cc:a8:e6:67:00:
74:31:55:a0:3c:7a:f4:58:c1:16:b7:87:75:9c:ff:
f2:56:65:5d:b9:e9:51:57:8d:cb:6d:9f:79:22:1c:
30:25:37:4c:53:eb:87:1c:7e:f9:84:0e:bd:1f:da:
51:ae:0f:95:94:1a:0c:d5:0e:c5:39:8d:d1:0b:2d:
23:31:71:91:6a:dd:e5:eb:89:94:c3:a9:86:d9:3f:
58:ba:e5:03:50:e3:32:a2:e5:5e:02:6e:43:1a:24:
a0:19:06:54:65:32:25:4c:a4:57:7e:ac:0f:6a:cf:
97:8b:7b:00:d4:ca:4d:70:70:d5:e2:d3:df:42:a8:
e6:1c:d2:e8:3d:18:c5:8b:66:6d:7b:01:c5:00:92:
70:3e:64:8e:16:10:ec:22:b7:46:4b:0a:a6:c5:0b:
f0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:0D:B4:62:C2:6F:52:B6:42:FD:AF:BD:11:F4:11:D3:E9:BD:01:20
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BCA7BF005FF911EFABE9BC69762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.216.0/24
Signature Algorithm: sha256WithRSAEncryption
88:c8:3c:e0:1b:47:4a:ee:1d:2f:d9:86:0f:bc:44:d1:02:ca:
af:55:21:78:ad:6b:a9:07:c3:be:92:2c:be:d4:98:81:d5:72:
64:9f:fd:fc:6b:94:92:5e:1f:b7:2b:ef:fb:6c:fe:29:ec:33:
fa:ac:4f:fe:d6:aa:ab:81:23:47:e1:78:26:e0:09:8f:4f:a0:
f8:0e:ee:69:17:05:96:db:63:34:a7:46:b6:e4:bb:78:b5:05:
0f:c5:ff:52:55:54:17:7a:de:be:35:da:aa:f6:ab:90:6a:45:
6d:2f:53:2f:e3:a9:b4:d7:aa:ae:6f:49:97:69:4d:41:35:3b:
37:50:28:64:93:ce:fe:53:e1:63:36:bb:49:c0:3d:5f:9e:5f:
df:85:e1:94:8e:23:df:e8:b8:89:03:38:10:66:50:2b:9a:67:
89:2c:bd:25:76:be:ff:80:93:c3:c5:26:6e:1d:66:8f:d3:e0:
c1:63:81:a6:f8:c1:5e:02:42:72:5f:fb:50:08:0e:c9:2f:c5:
3f:62:30:19:66:58:d2:fe:22:d9:97:df:f0:be:53:8e:eb:54:
ba:c4:28:e4:de:00:fd:5b:36:f8:86:57:c1:98:2b:ad:a1:80:
a5:53:b1:a0:f6:e8:29:2a:8e:61:65:46:1a:8e:ab:76:9a:b2:
45:31:8f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:20 2024 by rpki-client on console-fra.rpki-client.org