Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CC4E72F812FD11EF821CD127017001B1.roa
File: CC4E72F812FD11EF821CD127017001B1.roa (raw, json)
Hash identifier: GErNTBNbtoEydcTH323oIWD3p1D/qLy3Mbz6OEAEVbI=
Subject key identifier: B2:96:D6:A6:57:BF:C2:66:5A:D4:B4:A9:80:D2:31:CD:E8:14:DA:19
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0DA3
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CC4E72F812FD11EF821CD127017001B1.roa
Signing time: Wed 15 May 2024 20:57:54 +0000
ROA not before: Wed 15 May 2024 20:57:49 +0000
ROA not after: Wed 15 May 2030 20:57:49 +0000
asID: 136557
IP address blocks: 161.123.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3491 (0xda3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: May 15 20:57:49 2024 GMT
Not After : May 15 20:57:49 2030 GMT
Subject: CN=664521d1-0eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1f:4b:9d:75:ef:64:54:ca:e3:ee:77:85:24:
44:63:ed:c8:1a:8a:97:6f:fe:84:94:74:41:6b:cc:
cf:03:b4:86:96:d1:4a:39:4f:ed:b5:94:91:82:0f:
ae:7c:81:8c:a0:ad:42:66:52:1f:f9:59:ea:5e:ce:
dd:5f:43:a5:d2:15:13:76:ec:de:91:5d:f5:eb:ff:
11:8d:10:a4:f7:bc:41:3e:c3:96:38:2b:da:1e:87:
94:f7:f6:47:3a:83:51:a9:b5:c3:72:c5:ce:35:1b:
a6:50:14:f3:5d:52:c8:66:64:8d:bc:a8:4a:23:2b:
67:64:37:93:ac:fc:74:76:90:b1:fc:75:e3:26:f2:
f5:e4:ee:da:e0:33:c4:34:63:57:bb:fa:f3:8d:e9:
f2:fa:00:70:d7:1b:b0:02:c4:db:32:11:a4:a6:ec:
13:5d:19:a5:39:f3:5f:34:60:15:5d:32:67:4c:8e:
f3:35:2c:f2:7a:07:13:fd:49:55:8f:64:ee:2e:11:
fd:0c:bd:e6:79:57:cf:72:c6:d8:ef:08:20:0a:54:
aa:9e:5c:27:9c:05:86:3e:a7:e4:a3:88:53:7f:18:
2e:a4:8c:ee:b2:98:13:50:2f:49:7e:7d:4e:ce:d3:
c8:db:fe:86:18:bb:3b:c4:06:f1:ea:09:d0:85:3c:
84:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:96:D6:A6:57:BF:C2:66:5A:D4:B4:A9:80:D2:31:CD:E8:14:DA:19
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CC4E72F812FD11EF821CD127017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.100.0/24
Signature Algorithm: sha256WithRSAEncryption
66:42:e9:44:29:fd:4f:da:90:e5:fc:eb:41:26:06:a9:21:cd:
5e:5c:41:19:1c:b1:7b:f2:f1:3f:8e:67:54:e2:a5:a4:c1:b3:
01:81:74:b7:21:91:e0:5e:00:d3:09:24:db:72:93:78:92:91:
2a:92:84:93:21:dc:78:ef:cb:1d:25:59:3b:5e:41:65:eb:78:
76:90:5a:90:4c:26:98:44:b7:f4:c5:9a:88:ce:59:80:50:61:
05:44:6e:c8:5b:59:34:c3:19:20:74:9a:69:b2:79:7a:75:29:
d0:4d:14:40:87:fc:da:bb:5b:32:95:83:8b:e7:c7:12:62:a3:
8d:ad:f5:8d:07:e6:79:71:69:8a:76:09:e8:03:35:e4:c6:b2:
aa:ce:79:41:f8:ba:69:69:17:77:ca:3c:b1:e6:d3:5c:f9:8c:
03:6f:4c:b8:ad:cf:ce:31:00:f5:57:de:07:7f:79:e9:a5:3b:
72:51:5d:6d:5b:ff:ad:bc:62:02:7e:57:d0:92:d9:1c:c9:14:
1e:54:be:a0:9b:c3:c1:d6:f8:52:eb:2b:d3:2c:45:39:25:28:
55:df:20:43:88:80:89:68:e6:6c:48:ad:4d:c8:9c:af:e9:21:
61:43:7e:e5:22:9f:97:dd:d7:1c:f9:a9:9c:89:eb:65:ec:55:
05:31:6f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:41:00 2024 by rpki-client on console-ams.rpki-client.org