Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/A3C4492A8D4611EF8CDB2177762E951A.roa
File: A3C4492A8D4611EF8CDB2177762E951A.roa (raw, json)
Hash identifier: 9g/P/H6RPVAaiv/r7kQLrsM8jI+r42OpRVBLEDJP/08=
Subject key identifier: B8:CC:FD:6D:F5:36:44:82:B9:37:0E:A2:E4:72:A5:E2:2C:88:9A:A0
Certificate issuer: /CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Certificate serial: 39
Authority key identifier: 1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
Authority info access: rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/A3C4492A8D4611EF8CDB2177762E951A.roa
Signing time: Fri 18 Oct 2024 11:46:41 +0000
ROA not before: Fri 18 Oct 2024 11:46:37 +0000
ROA not after: Wed 18 Oct 2034 11:46:37 +0000
asID: 37680
IP address blocks: 155.93.224.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.mft
rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Validity
Not Before: Oct 18 11:46:37 2024 GMT
Not After : Oct 18 11:46:37 2034 GMT
Subject: CN=67124aa1-77bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:cf:1f:b2:6e:6c:3c:b3:c9:d9:95:48:5a:
9f:78:2e:db:a0:a1:3b:77:d9:5b:c3:de:41:33:5f:
5c:8e:4d:62:51:78:bf:a5:db:51:fa:ab:d6:60:cf:
16:56:53:24:e2:ef:8a:74:d0:54:12:4f:8f:6d:db:
b9:54:f0:7b:c6:62:a5:d7:ef:34:af:c1:fc:a6:ae:
00:85:f4:d9:3c:27:e6:40:2f:23:bb:5f:f5:34:a3:
05:32:95:0a:83:81:1c:cd:83:5d:f6:00:46:87:bf:
19:93:6c:19:28:bc:f6:9c:10:fd:08:84:16:cd:34:
17:02:01:05:dd:f3:55:25:10:c9:a9:f1:be:06:f4:
2b:f5:d0:81:c2:09:d4:7d:06:e5:26:1b:ea:f0:68:
39:eb:03:0b:3b:d6:f5:a0:3c:1d:4b:54:1f:d9:21:
8d:5f:de:9b:71:9d:1b:33:be:b0:f8:1a:87:6a:09:
85:0d:45:d5:5c:e3:d3:db:13:20:25:9b:4a:3a:a7:
3a:74:91:6a:af:87:3f:33:82:6d:14:84:01:1a:93:
1e:4b:5a:10:86:c7:ea:36:a9:c5:d5:20:20:20:8d:
29:3b:ee:ac:a3:f1:f7:5c:a5:d6:08:c8:d4:d8:ca:
58:f8:bd:80:4e:74:4c:c2:36:09:be:11:24:ca:9d:
13:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CC:FD:6D:F5:36:44:82:B9:37:0E:A2:E4:72:A5:E2:2C:88:9A:A0
X509v3 Authority Key Identifier:
keyid:1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/A3C4492A8D4611EF8CDB2177762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.93.224.0/20
Signature Algorithm: sha256WithRSAEncryption
15:f7:e2:f8:74:85:23:3a:ce:5b:78:16:0d:f8:6f:f5:20:51:
78:fb:0b:a9:ea:12:ce:f2:90:d7:61:bf:97:34:34:bc:b3:dd:
97:7d:d3:bb:cb:a3:aa:91:de:1e:58:69:1d:88:1a:52:8a:82:
b5:ab:12:13:2a:cb:5b:d1:e1:70:fa:0c:b3:71:cc:13:b7:62:
51:56:5f:0a:0e:1e:3a:f2:4f:8f:bc:1e:b0:a4:b6:8f:32:71:
79:9c:dc:f9:7b:44:0a:ab:4b:6f:53:03:49:d0:ae:c5:cc:be:
c2:3c:15:42:4a:18:98:75:1a:38:93:c8:e2:98:96:49:72:4a:
88:68:64:91:1e:9d:5b:d8:8b:ed:b2:52:4d:5e:a1:f7:2a:99:
dc:31:dd:d4:44:ae:85:51:aa:82:6c:ad:bf:e6:6c:df:d2:89:
94:6c:d7:87:51:df:03:14:3b:b3:fc:fe:01:58:d5:9d:12:02:
7c:07:9d:9c:22:7e:1d:4e:b3:c2:9c:ff:ba:d2:81:67:70:98:
d2:6c:26:3f:84:65:c9:9c:bb:b1:ce:b9:83:c8:a4:1a:03:f5:
ce:79:68:65:0b:16:12:8c:76:02:bc:9c:a6:54:be:55:23:00:
aa:bb:00:6f:69:a8:ff:92:a5:02:84:87:b8:fb:c2:42:c9:65:
b8:14:e0:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:52 2024 by rpki-client on console-fra.rpki-client.org