Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FBB68/EEBD11DE767311EB92548A6DF8AEA228/F8B4E3247D9E11EB83704925F8AEA228.roa
File: F8B4E3247D9E11EB83704925F8AEA228.roa (raw, json)
Hash identifier: 63CDlb9OzE0Ed+gaeo+vCDqqodWQ+GqMecV9r4cwpCQ=
Subject key identifier: 3B:E8:1D:C9:95:DF:64:A1:0B:41:BD:3C:32:AB:84:44:36:82:E4:23
Certificate issuer: /CN=F36FBB68AR/serialNumber=DDEF51C8A0FF85505D9E0E6FFA02276C2A55AEE8
Certificate serial: 20
Authority key identifier: DD:EF:51:C8:A0:FF:85:50:5D:9E:0E:6F:FA:02:27:6C:2A:55:AE:E8
Authority info access: rsync://rpki.afrinic.net/repository/arin/3e9RyKD_hVBdng5v-gInbCpVrug.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/EEBD11DE767311EB92548A6DF8AEA228/F8B4E3247D9E11EB83704925F8AEA228.roa
Signing time: Fri 05 Mar 2021 10:38:50 +0000
ROA not before: Fri 05 Mar 2021 10:38:33 +0000
ROA not after: Mon 31 Mar 2031 10:38:33 +0000
asID: 37575
IP address blocks: 169.239.12.0/22 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/EEBD11DE767311EB92548A6DF8AEA228/3e9RyKD_hVBdng5v-gInbCpVrug.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/EEBD11DE767311EB92548A6DF8AEA228/3e9RyKD_hVBdng5v-gInbCpVrug.mft
rsync://rpki.afrinic.net/repository/arin/3e9RyKD_hVBdng5v-gInbCpVrug.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FBB68AR/serialNumber=DDEF51C8A0FF85505D9E0E6FFA02276C2A55AEE8
Validity
Not Before: Mar 5 10:38:33 2021 GMT
Not After : Mar 31 10:38:33 2031 GMT
Subject: CN=60420a3a-24d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:23:24:03:c2:dd:31:99:a8:6c:d1:d6:b0:5c:
0c:83:b3:8f:28:3f:dd:26:a3:08:f0:ea:e8:2a:d8:
0a:bd:7b:66:d8:5d:bd:f0:be:d3:83:cf:d0:ba:5a:
9c:69:1d:c0:de:93:1b:4c:07:30:2e:d5:0b:e4:06:
46:24:37:91:49:d0:e6:64:1b:55:41:0f:94:99:fe:
20:c8:8c:69:0f:89:de:4b:1a:3f:56:b2:ac:8b:4c:
1a:f1:8e:e9:09:ce:fd:b6:e0:ef:73:6c:60:6e:72:
bc:02:96:d8:cb:fe:64:9c:23:a2:33:2f:4f:1d:98:
18:81:08:cd:27:6a:48:e7:ee:aa:99:b8:70:35:a5:
90:b0:4e:2b:d7:d4:aa:0a:cd:53:12:56:9b:20:20:
11:d7:6c:3c:c5:48:07:b0:5b:bc:8d:4c:b5:42:db:
a3:0b:40:20:cc:ff:74:82:1f:6c:06:7e:b0:8d:02:
8d:51:e4:d7:0e:5c:63:75:92:3f:d1:f7:fb:cc:c3:
37:b4:7f:fd:f7:bd:d6:75:a9:82:63:85:44:39:7d:
ff:c8:31:70:28:46:71:ff:26:3c:c3:f6:58:e2:b8:
ee:48:cc:cf:22:dc:b8:19:74:4e:c2:a7:83:17:fc:
8f:fc:85:8d:ef:aa:79:f0:f0:09:16:b4:af:ef:cd:
49:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E8:1D:C9:95:DF:64:A1:0B:41:BD:3C:32:AB:84:44:36:82:E4:23
X509v3 Authority Key Identifier:
keyid:DD:EF:51:C8:A0:FF:85:50:5D:9E:0E:6F:FA:02:27:6C:2A:55:AE:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/EEBD11DE767311EB92548A6DF8AEA228/3e9RyKD_hVBdng5v-gInbCpVrug.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/3e9RyKD_hVBdng5v-gInbCpVrug.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/EEBD11DE767311EB92548A6DF8AEA228/F8B4E3247D9E11EB83704925F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.12.0/22
Signature Algorithm: sha256WithRSAEncryption
73:d3:c4:80:bc:6a:58:a6:c8:c3:5e:1e:06:5f:27:7f:91:e4:
cb:72:c6:6e:04:77:0d:a9:f9:8c:dd:69:54:e4:e0:bb:80:45:
67:1e:43:9d:64:e1:c8:80:62:9a:e7:41:28:2e:1f:b2:ef:8b:
9d:79:b2:79:e7:5b:c6:5d:2b:d4:88:c5:2d:92:09:90:fd:f9:
6f:35:70:fd:a4:38:8d:57:35:db:ff:89:a1:d4:72:e8:7a:5b:
6e:34:59:7b:2d:28:5b:70:84:2b:1c:9f:52:94:ad:a3:2b:a1:
26:81:40:3c:80:9c:d6:54:d0:82:9f:c8:95:f8:f2:04:9e:d8:
72:50:73:69:99:a5:3c:17:90:12:70:4b:25:f1:0b:06:0a:22:
6d:a9:44:13:1a:43:fb:de:84:44:01:7f:3b:0f:2a:ce:a3:d8:
70:29:f0:cc:92:a0:16:8c:1d:c3:ff:59:dc:8e:56:10:c6:c0:
bd:9f:0e:28:e2:73:3f:04:2f:e5:2a:5f:3f:3e:99:57:06:4b:
90:eb:f7:da:e8:1b:4e:34:2b:37:f6:35:2f:2a:0b:d1:27:b9:
93:66:15:e1:8b:77:bd:a5:21:03:7d:a2:b4:ee:ff:6e:21:f0:
63:ee:e5:af:36:40:1f:3b:08:c9:f1:0a:4b:39:02:4c:ff:53:
e6:3d:1b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:33 2024 by rpki-client on console-ams.rpki-client.org