Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/6B64796E6CD311ED95BCF9ABF1222468.roa
File: 6B64796E6CD311ED95BCF9ABF1222468.roa (raw, json)
Hash identifier: R0VYLqBJ/t82vL7Ea4zeQPUv4iI6TJe1dS2p2gDCFlU=
Subject key identifier: 62:DB:D5:9E:D5:BE:2F:F6:49:CC:4E:FB:36:04:13:06:0D:27:91:C5
Certificate issuer: /CN=F363CC24AR/serialNumber=A9CB76AF6BC2B486D581AF29A19E595D9C04CD04
Certificate serial: 03
Authority key identifier: A9:CB:76:AF:6B:C2:B4:86:D5:81:AF:29:A1:9E:59:5D:9C:04:CD:04
Authority info access: rsync://rpki.afrinic.net/repository/arin/qct2r2vCtIbVga8poZ5ZXZwEzQQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/6B64796E6CD311ED95BCF9ABF1222468.roa
Signing time: Fri 25 Nov 2022 15:11:21 +0000
ROA not before: Fri 25 Nov 2022 15:11:18 +0000
ROA not after: Thu 25 Nov 2032 15:11:18 +0000
asID: 328029
IP address blocks: 160.119.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/qct2r2vCtIbVga8poZ5ZXZwEzQQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/qct2r2vCtIbVga8poZ5ZXZwEzQQ.mft
rsync://rpki.afrinic.net/repository/arin/qct2r2vCtIbVga8poZ5ZXZwEzQQ.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 28 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363CC24AR/serialNumber=A9CB76AF6BC2B486D581AF29A19E595D9C04CD04
Validity
Not Before: Nov 25 15:11:18 2022 GMT
Not After : Nov 25 15:11:18 2032 GMT
Subject: CN=6380db19-0370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:20:2b:37:2e:b9:d3:26:35:7a:43:69:d0:ff:
90:a7:2d:40:46:f1:20:ee:83:d2:18:f8:8a:73:2a:
75:cc:5f:ff:7a:a2:2b:d3:c6:de:92:41:d1:25:e6:
bb:e4:9f:de:d4:d2:6b:fe:3c:8c:1e:26:b3:43:32:
b5:32:8c:93:31:cd:da:0e:6c:97:01:f7:7f:6b:10:
0c:5f:b9:d6:aa:7b:21:1c:2d:9f:42:6c:63:b8:b4:
74:e3:8b:53:fe:29:d2:6f:92:da:88:a3:44:c8:97:
b0:74:c3:c0:9b:85:b5:cf:56:d3:57:bb:4f:46:15:
46:78:70:81:f5:c5:f2:fe:25:eb:fa:4d:e4:5f:f1:
3c:d8:ee:30:8b:e1:27:84:66:96:2e:80:7b:48:d1:
41:5f:97:fd:1c:4d:13:94:47:8e:05:4a:b8:47:05:
0a:71:c2:d4:42:26:00:70:c7:ab:64:f9:2c:ae:d3:
08:8e:7c:3e:ec:98:46:22:d9:16:86:e5:0b:45:e1:
ad:87:53:b7:cd:41:99:22:c2:68:90:20:d2:85:06:
d0:57:9d:27:54:a4:5b:f4:f8:87:13:cb:92:86:53:
cf:4c:93:a4:f4:c6:94:8b:17:5a:3f:e1:c2:a2:44:
bd:9b:5b:c3:c6:21:96:48:53:49:9d:ff:7d:51:b1:
07:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DB:D5:9E:D5:BE:2F:F6:49:CC:4E:FB:36:04:13:06:0D:27:91:C5
X509v3 Authority Key Identifier:
keyid:A9:CB:76:AF:6B:C2:B4:86:D5:81:AF:29:A1:9E:59:5D:9C:04:CD:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/qct2r2vCtIbVga8poZ5ZXZwEzQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/qct2r2vCtIbVga8poZ5ZXZwEzQQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/6B64796E6CD311ED95BCF9ABF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:19:38:14:8f:ae:4f:ca:a6:d8:83:ea:6c:12:ca:71:4f:07:
36:a0:07:89:d7:0b:ce:8f:26:9a:04:84:86:8c:46:a9:07:90:
73:23:6c:9e:c1:43:94:ff:c7:2e:ca:83:75:3a:c0:21:e8:4f:
a8:c9:ec:7e:f5:d8:00:d1:75:75:bc:00:0e:5d:20:21:f1:37:
55:12:f0:89:e3:8c:30:13:15:72:db:9e:38:f8:45:74:87:73:
15:75:c6:55:73:28:ec:50:ea:63:58:af:6b:3c:67:db:6d:df:
96:37:a4:90:ca:84:fa:32:04:13:0f:7d:66:e4:df:66:60:6e:
16:77:b3:4f:38:e2:09:57:58:d8:52:27:ba:ad:9b:c6:ef:2a:
97:65:b2:06:3e:88:a3:44:b9:73:f7:c1:72:5d:fe:76:37:38:
a2:46:b4:fa:7a:9a:23:c0:9c:8f:0b:3c:7c:20:e2:7b:7b:ea:
02:d1:fa:d2:0b:d0:29:d4:b9:85:1a:35:ca:04:8a:e3:d6:6e:
bc:21:18:a2:79:4d:1b:40:53:a1:2c:04:07:4d:70:9a:f6:9b:
30:f6:35:99:92:34:09:7b:bb:53:ef:f3:b5:ed:55:92:77:c6:
14:e8:b9:71:d3:d0:5d:bd:c6:2d:ab:b0:64:93:f7:b5:5b:bd:
27:28:fd:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 04:37:24 2024 by rpki-client on console-fra.rpki-client.org