Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FCA07/788C9C7272B111EE89C1B56D4AD9E6FC/3386C9E8985A11EFA8A79D42762E951A.roa
File: 3386C9E8985A11EFA8A79D42762E951A.roa (raw, json)
Hash identifier: 4iO9GKnKP6pMOu+jZf55rHG0gquxjPkMHdHFKGAQAMs=
Subject key identifier: E9:19:B6:DB:62:0B:28:CD:8D:33:EE:C2:2D:F4:C7:4D:94:32:F5:28
Certificate issuer: /CN=F36FCA07AR/serialNumber=5AC607C49CD33041F58CEEE54C7660E0459BF727
Certificate serial: 0185
Authority key identifier: 5A:C6:07:C4:9C:D3:30:41:F5:8C:EE:E5:4C:76:60:E0:45:9B:F7:27
Authority info access: rsync://rpki.afrinic.net/repository/arin/WsYHxJzTMEH1jO7lTHZg4EWb9yc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/788C9C7272B111EE89C1B56D4AD9E6FC/3386C9E8985A11EFA8A79D42762E951A.roa
Signing time: Fri 01 Nov 2024 14:04:25 +0000
ROA not before: Fri 01 Nov 2024 14:04:21 +0000
ROA not after: Fri 01 Nov 2030 14:04:21 +0000
asID: 328055
IP address blocks: 169.255.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/788C9C7272B111EE89C1B56D4AD9E6FC/WsYHxJzTMEH1jO7lTHZg4EWb9yc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/788C9C7272B111EE89C1B56D4AD9E6FC/WsYHxJzTMEH1jO7lTHZg4EWb9yc.mft
rsync://rpki.afrinic.net/repository/arin/WsYHxJzTMEH1jO7lTHZg4EWb9yc.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389 (0x185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FCA07AR/serialNumber=5AC607C49CD33041F58CEEE54C7660E0459BF727
Validity
Not Before: Nov 1 14:04:21 2024 GMT
Not After : Nov 1 14:04:21 2030 GMT
Subject: CN=6724dfe9-e0d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:08:c5:6a:6f:5a:cf:cb:f2:42:75:d2:4e:cd:
3e:5a:cc:a5:f6:4e:ed:5f:b9:25:94:0f:14:fb:a2:
91:3f:43:f3:1a:c6:67:2e:0a:c0:b4:f4:ea:d8:44:
4e:6b:38:48:95:f2:cb:bf:89:31:19:6a:b2:00:95:
61:4f:66:f1:ac:8c:a6:53:c4:4b:98:e3:e4:f8:c0:
5d:7a:98:76:19:ea:8d:a9:70:e5:11:2e:e6:b0:4b:
0e:6e:34:54:3a:d4:40:b9:b3:c9:55:7e:cb:33:e5:
07:b4:31:0a:40:51:f2:c2:6c:ef:e4:6b:90:85:51:
90:cb:d0:73:d5:6e:18:ce:0a:c5:d1:7f:85:3e:42:
de:8e:62:b8:e6:cb:66:4c:33:86:11:f7:5f:2a:21:
ea:e3:45:b2:8a:e2:f6:a7:df:25:b7:72:39:0a:bf:
36:de:f9:99:f6:0a:a8:4e:dd:35:43:c9:46:d7:3e:
1b:ae:e2:30:48:94:6b:59:01:05:0c:cf:a7:56:15:
a8:63:d4:c0:5f:fc:b9:ff:e6:a7:eb:d4:9a:95:e3:
2f:39:65:da:ca:15:4d:82:52:8d:0b:5c:23:03:eb:
e0:f4:36:59:1b:f0:1c:61:23:eb:a2:2f:86:78:af:
61:40:38:1b:af:80:ab:ab:59:9a:f9:16:9f:d7:39:
bc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:19:B6:DB:62:0B:28:CD:8D:33:EE:C2:2D:F4:C7:4D:94:32:F5:28
X509v3 Authority Key Identifier:
keyid:5A:C6:07:C4:9C:D3:30:41:F5:8C:EE:E5:4C:76:60:E0:45:9B:F7:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/788C9C7272B111EE89C1B56D4AD9E6FC/WsYHxJzTMEH1jO7lTHZg4EWb9yc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/WsYHxJzTMEH1jO7lTHZg4EWb9yc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/788C9C7272B111EE89C1B56D4AD9E6FC/3386C9E8985A11EFA8A79D42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.176.0/22
Signature Algorithm: sha256WithRSAEncryption
23:d3:46:54:45:54:88:b0:2f:9d:4a:31:c9:88:77:be:69:dc:
8b:4c:76:0d:2b:e1:ab:d5:40:85:b6:74:ea:ae:d4:82:c2:8d:
64:96:02:ad:94:88:28:52:f4:f0:3e:af:ad:54:f7:f7:22:72:
53:f5:fe:ad:50:74:40:75:5e:3d:8f:d0:b2:59:d0:fb:58:cc:
89:13:bc:74:ac:1f:b4:49:3b:76:6f:2c:ac:23:72:ec:0e:c0:
ee:36:d3:ac:87:a9:e7:01:12:cf:4c:f2:83:12:81:33:09:7c:
8a:ad:4e:a6:5e:a1:1d:87:51:6c:3d:5c:74:77:e2:98:f9:95:
87:3b:cb:20:3a:41:83:0d:8a:8a:a7:4b:3a:48:b1:b6:0d:5f:
4b:6c:fa:7a:74:80:5d:85:8b:8e:0f:56:df:61:70:95:46:27:
93:72:47:71:80:c1:e5:fe:36:bc:a9:0a:f9:cf:13:a0:cb:c8:
2e:50:03:9e:c7:c6:09:ad:f7:d1:37:d3:8a:66:11:39:3a:5e:
6d:3f:65:a1:f3:39:72:34:de:79:c0:df:d2:19:f7:3f:68:cc:
8a:88:e8:f4:e1:a8:da:09:13:47:16:20:1a:39:7f:fd:6b:62:
d8:59:5b:a7:23:cc:54:0f:d4:19:bf:95:82:61:4c:4e:cc:95:
75:da:b1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:34 2024 by rpki-client on console-ams.rpki-client.org