Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/E4D2DF728D4511EFB150C572762E951A.roa
File: E4D2DF728D4511EFB150C572762E951A.roa (raw, json)
Hash identifier: 9HRe37qaL5GJFQcU6897A7CJHAHCWA6KD3omfqIvga4=
Subject key identifier: 5B:10:80:4E:3E:AF:8D:5D:5A:66:71:F0:51:13:68:24:A3:CA:75:09
Certificate issuer: /CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Certificate serial: 2F
Authority key identifier: 1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
Authority info access: rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/E4D2DF728D4511EFB150C572762E951A.roa
Signing time: Fri 18 Oct 2024 11:41:20 +0000
ROA not before: Fri 18 Oct 2024 11:41:15 +0000
ROA not after: Wed 18 Oct 2034 11:41:15 +0000
asID: 37680
IP address blocks: 155.93.144.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.mft
rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Validity
Not Before: Oct 18 11:41:15 2024 GMT
Not After : Oct 18 11:41:15 2034 GMT
Subject: CN=67124960-994c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e6:0b:43:ec:55:9d:21:89:33:d8:f2:87:b5:
b7:d9:17:7e:42:42:e5:6c:77:64:3c:4b:e9:7b:9a:
e2:81:8e:2f:ba:e0:a6:7c:25:3d:41:7d:dd:a5:97:
ea:b3:16:4b:52:ba:67:c1:72:25:6f:9e:97:0f:48:
ad:a0:45:1c:d6:9f:ce:c6:de:f0:78:b8:9c:bf:47:
1e:16:3b:5c:8c:b6:54:c6:5d:e7:42:bf:1f:27:92:
7b:6e:6d:29:49:da:88:17:86:a6:61:6f:6f:ec:10:
89:20:06:78:86:d4:31:b6:39:85:ff:13:55:b2:c0:
eb:a5:ae:02:ee:9b:2f:4c:1c:e6:34:9b:0b:fa:d4:
e6:b0:2e:13:2b:8d:fd:8b:d4:13:69:da:52:d8:3b:
6e:92:5e:cd:48:ec:e1:e6:d4:8d:ec:de:81:f8:92:
b0:d6:51:d8:6f:87:bf:f5:df:f6:4d:1a:6d:ea:20:
75:37:4a:81:df:be:72:b2:3a:47:d8:ca:10:b1:b4:
03:2d:5d:13:f9:91:84:fe:12:ee:44:6e:8d:9d:51:
26:46:87:d5:82:2b:a1:9b:d6:24:1c:20:63:a1:65:
2f:0d:36:27:ed:04:b6:07:0b:cd:5c:61:1d:80:26:
ce:29:50:04:22:9f:63:bf:92:74:3e:69:7a:f2:7d:
b2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:10:80:4E:3E:AF:8D:5D:5A:66:71:F0:51:13:68:24:A3:CA:75:09
X509v3 Authority Key Identifier:
keyid:1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/E4D2DF728D4511EFB150C572762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.93.144.0/20
Signature Algorithm: sha256WithRSAEncryption
96:46:f1:8e:7b:84:46:a2:10:a5:2c:9c:86:05:0c:ca:e6:08:
ff:89:7d:93:75:be:d0:f5:22:10:89:a3:4f:3a:6d:54:6f:f7:
a1:0f:b7:39:e0:5a:1b:25:3a:a7:a6:3d:b0:9b:29:a0:7e:3c:
1f:40:97:4d:3e:ca:2d:f2:31:ff:42:66:a4:e9:0e:4d:1d:69:
e7:01:67:2f:09:1f:aa:4f:62:c2:57:97:d1:ba:a9:60:04:83:
59:2a:be:e1:18:6f:aa:82:a5:1e:ba:bd:8c:18:f1:5f:1b:9b:
46:ec:ae:f3:bb:64:6f:bf:0d:b7:51:3d:14:c0:9e:70:d3:fa:
55:4a:bf:ef:0b:ac:8a:77:eb:93:c1:d2:4d:9d:d2:3d:37:cd:
13:2c:f6:cf:07:47:09:7d:f9:70:5d:1b:2f:2f:59:97:70:93:
70:3a:d9:3b:6e:3c:de:79:6a:db:6e:67:e7:ce:3d:a9:8f:ff:
be:f4:a6:04:f3:11:80:9f:0a:e7:48:7a:b2:9d:3a:4b:fd:c4:
2c:01:f5:06:d4:c2:c6:10:8e:7a:78:88:7f:44:6d:30:73:54:
3f:9c:a5:f5:4d:2a:4a:79:eb:67:f1:d9:9f:0c:73:9d:c5:55:
2c:44:6f:34:1f:38:6f:2b:fe:12:61:62:af:5c:da:88:9a:03:
98:74:4a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:49 2024 by rpki-client on console-ams.rpki-client.org