Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/1EB2FC3C808E11EF9FE834B8762E951A.roa
File: 1EB2FC3C808E11EF9FE834B8762E951A.roa (raw, json)
Hash identifier: 8WICMpU1EnHwLaB230BzQWko4F3WLir8PQtyYVCg1ig=
Subject key identifier: 39:B8:1A:60:2F:79:CB:74:D7:06:68:3E:CC:CF:E3:AD:01:EB:36:BB
Certificate issuer: /CN=F366DC11AR/serialNumber=7F9EF436B31E592089063C1E6C437CD2C3FEA04B
Certificate serial: 066F
Authority key identifier: 7F:9E:F4:36:B3:1E:59:20:89:06:3C:1E:6C:43:7C:D2:C3:FE:A0:4B
Authority info access: rsync://rpki.afrinic.net/repository/arin/f570NrMeWSCJBjwebEN80sP-oEs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/1EB2FC3C808E11EF9FE834B8762E951A.roa
Signing time: Wed 02 Oct 2024 07:15:36 +0000
ROA not before: Wed 02 Oct 2024 07:15:32 +0000
ROA not after: Mon 02 Oct 2034 07:15:32 +0000
asID: 328638
IP address blocks: 160.226.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/f570NrMeWSCJBjwebEN80sP-oEs.crl
rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/f570NrMeWSCJBjwebEN80sP-oEs.mft
rsync://rpki.afrinic.net/repository/arin/f570NrMeWSCJBjwebEN80sP-oEs.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1647 (0x66f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366DC11AR/serialNumber=7F9EF436B31E592089063C1E6C437CD2C3FEA04B
Validity
Not Before: Oct 2 07:15:32 2024 GMT
Not After : Oct 2 07:15:32 2034 GMT
Subject: CN=66fcf318-320f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:01:71:d6:a7:f0:8f:93:2d:5b:9d:82:a0:f6:
3d:7f:1e:85:0f:dc:89:7c:57:2a:74:88:10:61:bd:
91:94:f1:8a:6d:60:dc:28:9d:76:09:81:c1:14:9c:
d0:da:cc:5f:a1:6f:8e:79:c4:96:59:ce:4b:12:52:
fb:c2:aa:c0:c0:c6:e2:c4:fa:21:2b:23:ab:9a:72:
e4:47:e9:30:5a:6e:9f:1b:2c:95:fd:63:d4:c2:56:
84:5a:5a:e7:57:82:4f:4f:04:28:20:b6:de:f9:12:
e1:37:bf:89:c6:5c:da:30:9f:80:bb:d3:60:8c:72:
c1:3c:cb:93:50:06:bd:09:6c:93:b7:72:60:d4:06:
51:2b:20:c7:7e:35:75:e1:82:9d:19:5a:68:0a:ce:
d9:1d:5e:b2:74:ae:a0:d0:c5:b3:2a:e0:b6:57:98:
df:70:0b:52:50:5e:ea:06:05:2d:c5:89:96:fb:d0:
b3:2c:98:f7:0c:3b:47:a3:bf:a4:0d:ed:60:ad:f7:
c5:ec:ef:e6:77:70:86:43:80:19:16:dd:4a:f0:cd:
a4:49:88:70:43:68:94:ed:ee:72:cd:85:16:23:9e:
9b:b1:bf:13:da:d7:00:9d:d4:ae:ba:6b:94:8c:30:
3c:46:dc:3d:66:b2:d2:b0:a0:a4:9f:10:c8:98:2b:
c4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B8:1A:60:2F:79:CB:74:D7:06:68:3E:CC:CF:E3:AD:01:EB:36:BB
X509v3 Authority Key Identifier:
keyid:7F:9E:F4:36:B3:1E:59:20:89:06:3C:1E:6C:43:7C:D2:C3:FE:A0:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/f570NrMeWSCJBjwebEN80sP-oEs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/f570NrMeWSCJBjwebEN80sP-oEs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/1EB2FC3C808E11EF9FE834B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.226.160.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:20:d0:e1:b1:3b:5e:b2:91:1b:89:70:62:0d:86:42:b5:39:
fe:c8:1b:d0:cb:bd:d7:4e:43:8c:19:02:85:10:0e:d5:2a:fa:
ca:28:4b:69:c3:8f:1a:cc:d3:93:42:7a:6a:ad:9b:0f:5b:ed:
d0:ec:3c:7c:0a:f4:65:cc:db:2f:f3:39:ef:6a:81:74:83:43:
56:6f:1f:db:53:96:dd:7b:07:f5:a0:3d:c7:a1:13:58:1c:ef:
0c:4d:06:70:2e:46:fb:c7:e2:cc:8d:d1:18:23:e0:aa:d9:88:
25:1c:e1:ec:07:35:da:c8:21:ba:47:4c:5b:b3:7c:74:1c:4e:
21:7c:02:6f:4f:f7:97:80:72:9e:43:bc:47:a7:6c:6c:51:28:
a5:d9:96:89:4a:3f:bc:9b:a4:20:f4:e9:70:4f:9e:49:c3:ba:
66:f4:a8:04:0e:87:33:f0:47:95:e8:5f:65:d8:af:c7:0a:72:
f4:5c:60:bf:64:a6:d6:10:0c:7b:ce:4d:a3:81:37:0b:85:37:
e0:4e:74:ae:8a:9c:22:90:21:94:bf:18:1d:25:6a:58:a1:3c:
0b:13:65:dd:78:78:cd:b5:33:15:73:55:89:ae:e6:f2:fb:0c:
26:9d:61:5e:45:9d:79:7e:2a:b4:b4:00:13:92:85:48:09:ce:
69:86:be:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:21 2024 by rpki-client on console-ams.rpki-client.org