Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/D2DC3424E7EF11EC8C9141B2F1222468.roa
File: D2DC3424E7EF11EC8C9141B2F1222468.roa (raw, json)
Hash identifier: bxIplo77DxDLOHWX3EbH+2yoIAUIozGysywJB/93vm8=
Subject key identifier: 3E:A2:0B:FF:15:31:82:BB:78:82:90:51:E9:01:67:7F:63:DD:C7:78
Certificate issuer: /CN=F36FD195AR/serialNumber=B98243FE720BC78DEA55A8AD750C6D0EBD0215B7
Certificate serial: 05
Authority key identifier: B9:82:43:FE:72:0B:C7:8D:EA:55:A8:AD:75:0C:6D:0E:BD:02:15:B7
Authority info access: rsync://rpki.afrinic.net/repository/arin/uYJD_nILx43qVaitdQxtDr0CFbc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/D2DC3424E7EF11EC8C9141B2F1222468.roa
Signing time: Thu 09 Jun 2022 12:29:36 +0000
ROA not before: Thu 09 Jun 2022 12:29:26 +0000
ROA not after: Wed 30 Jun 2049 12:29:26 +0000
asID: 327813
IP address blocks: 169.255.56.0/24 maxlen: 24
169.255.57.0/24 maxlen: 24
169.255.58.0/24 maxlen: 24
169.255.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/uYJD_nILx43qVaitdQxtDr0CFbc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/uYJD_nILx43qVaitdQxtDr0CFbc.mft
rsync://rpki.afrinic.net/repository/arin/uYJD_nILx43qVaitdQxtDr0CFbc.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FD195AR/serialNumber=B98243FE720BC78DEA55A8AD750C6D0EBD0215B7
Validity
Not Before: Jun 9 12:29:26 2022 GMT
Not After : Jun 30 12:29:26 2049 GMT
Subject: CN=62a1e7b0-409d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ea:10:5c:4e:7c:a3:d1:e3:48:7c:b6:84:06:
28:9a:09:9a:e8:a0:4c:c1:09:f1:fb:41:a6:a0:74:
04:3c:9a:a7:28:b3:e2:ff:f2:2c:aa:5f:96:97:7a:
1d:66:cb:38:4b:f8:31:e6:43:6c:0d:0b:f7:59:7f:
63:98:c2:c4:57:9a:17:f4:8b:fa:e8:02:ce:34:8c:
23:cb:8c:f7:dd:d4:e7:88:63:08:35:d4:2d:d1:46:
ed:8c:ef:41:44:ed:27:a5:64:02:9e:6e:3d:57:c6:
d8:1d:66:6d:90:49:2b:46:a8:f1:be:06:53:65:fa:
40:50:82:95:2d:14:2a:98:f4:52:0f:37:a2:4a:6e:
ce:e7:80:84:f3:ab:23:01:5d:80:d5:30:6d:e2:77:
2f:00:94:05:01:4b:b5:1e:f8:f0:6e:02:01:db:7a:
ff:80:28:c4:94:de:ae:18:fa:96:79:b6:f9:a3:9c:
16:6c:c4:12:c3:2b:ee:18:19:2e:13:06:d4:c0:37:
da:98:02:62:ad:76:70:ca:34:4a:ad:8b:88:f2:95:
c5:4b:51:96:7e:21:18:f6:28:80:e9:77:ae:54:60:
85:83:3b:86:55:a4:c6:a0:3e:71:e9:7b:02:96:76:
82:d4:04:f8:05:7b:e5:e6:d5:94:9f:a7:73:c3:25:
aa:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A2:0B:FF:15:31:82:BB:78:82:90:51:E9:01:67:7F:63:DD:C7:78
X509v3 Authority Key Identifier:
keyid:B9:82:43:FE:72:0B:C7:8D:EA:55:A8:AD:75:0C:6D:0E:BD:02:15:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/uYJD_nILx43qVaitdQxtDr0CFbc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/uYJD_nILx43qVaitdQxtDr0CFbc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/D2DC3424E7EF11EC8C9141B2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.56.0/22
Signature Algorithm: sha256WithRSAEncryption
38:62:49:b8:e4:62:ae:f4:cf:92:60:c1:ce:13:9d:24:55:0d:
e8:ad:8b:9f:e7:8a:9c:46:0c:d7:09:c9:c6:96:73:2e:48:80:
4c:10:40:0f:5c:df:79:87:7c:23:30:eb:2f:0a:f0:ca:06:b1:
10:62:ee:b1:ce:a0:f9:df:b9:7f:a3:c6:60:11:88:0a:0c:02:
c9:20:55:59:2a:37:ee:40:7e:04:20:b4:fb:87:d5:dd:8f:b4:
02:1f:8b:ad:fb:54:80:0e:cc:22:9b:e7:2a:c9:44:9d:23:38:
d8:b8:ad:f2:09:97:dc:27:c2:51:90:f3:83:ca:f4:24:fa:e3:
f1:b2:2d:3c:fc:5b:ce:31:f9:cf:87:f8:ab:b1:02:19:10:59:
5c:36:a7:cf:a8:fd:e2:1e:45:05:67:38:d7:0e:4c:69:2f:dc:
34:1b:4f:85:00:23:94:9d:37:9e:fa:35:33:9a:35:d8:2f:08:
3a:b9:52:a1:b1:32:e4:fd:09:fc:cf:fd:75:2f:20:c8:be:6c:
5b:3e:d6:aa:b7:eb:a0:c0:de:59:f1:08:06:b8:9d:41:5b:11:
ea:83:57:3a:fd:18:3b:32:8d:8e:4e:8a:b8:a9:8e:3b:a1:35:
c9:27:93:f1:80:ab:aa:61:3a:70:f3:6d:63:7a:8a:64:91:8b:
c0:4c:72:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:39:34 2024 by rpki-client on console-fra.rpki-client.org