Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/E24F87705C5711EE9A98B6304AD9E6FC.roa
File: E24F87705C5711EE9A98B6304AD9E6FC.roa (raw, json)
Hash identifier: gtSUS36d3c2opOkL8PiVy5Q9CDZ0i4FdBsCyFYCIfdM=
Subject key identifier: 93:31:71:4E:62:0F:BE:4B:86:4A:BA:C9:BF:2D:8E:3A:BA:15:22:2A
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0BFA
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/E24F87705C5711EE9A98B6304AD9E6FC.roa
Signing time: Tue 26 Sep 2023 10:31:43 +0000
ROA not before: Tue 26 Sep 2023 10:31:39 +0000
ROA not after: Fri 26 Sep 2025 10:31:39 +0000
asID: 203999
IP address blocks: 161.123.244.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3066 (0xbfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 26 10:31:39 2023 GMT
Not After : Sep 26 10:31:39 2025 GMT
Subject: CN=6512b30e-7655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1a:c6:25:66:6f:90:80:a9:33:26:47:11:36:
b6:21:f7:a7:93:f5:8d:b1:91:8f:90:35:2a:da:39:
9f:67:25:0a:cc:ea:e9:a3:d0:f1:1c:c1:e4:31:12:
2e:33:ac:28:9a:39:65:d9:6f:92:2a:19:16:e4:bc:
ea:32:82:79:62:03:f6:73:18:e7:4a:29:28:f5:a7:
e9:03:5e:55:bf:fe:db:22:50:72:ea:30:cc:e1:7d:
f7:5d:01:70:f4:ea:e0:9c:3d:9a:91:72:3a:36:58:
b4:7c:25:a6:58:6b:15:41:69:b6:ad:e1:43:53:df:
78:d7:24:35:ae:1e:24:71:76:22:34:1c:01:64:ba:
e9:1b:e8:a8:6c:e3:b4:d6:7c:b8:c1:0c:b1:17:3e:
82:03:3d:80:60:bb:19:b8:80:0a:9f:57:af:d6:ea:
07:f6:7d:c1:e1:da:90:79:16:5b:85:a2:94:dc:0e:
e5:8a:1e:1b:2f:88:28:2b:58:7a:42:bf:7c:55:b6:
95:2f:f1:e0:3b:6b:3f:62:47:f4:0c:52:c1:cf:95:
7b:86:f0:02:99:bd:e8:11:a1:ee:a7:ca:11:2d:e9:
9e:d4:48:96:c7:ec:be:7a:ef:b8:1a:ab:66:63:e2:
4c:89:90:78:42:c0:02:86:7e:0f:ba:74:06:ee:e7:
b7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:31:71:4E:62:0F:BE:4B:86:4A:BA:C9:BF:2D:8E:3A:BA:15:22:2A
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/E24F87705C5711EE9A98B6304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.244.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:5c:8f:b1:33:ef:3e:55:2b:1b:a5:fb:ca:9f:76:2a:7f:c6:
79:f6:e9:cf:fa:5e:c0:ab:20:3f:5f:e0:4b:b2:1b:4a:e4:a3:
80:ad:4f:cc:ab:48:ea:46:37:c9:8c:76:1d:57:c6:5f:a1:c0:
65:5d:69:4d:0b:40:eb:f1:cf:f8:21:a8:01:1f:24:ea:51:e5:
07:5d:73:76:d4:a5:31:f9:69:90:c7:29:53:5c:37:b7:11:4b:
21:0a:e7:50:88:da:ce:5c:83:14:83:ab:74:9f:27:03:1c:b3:
d8:cf:de:cd:00:bb:17:71:d0:73:88:aa:8a:e8:0c:dc:34:dd:
76:4b:04:5a:e1:73:08:3f:55:d7:e2:38:c9:4b:51:4c:3d:f9:
7c:a2:90:d1:61:8f:3c:a8:1a:01:3b:df:4c:73:70:de:9c:97:
f4:68:bb:c2:a4:7d:f5:a7:d1:f6:43:39:c7:02:65:60:ca:ab:
95:d2:b8:4a:55:1c:40:40:ba:60:88:48:c7:90:2c:23:b4:0b:
90:84:cd:d4:4a:d4:f7:14:9b:f1:b3:ac:e0:8e:61:cf:1e:6a:
07:39:ca:84:81:1b:66:a5:8c:30:f0:97:0f:4e:31:de:4a:29:
e5:51:e0:77:96:cf:40:1b:c6:6c:f3:7c:d9:4c:a3:b8:c5:5a:
df:dc:b1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:20 2024 by rpki-client on console-fra.rpki-client.org